[go: up one dir, main page]

WO2005094264A3 - Method and apparatus for authenticating entities by non-registered users - Google Patents

Method and apparatus for authenticating entities by non-registered users Download PDF

Info

Publication number
WO2005094264A3
WO2005094264A3 PCT/US2005/010025 US2005010025W WO2005094264A3 WO 2005094264 A3 WO2005094264 A3 WO 2005094264A3 US 2005010025 W US2005010025 W US 2005010025W WO 2005094264 A3 WO2005094264 A3 WO 2005094264A3
Authority
WO
WIPO (PCT)
Prior art keywords
registered users
authenticating entities
registry
entity
authenticating
Prior art date
Application number
PCT/US2005/010025
Other languages
French (fr)
Other versions
WO2005094264A2 (en
Inventor
Louis Gasparini
William Harris
Original Assignee
Passmark Security Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from PCT/US2004/014379 external-priority patent/WO2004102338A2/en
Priority claimed from PCT/US2005/003686 external-priority patent/WO2006028488A2/en
Application filed by Passmark Security Inc filed Critical Passmark Security Inc
Publication of WO2005094264A2 publication Critical patent/WO2005094264A2/en
Publication of WO2005094264A3 publication Critical patent/WO2005094264A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • H04L9/3213Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/60Digital content management, e.g. content distribution

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)
  • Storage Device Security (AREA)
  • Computer And Data Communications (AREA)

Abstract

A system and method communicates information from an entity (Fig.2 , 310) that a registry (400) can use to authenticate the entity (310) to a user (210). If the registry (400) authenticates the entity (310) , it displays information that represents a shared secret between the registry (400) and the user (210).
PCT/US2005/010025 2004-03-23 2005-03-23 Method and apparatus for authenticating entities by non-registered users WO2005094264A2 (en)

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
US55579004P 2004-03-23 2004-03-23
US60/555,790 2004-03-23
USPCTUS0414379 2004-05-06
PCT/US2004/014379 WO2004102338A2 (en) 2003-05-09 2004-05-06 Method and apparatus for authentication of users and web sites
PCT/US2005/003686 WO2006028488A2 (en) 2004-02-04 2005-02-04 Authentication of users and computer systems
USPCTUS2005003686 2005-02-04

Publications (2)

Publication Number Publication Date
WO2005094264A2 WO2005094264A2 (en) 2005-10-13
WO2005094264A3 true WO2005094264A3 (en) 2006-12-07

Family

ID=35064248

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/010025 WO2005094264A2 (en) 2004-03-23 2005-03-23 Method and apparatus for authenticating entities by non-registered users

Country Status (1)

Country Link
WO (1) WO2005094264A2 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2434662A (en) * 2006-01-13 2007-08-01 Deepnet Technologies Ltd Authenticating a server to a user by displaying an image
WO2011103561A2 (en) * 2010-02-22 2011-08-25 Lockify, Inc. Encryption system using web browsers and untrusted web servers
US11321707B2 (en) * 2016-03-22 2022-05-03 Visa International Service Association Adaptable authentication processing
CN111885055B (en) * 2020-07-22 2023-01-31 中国联合网络通信集团有限公司 A communication method and device

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6161139A (en) * 1998-07-10 2000-12-12 Encommerce, Inc. Administrative roles that govern access to administrative functions
US6968571B2 (en) * 1997-09-26 2005-11-22 Mci, Inc. Secure customer interface for web based data management

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6968571B2 (en) * 1997-09-26 2005-11-22 Mci, Inc. Secure customer interface for web based data management
US6161139A (en) * 1998-07-10 2000-12-12 Encommerce, Inc. Administrative roles that govern access to administrative functions

Also Published As

Publication number Publication date
WO2005094264A2 (en) 2005-10-13

Similar Documents

Publication Publication Date Title
WO2005107137A3 (en) Method and apparatus for authenticating users using two or more factors
WO2004102338A3 (en) Method and apparatus for authentication of users and web sites
WO2005086569A3 (en) System, method and apparatus for electronic authentication
TW200641648A (en) Network system, server apparatus, unauthorized use detection method, and recording medium
TW200633458A (en) User authentication by linking randomly-generated authentication secret with personalized secret
WO2004019550A3 (en) System and method for authenticating wireless component
EP1363424A3 (en) Authentication method and system encrypting a ticket with an symmetric key, said symmetric key being encrypted with an asymmetric key
WO2003015370A3 (en) Data certification method and apparatus
WO2003069490A1 (en) User authentication method and user authentication system
EP1586973A3 (en) Method for encryption backup and method for decryption restoration
WO2006015182A3 (en) Object access level
WO2005070155A3 (en) Avoiding server storage of client state
WO2006027650A3 (en) Service authentication
WO2007120215A3 (en) Secure electronic commerce using mutating identifiers
WO2007139706A3 (en) Authenticating a tamper-resistant module in a base station router
AU2000264222A1 (en) Single sign-on process
CA2137065A1 (en) Method of Protecting Electronically Published Materials Using Cryptographic Protocols
WO2005069101A3 (en) Method and system for establishing a trust framework based on smart key devices
WO2006113159A3 (en) System and methods for providing multi-hop access in a communications network
EP1775879A3 (en) Method and Apparatus for Securely Transmitting and Receiving Data in Peer-to-Peer Manner
WO2002073876A3 (en) Cryptographic authentication with ephemeral modules
WO2003096339A3 (en) Authentication communication system, authentication communication apparatus, and authentication communication method
WO2008126840A1 (en) Content use system and advertisement content use method
EP1318484A3 (en) Apparatus and method for authenticating a user by employing feature points of a fingerprint image of the user
TW200709639A (en) Authentication method, authentication apparatus, and computer product

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Country of ref document: DE

121 Ep: the epo has been informed by wipo that ep was designated in this application
32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: COMMUNICATION UNDER RULE 69 EPC ( EPO FORM 1205A DATED 26/06/07 )

122 Ep: pct application non-entry in european phase

Ref document number: 05729586

Country of ref document: EP

Kind code of ref document: A2