WO2005094264A3 - Method and apparatus for authenticating entities by non-registered users - Google Patents

Method and apparatus for authenticating entities by non-registered users Download PDF

Info

Publication number
WO2005094264A3
WO2005094264A3 PCT/US2005/010025 US2005010025W WO2005094264A3 WO 2005094264 A3 WO2005094264 A3 WO 2005094264A3 US 2005010025 W US2005010025 W US 2005010025W WO 2005094264 A3 WO2005094264 A3 WO 2005094264A3
Authority
WO
WIPO (PCT)
Prior art keywords
registered users
authenticating entities
registry
entity
authenticating
Prior art date
Application number
PCT/US2005/010025
Other languages
French (fr)
Other versions
WO2005094264A2 (en
Inventor
Louis Gasparini
William Harris
Original Assignee
Passmark Security Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from PCT/US2004/014379 external-priority patent/WO2004102338A2/en
Priority claimed from PCT/US2005/003686 external-priority patent/WO2006028488A2/en
Application filed by Passmark Security Inc filed Critical Passmark Security Inc
Publication of WO2005094264A2 publication Critical patent/WO2005094264A2/en
Publication of WO2005094264A3 publication Critical patent/WO2005094264A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • H04L9/3213Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/60Digital content management, e.g. content distribution

Abstract

A system and method communicates information from an entity (Fig.2 , 310) that a registry (400) can use to authenticate the entity (310) to a user (210). If the registry (400) authenticates the entity (310) , it displays information that represents a shared secret between the registry (400) and the user (210).
PCT/US2005/010025 2004-03-23 2005-03-23 Method and apparatus for authenticating entities by non-registered users WO2005094264A2 (en)

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
US55579004P 2004-03-23 2004-03-23
US60/555,790 2004-03-23
USPCTUS0414379 2004-05-06
PCT/US2004/014379 WO2004102338A2 (en) 2003-05-09 2004-05-06 Method and apparatus for authentication of users and web sites
USPCTUS2005003686 2005-02-04
PCT/US2005/003686 WO2006028488A2 (en) 2004-02-04 2005-02-04 Authentication of users and computer systems

Publications (2)

Publication Number Publication Date
WO2005094264A2 WO2005094264A2 (en) 2005-10-13
WO2005094264A3 true WO2005094264A3 (en) 2006-12-07

Family

ID=35064248

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/010025 WO2005094264A2 (en) 2004-03-23 2005-03-23 Method and apparatus for authenticating entities by non-registered users

Country Status (1)

Country Link
WO (1) WO2005094264A2 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2434662A (en) * 2006-01-13 2007-08-01 Deepnet Technologies Ltd Authenticating a server to a user by displaying an image
WO2011103561A2 (en) 2010-02-22 2011-08-25 Lockify, Inc. Encryption system using web browsers and untrusted web servers
CN111885055B (en) * 2020-07-22 2023-01-31 中国联合网络通信集团有限公司 Communication method and device

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6161139A (en) * 1998-07-10 2000-12-12 Encommerce, Inc. Administrative roles that govern access to administrative functions
US6968571B2 (en) * 1997-09-26 2005-11-22 Mci, Inc. Secure customer interface for web based data management

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6968571B2 (en) * 1997-09-26 2005-11-22 Mci, Inc. Secure customer interface for web based data management
US6161139A (en) * 1998-07-10 2000-12-12 Encommerce, Inc. Administrative roles that govern access to administrative functions

Also Published As

Publication number Publication date
WO2005094264A2 (en) 2005-10-13

Similar Documents

Publication Publication Date Title
WO2005107137A3 (en) Method and apparatus for authenticating users using two or more factors
WO2004102338A3 (en) Method and apparatus for authentication of users and web sites
WO2005086569A3 (en) System, method and apparatus for electronic authentication
CA3006804C (en) Security interface for a mobile device
AU2003302094A1 (en) Cryptographic methods and apparatus for secure authentication
TW200641648A (en) Network system, server apparatus, unauthorized use detection method, and recording medium
TW200633458A (en) User authentication by linking randomly-generated authentication secret with personalized secret
WO2004019550A3 (en) System and method for authenticating wireless component
EP1363424A3 (en) Authentication method and system encrypting a ticket with an symmetric key, said symmetric key being encrypted with an asymmetric key
WO2005070155A3 (en) Avoiding server storage of client state
WO2003015370A3 (en) Data certification method and apparatus
WO2005036814A8 (en) Image data verification
WO2003069490A1 (en) User authentication method and user authentication system
WO2005078548A3 (en) Password prompt authentication
WO2001057750A8 (en) Authentication system
EP1586973A3 (en) Method for encryption backup and method for decryption restoration
WO2006015182A3 (en) Object access level
WO2005025292A3 (en) System and method for risk based authentication
WO2002054201A3 (en) System and method for providing authentication and verification services in an enhanced media gateway
WO2006002068A3 (en) Method and apparatus for making accessible a set of services to users
AU2003226458A1 (en) Public key certificate revocation list generation apparatus, revocation judgement apparatus, and authentication system
WO2007139706A3 (en) Authenticating a tamper-resistant module in a base station router
EP1150452A3 (en) Authentication system, authentication method, authentication apparatus, and authentication method therefor
TW200644559A (en) System and methods for providing multi-hop access in a communications network
WO2005069101A3 (en) Method and system for establishing a trust framework based on smart key devices

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Country of ref document: DE

121 Ep: the epo has been informed by wipo that ep was designated in this application
32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: COMMUNICATION UNDER RULE 69 EPC ( EPO FORM 1205A DATED 26/06/07 )

122 Ep: pct application non-entry in european phase

Ref document number: 05729586

Country of ref document: EP

Kind code of ref document: A2