WO2007060016A3 - Self provisioning token - Google Patents

Self provisioning token Download PDF

Info

Publication number
WO2007060016A3
WO2007060016A3 PCT/EP2006/011407 EP2006011407W WO2007060016A3 WO 2007060016 A3 WO2007060016 A3 WO 2007060016A3 EP 2006011407 W EP2006011407 W EP 2006011407W WO 2007060016 A3 WO2007060016 A3 WO 2007060016A3
Authority
WO
WIPO (PCT)
Prior art keywords
token
authentication
based authentication
self provisioning
provisioning token
Prior art date
Application number
PCT/EP2006/011407
Other languages
French (fr)
Other versions
WO2007060016A2 (en
Inventor
Martien Nicolaas Rene Remijn
Original Assignee
Koninkl Kpn Nv
Martien Nicolaas Rene Remijn
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Koninkl Kpn Nv, Martien Nicolaas Rene Remijn filed Critical Koninkl Kpn Nv
Publication of WO2007060016A2 publication Critical patent/WO2007060016A2/en
Publication of WO2007060016A3 publication Critical patent/WO2007060016A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • H04L63/0838Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/73Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information by creating or determining hardware identification, e.g. serial numbers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2129Authenticate client device independently of the user
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2137Time limited access, e.g. to a computer or data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/081Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying self-generating credentials, e.g. instead of receiving credentials from an authority or from another peer, the credentials are generated at the entity itself

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mathematical Physics (AREA)
  • Power Engineering (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention relates to authentication for online services and/or online content based on token based authentication, while using a portable device. The invention provides a system and method for token based authentication, without the need for a hardware token. The invention further provides a token based authentication system and method with a limited validity period for tokens, in order to provide a high level of protection against fraud.
PCT/EP2006/011407 2005-11-28 2006-11-28 Self provisioning token WO2007060016A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US74019005P 2005-11-28 2005-11-28
US60/740,190 2005-11-28

Publications (2)

Publication Number Publication Date
WO2007060016A2 WO2007060016A2 (en) 2007-05-31
WO2007060016A3 true WO2007060016A3 (en) 2007-09-27

Family

ID=37847180

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2006/011407 WO2007060016A2 (en) 2005-11-28 2006-11-28 Self provisioning token

Country Status (1)

Country Link
WO (1) WO2007060016A2 (en)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050261970A1 (en) 2004-05-21 2005-11-24 Wayport, Inc. Method for providing wireless services
EP2026530A1 (en) 2007-07-12 2009-02-18 Wayport, Inc. Device-specific authorization at distributed locations
EP2120415A1 (en) * 2008-05-14 2009-11-18 Dialogue Technology Corp. Security system and method for a remote device in a wireless wide area network
FR2981179B1 (en) * 2011-10-06 2014-02-14 Cassidian METHOD FOR ACCESSING A SYSTEM OF INFORMATION PROVIDED BEHIND A COMPUTER GATEWAY
US20160306955A1 (en) * 2015-04-14 2016-10-20 Intel Corporation Performing user seamless authentications
US10749863B2 (en) * 2017-02-22 2020-08-18 Intel Corporation System, apparatus and method for providing contextual data in a biometric authentication system

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001031840A1 (en) * 1999-10-29 2001-05-03 Nokia Corporation Method and arrangement for reliably identifying a user in a computer system
WO2003005145A2 (en) * 2001-07-06 2003-01-16 Nokia Corporation Digital rights management in a mobile communications environment
WO2003032126A2 (en) * 2001-10-09 2003-04-17 Wireless Key Identification Systems, Inc. Multi-factor authentication system
WO2003073688A1 (en) * 2002-02-22 2003-09-04 Emc Corporation Authenticating hardware devices incorporating digital certificates
US20030208562A1 (en) * 2002-05-06 2003-11-06 Hauck Leon E. Method for restricting access to a web site by remote users
WO2003100629A1 (en) * 2002-05-25 2003-12-04 Fasoo.Com Co., Ltd User authentication method and system using user’s e-mail address and hardware information

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001031840A1 (en) * 1999-10-29 2001-05-03 Nokia Corporation Method and arrangement for reliably identifying a user in a computer system
WO2003005145A2 (en) * 2001-07-06 2003-01-16 Nokia Corporation Digital rights management in a mobile communications environment
WO2003032126A2 (en) * 2001-10-09 2003-04-17 Wireless Key Identification Systems, Inc. Multi-factor authentication system
WO2003073688A1 (en) * 2002-02-22 2003-09-04 Emc Corporation Authenticating hardware devices incorporating digital certificates
US20030208562A1 (en) * 2002-05-06 2003-11-06 Hauck Leon E. Method for restricting access to a web site by remote users
WO2003100629A1 (en) * 2002-05-25 2003-12-04 Fasoo.Com Co., Ltd User authentication method and system using user’s e-mail address and hardware information

Also Published As

Publication number Publication date
WO2007060016A2 (en) 2007-05-31

Similar Documents

Publication Publication Date Title
WO2007145540A3 (en) Authentication methods and systems
WO2010093636A3 (en) Devices, systems and methods for secure verification of user identity
WO2007081588A3 (en) Token-based distributed generation of security keying material
TW200701732A (en) Method and system for verifying personal identity in internet trades
WO2005078548A3 (en) Password prompt authentication
WO2009032511A3 (en) Transferable restricted security tokens
WO2006096862A3 (en) Electronic verification systems
WO2007092401A3 (en) Utilizing a token for authentication with multiple secure online sites
WO2008092034A3 (en) Systems and methods for providing lottery game play through an unmanned terminal
WO2006014668A3 (en) Performing automatically authorized programmatic transactions
WO2007092715A3 (en) Method and system for providing online authentication utilizing biometric data
WO2007055923A3 (en) Method and system for conducting promotional programs
WO2007060016A3 (en) Self provisioning token
WO2011159483A3 (en) Techniques to verify location for location based services
EP1836676A4 (en) System and method for authenticating users for secure mobile electronic transactions
EP1987447A4 (en) System and method for network-based fraud and authentication services
WO2009045317A3 (en) Method for authenticating mobile units attached to a femtocell in communication with a secure core network such as an ims
GB2473566A (en) Systems and method for data security
EP1886438A4 (en) Method for inclusive authentication and management of service provider, terminal and user identity module, and system and terminal device using the method
WO2008016800A3 (en) Method and apparatus for selecting an appropriate authentication method on a client
EP1755062A3 (en) Methods and systems for secure user authentication
EP1766840A4 (en) Graduated authentication in an identity management system
WO2009134941A3 (en) System and method for facilitating secure payment in digital transactions
WO2011057007A3 (en) Verification of portable consumer devices for 3-d secure services
WO2008127323A3 (en) Biometric security system and method

Legal Events

Date Code Title Description
DPE2 Request for preliminary examination filed before expiration of 19th month from priority date (pct application filed from 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 06818883

Country of ref document: EP

Kind code of ref document: A2