WO2003093923A3 - System and apparatus for authenticating to a system or network - Google Patents

System and apparatus for authenticating to a system or network Download PDF

Info

Publication number
WO2003093923A3
WO2003093923A3 PCT/IB2003/003301 IB0303301W WO03093923A3 WO 2003093923 A3 WO2003093923 A3 WO 2003093923A3 IB 0303301 W IB0303301 W IB 0303301W WO 03093923 A3 WO03093923 A3 WO 03093923A3
Authority
WO
WIPO (PCT)
Prior art keywords
biotoken
biometric
secure
server
validation
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/IB2003/003301
Other languages
French (fr)
Other versions
WO2003093923A2 (en
Inventor
Robert Eryou
Clovis Najm
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to AU2003247117A priority Critical patent/AU2003247117B2/en
Priority to EP03747532A priority patent/EP1506469A2/en
Priority to CA2483989A priority patent/CA2483989C/en
Publication of WO2003093923A2 publication Critical patent/WO2003093923A2/en
Anticipated expiration legal-status Critical
Publication of WO2003093923A3 publication Critical patent/WO2003093923A3/en
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/42User authentication using separate channels for security data
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2149Restricted operating environment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/76Proxy, i.e. using intermediary entity to perform cryptographic operations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Software Systems (AREA)
  • Bioethics (AREA)
  • Biomedical Technology (AREA)
  • Databases & Information Systems (AREA)
  • Biodiversity & Conservation Biology (AREA)
  • Medical Informatics (AREA)
  • Life Sciences & Earth Sciences (AREA)
  • Computing Systems (AREA)
  • Storage Device Security (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A mobile biometric device, or biotoken and server are disclosed that permit biometric validation of a person that has initialized the biotoken and has communicated one or more codes generated by the biotoken to a server over either a secure or unsecure communications channel. The biotoken that includes a means for capturing biometric information, for hashing some portion of information, and for transmitting or displaying a code that is calculated using a clock value, a random number, a secure hash function and a counter. The server includes functions for initializing the biometric device, for storing key values responsive to initialization, and for validating codes that are provided responsive to future use of the biometric device following a request for validation. Additional functions and features are also disclosed for creating a secure, auditable and private application space on a device or machine, such as a computer or cell phone.
PCT/IB2003/003301 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network Ceased WO2003093923A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
AU2003247117A AU2003247117B2 (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network
EP03747532A EP1506469A2 (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network
CA2483989A CA2483989C (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US37719202P 2002-04-30 2002-04-30
US37713202P 2002-04-30 2002-04-30
US60/377,132 2002-04-30
US60/377,192 2002-04-30

Publications (2)

Publication Number Publication Date
WO2003093923A2 WO2003093923A2 (en) 2003-11-13
WO2003093923A3 true WO2003093923A3 (en) 2004-12-23

Family

ID=29406780

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2003/003301 Ceased WO2003093923A2 (en) 2002-04-30 2003-04-30 System and apparatus for authenticating to a system or network

Country Status (4)

Country Link
EP (1) EP1506469A2 (en)
AU (1) AU2003247117B2 (en)
CA (1) CA2483989C (en)
WO (1) WO2003093923A2 (en)

Families Citing this family (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
NO321850B1 (en) * 2004-06-25 2006-07-10 Buypass As Procedure for generating and verifying an electronic signature
US7886155B2 (en) 2004-12-20 2011-02-08 Biogy, Inc. System for generating requests to a passcode protected entity
US8209751B2 (en) 2004-11-18 2012-06-26 Biogy, Inc. Receiving an access key
US7702911B2 (en) 2004-11-18 2010-04-20 Biogy, Inc. Interfacing with a system that includes a passcode authenticator
US7707622B2 (en) 2004-11-18 2010-04-27 Biogy, Inc. API for a system having a passcode authenticator
WO2006069082A2 (en) 2004-12-20 2006-06-29 Bionopoly Llc Access keys
WO2007036763A1 (en) * 2005-09-29 2007-04-05 Clovis Najm Biometric authentication system
ATE495504T1 (en) 2005-10-26 2011-01-15 Swisscom Ag METHOD AND COMMUNICATION SYSTEM FOR COMPARING BIOMETRIC DATA RECORDED WITH BIOMETRIC SENSORS WITH REFERENCE DATA
EP1868126B1 (en) * 2006-06-16 2011-08-10 Thomson Licensing Device and method for discovering emulated clients
RU2451409C2 (en) * 2010-01-26 2012-05-20 Российская Федерация, от имени которой выступает Федеральная служба по техническому и экспортному контролю (ФСТЭК России) Method for unambiguous hashing of ambiguous biometric data
CN104125070B (en) * 2014-07-30 2018-05-15 中国银行股份有限公司 A kind of mutual trust authentication method and system for multiple information interaction systems
TWI725696B (en) 2020-01-07 2021-04-21 緯創資通股份有限公司 Mobile device, verification terminal device and identity verification method
EP3917103A1 (en) * 2020-05-29 2021-12-01 Siemens Aktiengesellschaft Method, system, transmitter and receiver for authenticating a transmitter
CN111783071B (en) * 2020-07-07 2024-04-19 支付宝(杭州)信息技术有限公司 Verification method, device, equipment and system based on password and privacy data

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2000042491A1 (en) * 1999-01-15 2000-07-20 Rainbow Technologies, Inc. Usb-compliant personal key with integral input and output devices
WO2000045551A1 (en) * 1999-01-27 2000-08-03 International Business Machines Corporation Protection of biometric data via key-dependent sampling
WO2001082190A1 (en) * 2000-04-26 2001-11-01 Global Transaction Company Multi-tiered identity verification authority for e-commerce

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2000042491A1 (en) * 1999-01-15 2000-07-20 Rainbow Technologies, Inc. Usb-compliant personal key with integral input and output devices
WO2000045551A1 (en) * 1999-01-27 2000-08-03 International Business Machines Corporation Protection of biometric data via key-dependent sampling
WO2001082190A1 (en) * 2000-04-26 2001-11-01 Global Transaction Company Multi-tiered identity verification authority for e-commerce

Also Published As

Publication number Publication date
CA2483989A1 (en) 2003-11-13
AU2003247117B2 (en) 2010-01-21
AU2003247117A1 (en) 2003-11-17
WO2003093923A2 (en) 2003-11-13
CA2483989C (en) 2013-04-09
EP1506469A2 (en) 2005-02-16

Similar Documents

Publication Publication Date Title
EP3241335B1 (en) Method and apparatus for securing a mobile application
CN107453862B (en) Scheme for generating, storing and using private key
CN107592308B (en) Double-server multi-factor authentication method oriented to mobile payment scene
TWI268688B (en) System and method for acoustic two factor authentication
WO2003093923A3 (en) System and apparatus for authenticating to a system or network
EP1338940A1 (en) Universal password generator
WO2004046849A3 (en) Cryptographic methods and apparatus for secure authentication
WO2008054375A3 (en) Constrained cryptographic keys
BRPI0519184A2 (en) Methods for authenticating a remote service to a user, and for mutually authenticating a remote service user and a remote service, software architecture, authentication device, and methods for authenticating a second user's identity and / or credentials to create an authentication device and to authenticate a user to a remote service
KR20160003796A (en) User authentication
WO2009097260A1 (en) Two-factor use authentication token
WO2003032126A3 (en) Multi-factor authentication system
CA2541639A1 (en) System and method for application authorization
CN109075965A (en) Use the mthods, systems and devices for the forward secrecy cryptographic technique that password code is verified
US10972286B2 (en) Token-based authentication with signed message
CN112200949B (en) Entrance guard starting method and device and identity verification system
AU4572700A (en) Method and device for authenticating a program code
WO2006107542A3 (en) System and method for achieving machine authentication without maintaining additional credentials
CN101819614A (en) System and method for enhancing network transaction safety by utilizing voice verification USBKey
CN104717063A (en) Software security protection method of mobile terminal
Giri et al. A novel and efficient session spanning biometric and password based three-factor authentication protocol for consumer usb mass storage devices
WO2002058357A3 (en) Pre-authentication of users using one-time passwords
CN114095276B (en) Intelligent home security authentication method based on Internet of things
JP2010517121A5 (en)
US8756666B1 (en) Generating authentication codes

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2003247117

Country of ref document: AU

WWE Wipo information: entry into national phase

Ref document number: 3207/DELNP/2004

Country of ref document: IN

Ref document number: 2003747532

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2483989

Country of ref document: CA

WWP Wipo information: published in national office

Ref document number: 2003747532

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Ref document number: JP