ES2105483T3 - Procedimiento de autentificacion mutua. - Google Patents
Procedimiento de autentificacion mutua.Info
- Publication number
- ES2105483T3 ES2105483T3 ES94120657T ES94120657T ES2105483T3 ES 2105483 T3 ES2105483 T3 ES 2105483T3 ES 94120657 T ES94120657 T ES 94120657T ES 94120657 T ES94120657 T ES 94120657T ES 2105483 T3 ES2105483 T3 ES 2105483T3
- Authority
- ES
- Spain
- Prior art keywords
- encryptor
- mutual authentication
- authentication procedure
- perform
- card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/409—Device specific authentication in transaction processing
- G06Q20/4097—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
- G06Q20/40975—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3271—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
- H04L9/3273—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Accounting & Taxation (AREA)
- Physics & Mathematics (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Signal Processing (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Finance (AREA)
- Storage Device Security (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Credit Cards Or The Like (AREA)
- Lock And Its Accessories (AREA)
- Signal Processing For Digital Recording And Reproducing (AREA)
- Transition And Organic Metals Composition Catalysts For Addition Polymerization (AREA)
- Cash Registers Or Receiving Machines (AREA)
Abstract
2.1. EN LOS PROCESOS CONOCIDOS DE AUTENTIFICACION EXISTEN PROBLEMAS A TRAVES DE VACIOS EN LA SEGURIDAD DE LAS CLAVES SECRETAS, QUE RESULTAN A PARTIR DE LA CONEXION INTERMEDIA DE MODULOS SM RAPIDOS. 2.2. EL PROCESO CONSIGUE UNA SOLUCION A ESTE PROBLEMA, TANTO EN LA COMPROBACION DE LA IDENTIDAD (TARJETAS CHIP) COMO TAMBIEN EN LOS MODULOS DE CODIFICACION, QUE DEBEN SER PERSONALIZADOS ANTES DE LA CESION PROTEGIDA Y EN UNA AUTENTIFICACION DE COMUNICACION CON EL PARTICIPANTE DE UN LUGAR TERMINAL ADICIONALMENTE EN CONTRASENTIDO DE UNO CON OTRO, DONDE SE GENERA POR ELLO UNA CANTIDAD ADICIONAL ESPECIFICA DE COMPROBACION. PARA ELLO PRIMERO SE REALIZA LA AUTENTIFICACION EN CONTRASENTIDO EN LOS MODULOS SM RAPIDOS, DONDE LAS INFORMACIONES ASEGURADAS SON CONFIGURADAS A TRAVES DE AMBOS PARTICIPANTES EN AMBOS LADOS. 2.3. SE EXCLUYEN LAS AUTENTIFICACIONES DE ABUSO POSTERIOR Y TAMBIEN UN FUNCIONAMIENTO SEGURO PARCIAL O TOTALMENTE AUTOMATICO ASI COMO SE PERMITE UN MANEJO DE SEGURIDAD.
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| DE4406601A DE4406601A1 (de) | 1994-03-01 | 1994-03-01 | Verfahren zur gegenseitigen Authentikation |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| ES2105483T3 true ES2105483T3 (es) | 1997-10-16 |
Family
ID=6511480
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| ES94120657T Expired - Lifetime ES2105483T3 (es) | 1994-03-01 | 1994-12-24 | Procedimiento de autentificacion mutua. |
Country Status (6)
| Country | Link |
|---|---|
| EP (1) | EP0670646B1 (es) |
| AT (1) | ATE154183T1 (es) |
| DE (2) | DE4406601A1 (es) |
| DK (1) | DK0670646T3 (es) |
| ES (1) | ES2105483T3 (es) |
| NO (1) | NO950189L (es) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE19640526A1 (de) * | 1996-10-01 | 1998-04-02 | Deutsche Telekom Ag | Verfahren zur Übertragung von Signalen |
| DE19705620C2 (de) * | 1997-02-14 | 2000-11-09 | Esd Information Technology Ent | Anordnung und Verfahren zur dezentralen Chipkartenidentifikation |
| RU2134931C1 (ru) * | 1999-03-15 | 1999-08-20 | ОАО "Всероссийский научно-исследовательский институт автоматизации управления в непромышленной сфере" | Способ обеспечения доступа к объектам в операционной системе мсвс |
Family Cites Families (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US4223403A (en) * | 1978-06-30 | 1980-09-16 | International Business Machines Corporation | Cryptographic architecture for use with a high security personal identification system |
| US4349695A (en) * | 1979-06-25 | 1982-09-14 | Datotek, Inc. | Recipient and message authentication method and system |
| DE3036804A1 (de) * | 1980-09-30 | 1982-05-13 | Licentia Patent-Verwaltungs-Gmbh, 6000 Frankfurt | Sicherheitssystem zur verhinderung unerlaubter manipulationen bei der elektronischen textuebertragung in nachrichtennetzen |
| SU1163744A1 (ru) * | 1983-04-22 | 1992-04-30 | Kazakov N M | Устройство дл кодировани и декодировани сообщений |
| FR2601476B1 (fr) * | 1986-07-11 | 1988-10-21 | Bull Cp8 | Procede pour authentifier une donnee d'habilitation externe par un objet portatif tel qu'une carte a memoire |
| CH675169A5 (es) * | 1988-02-22 | 1990-08-31 | Asea Brown Boveri | |
| GB2227111B (en) * | 1989-01-17 | 1993-05-19 | Toshiba Kk | Certification system |
| DE4008971A1 (de) * | 1990-03-20 | 1991-09-26 | Siemens Nixdorf Inf Syst | Verfahren zur authentifizierung eines eine datenstation benutzenden anwenders |
| SE468068C (sv) * | 1991-09-30 | 1994-04-11 | Comvik Gsm Ab | Förfarande för personifiering av ett aktivt kort, för användning i ett mobiltelefonsystem |
| DE4133147C2 (de) * | 1991-09-30 | 1994-12-01 | Elmeg Kommunikationstech | Fernsprechendgerät |
| DE4231789A1 (de) * | 1992-09-23 | 1994-07-14 | Dacota Gmbh Ges Fuer Datenvera | Fernabfrage- und Autorisierungssystem für Kredit- und Company-Karten mittels eines Tonwahl-Telefons |
-
1994
- 1994-03-01 DE DE4406601A patent/DE4406601A1/de not_active Withdrawn
- 1994-12-24 DK DK94120657.5T patent/DK0670646T3/da active
- 1994-12-24 AT AT94120657T patent/ATE154183T1/de active
- 1994-12-24 ES ES94120657T patent/ES2105483T3/es not_active Expired - Lifetime
- 1994-12-24 DE DE59403023T patent/DE59403023D1/de not_active Expired - Lifetime
- 1994-12-24 EP EP94120657A patent/EP0670646B1/de not_active Expired - Lifetime
-
1995
- 1995-01-18 NO NO950189A patent/NO950189L/no not_active Application Discontinuation
Also Published As
| Publication number | Publication date |
|---|---|
| NO950189L (no) | 1995-09-04 |
| DE4406601A1 (de) | 1995-09-07 |
| EP0670646B1 (de) | 1997-06-04 |
| DE59403023D1 (de) | 1997-07-10 |
| NO950189D0 (no) | 1995-01-18 |
| EP0670646A1 (de) | 1995-09-06 |
| DK0670646T3 (da) | 1997-12-29 |
| ATE154183T1 (de) | 1997-06-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| NO943457D0 (no) | "Smartkort" tilpasset flere tjenesteytere og sekundær utnyttelse | |
| WO2003003171A3 (en) | A method and system for generating and verifying a key protection certificate. | |
| CA2212813A1 (en) | Method and apparatus for cryptographically protecting data | |
| ATE269614T1 (de) | Kryptografische datenverarbeitung unter verwendung einer kaskadierung kryptografischer elemente in einer rückkoppelung | |
| DE69535935D1 (de) | Verfahren und Vorrichtung zur Erstellung einer kryptographischen Verbindung zwischen Elementen eines Systems | |
| ATE120021T1 (de) | Datenträger-gesteuertes endgerät in einem datenaustauschsystem. | |
| SE8403867D0 (sv) | Autenticitetssystem mellan en kortlesare och ett betalkort som utvexlar data | |
| SE9503343D0 (sv) | Metod för kryptering av information | |
| SG49828A1 (en) | Restricted blind signatures | |
| EP0768775A3 (en) | Method and apparatus for mutual authentication according to the challenge/response principle | |
| CA2026739A1 (en) | Transaction system security method and apparatus | |
| TW369778B (en) | Method for providing a secure communication between two devices and application of this method | |
| CA2288192A1 (en) | Two way authentication protocol | |
| GB2334416A (en) | A circuit and method for ensuring interconnect security within a multi-chip integrated cirecuit package | |
| CA2141318A1 (en) | Method and Apparatus for Efficient Real-Time Authentication and Encryption in a Communication System | |
| CA2184679A1 (en) | Apparatus and method for establishing a cryptographic link between elements of a system | |
| NZ333220A (en) | Providing anonymous data transfer in GSM mobile phone system by authenticating mobile station without using unique identifier | |
| MY124136A (en) | Communication method, and information processing apparatus | |
| CA2168812A1 (en) | High-Bandwidth Encryption System with Low-Bandwidth Cryptographic Modules | |
| DK1151625T3 (da) | Fremgangsmåde til udnyttelse af applikationer, der er lagret på et abonnent-identitetsmodul (SIM), og til sikker behandling af information, som er knyttet dertil | |
| BR9702167A (pt) | Meio de indentificação com um portador de dados eletrônicos passivo | |
| TR199903243T2 (xx) | �deme i�lemi ve sistemi | |
| ES2105483T3 (es) | Procedimiento de autentificacion mutua. | |
| WO2024059118A8 (en) | Method and system for providing token identity | |
| FR2755558B1 (fr) | Procede de decorrelation de donnees |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| FG2A | Definitive protection |
Ref document number: 670646 Country of ref document: ES |