[go: up one dir, main page]

WO2003093942A3 - System for configuring client computers to a secure host using smart cards - Google Patents

System for configuring client computers to a secure host using smart cards Download PDF

Info

Publication number
WO2003093942A3
WO2003093942A3 PCT/US2003/013799 US0313799W WO03093942A3 WO 2003093942 A3 WO2003093942 A3 WO 2003093942A3 US 0313799 W US0313799 W US 0313799W WO 03093942 A3 WO03093942 A3 WO 03093942A3
Authority
WO
WIPO (PCT)
Prior art keywords
smart cards
client computers
secure host
configuration
configuring client
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/US2003/013799
Other languages
French (fr)
Other versions
WO2003093942A2 (en
Inventor
Bruce Eric Ross
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to AU2003239343A priority Critical patent/AU2003239343A1/en
Publication of WO2003093942A2 publication Critical patent/WO2003093942A2/en
Publication of WO2003093942A3 publication Critical patent/WO2003093942A3/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Life Sciences & Earth Sciences (AREA)
  • Biodiversity & Conservation Biology (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The invention relates to a system and method for integrating various data platforms using smart cards. The smart card may be used to securely contain digital credentials and/or access a network or website, and may be used to retain and secure a Virtual Private Network (VPN) or Remote Access Server (RAS) configuration. The configuration may include, for example, an Internet Protocol (IP) address, type of encryption, encryption keys, digital certificates, etc. The invention further combines dedicated phone lines in combination with biometric or other identification methodologies.
PCT/US2003/013799 2002-05-01 2003-05-01 System for configuring client computers to a secure host using smart cards Ceased WO2003093942A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2003239343A AU2003239343A1 (en) 2002-05-01 2003-05-01 System for configuring client computers to a secure host using smart cards

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US37727902P 2002-05-01 2002-05-01
US60/377,279 2002-05-01

Publications (2)

Publication Number Publication Date
WO2003093942A2 WO2003093942A2 (en) 2003-11-13
WO2003093942A3 true WO2003093942A3 (en) 2004-06-10

Family

ID=29401472

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2003/013799 Ceased WO2003093942A2 (en) 2002-05-01 2003-05-01 System for configuring client computers to a secure host using smart cards

Country Status (2)

Country Link
AU (1) AU2003239343A1 (en)
WO (1) WO2003093942A2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8732451B2 (en) 2009-05-20 2014-05-20 Microsoft Corporation Portable secure computing network

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004075097A1 (en) * 2003-02-18 2004-09-02 Biometrics Ltd Biometric identity verification system
US8375202B2 (en) 2004-09-30 2013-02-12 Hewlett-Packard Development Company, L.P. Communications methods and appliances
GB2544739A (en) * 2015-11-24 2017-05-31 Nokia Technologies Oy Method and apparatus for device setup
CN118842596B (en) * 2024-08-07 2025-08-01 北京东方森太科技发展有限公司 Industrial control host remote access control system and method based on multi-factor authentication

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5469506A (en) * 1994-06-27 1995-11-21 Pitney Bowes Inc. Apparatus for verifying an identification card and identifying a person by means of a biometric characteristic
US5578808A (en) * 1993-12-22 1996-11-26 Datamark Services, Inc. Data card that can be used for transactions involving separate card issuers
US5875432A (en) * 1994-08-05 1999-02-23 Sehr; Richard Peter Computerized voting information system having predefined content and voting templates

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5578808A (en) * 1993-12-22 1996-11-26 Datamark Services, Inc. Data card that can be used for transactions involving separate card issuers
US5469506A (en) * 1994-06-27 1995-11-21 Pitney Bowes Inc. Apparatus for verifying an identification card and identifying a person by means of a biometric characteristic
US5875432A (en) * 1994-08-05 1999-02-23 Sehr; Richard Peter Computerized voting information system having predefined content and voting templates

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8732451B2 (en) 2009-05-20 2014-05-20 Microsoft Corporation Portable secure computing network

Also Published As

Publication number Publication date
AU2003239343A1 (en) 2003-11-17
WO2003093942A2 (en) 2003-11-13
AU2003239343A8 (en) 2003-11-17

Similar Documents

Publication Publication Date Title
US20060075486A1 (en) Self-contained token device for installing and running a variety of applications
Lwamo et al. SUAA: A secure user authentication scheme with anonymity for the single & multi-server environments
WO2002048846A3 (en) An authentication system
WO2004046849A3 (en) Cryptographic methods and apparatus for secure authentication
WO2005086569A3 (en) System, method and apparatus for electronic authentication
WO2002073332A3 (en) Separation of instant messaging user and client identities
WO2001067705A3 (en) A data transfer and management system
WO2007096871A3 (en) Device, system and method of accessing a security token
WO2002033516A3 (en) Method and apparatus for encrypted communications to a secure server
WO2007044613A3 (en) Apparatus system and method for real-time migration of data related to authentication
WO2002054201A3 (en) System and method for providing authentication and verification services in an enhanced media gateway
WO2004003686A3 (en) Single system user identity
WO2003012595A3 (en) Registration apparatus and method, as for voting
WO2005057381A3 (en) Systems and methods for authorizing delivery of incoming messages
WO2005001660A3 (en) Secure network privacy system using proxy server
CN101330386A (en) Authentication system based on biological characteristics and identification authentication method thereof
WO2007005919A3 (en) System and method for security in global computer transactions that enable reverse-authentication of a server by a client
WO2008021454A3 (en) Federated credentialing system and method
JP2015532565A (en) Systems and methods for securing data exchange, portable user objects, and remote devices for downloading data
NO985951L (en) Improving or relating to Internet communication
WO2003093942A3 (en) System for configuring client computers to a secure host using smart cards
US9185110B2 (en) Device and method for secure access to a remote server
CN107707686A (en) Equipment identification method and device
Sagarin et al. The path of least resistance
GB2603672A (en) System and method of securing access to a secure remote server and database on a mobile device

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP