[go: up one dir, main page]

WO2007080588A3 - Method for authenticating a website - Google Patents

Method for authenticating a website Download PDF

Info

Publication number
WO2007080588A3
WO2007080588A3 PCT/IL2007/000042 IL2007000042W WO2007080588A3 WO 2007080588 A3 WO2007080588 A3 WO 2007080588A3 IL 2007000042 W IL2007000042 W IL 2007000042W WO 2007080588 A3 WO2007080588 A3 WO 2007080588A3
Authority
WO
WIPO (PCT)
Prior art keywords
website
user
personal
address
certificate
Prior art date
Application number
PCT/IL2007/000042
Other languages
French (fr)
Other versions
WO2007080588A2 (en
Inventor
Eli Yaacoby
Original Assignee
Eli Yaacoby
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Eli Yaacoby filed Critical Eli Yaacoby
Publication of WO2007080588A2 publication Critical patent/WO2007080588A2/en
Publication of WO2007080588A3 publication Critical patent/WO2007080588A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The present invention relates to a method for the authentication of a website to users which comprises the steps of: (a) Establishing an agreement between each user and a website owner where each user receives from the website owner at least a first personal client key and the website owner receives from each user at least one personal authenticating website code; (b) Conveying said personal website authenticating code of each user to a certification authority, and producing by said authority a personal certificate containing in an encrypted form said personal authenticating website code and the IP address of said website; (c) Conveying each of said certificates back to said website, and storing the certificates in a storage; (d) Upon accessing the website, submitting by the user the first personal client key, and saving the website IP address as accessed at the user work station for later comparison; (e) Having received said first personal client key, extracting by the website the personal certificate that corresponds to said user, and sending same to the client together with the website home page; (f) Having received the personal certificate at the user station, decrypting the certificate by means of a decrypting key; (g) Comparing the website IP address as decrypted from the received certificate with the website IP address as saved at the user station, and providing identity indication to the user; (h) Verifying by the user that the personal authentication website code is indeed the one submitted by the user to the website owner at said agreement; (i) Concluding by the user that the website is indeed authentic only if both (a) said comparison of IP address indicates identity; and (b) said verification of personal authenticating website code shows identity.
PCT/IL2007/000042 2006-01-12 2007-01-11 Method for authenticating a website WO2007080588A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
IL173128 2006-01-12
IL173128A IL173128A0 (en) 2006-01-12 2006-01-12 Method for authenticating a website

Publications (2)

Publication Number Publication Date
WO2007080588A2 WO2007080588A2 (en) 2007-07-19
WO2007080588A3 true WO2007080588A3 (en) 2009-04-16

Family

ID=38256710

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IL2007/000042 WO2007080588A2 (en) 2006-01-12 2007-01-11 Method for authenticating a website

Country Status (2)

Country Link
IL (1) IL173128A0 (en)
WO (1) WO2007080588A2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106453207A (en) * 2015-08-07 2017-02-22 北京奇虎科技有限公司 Advertisement material data website verification method and device

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11689370B2 (en) 2019-06-04 2023-06-27 The Toronto-Dominion Bank Dynamic management and implementation of consent and permissioning protocols using container-based applications

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020023059A1 (en) * 2000-01-14 2002-02-21 Bari Jonathan H. Method and system for secure registration, storage, management and linkage of personal authentication credentials data over a network
US20050166262A1 (en) * 2001-10-12 2005-07-28 Beattie Douglas D. Methods and systems for automated authentication, processing and issuance of digital certificates
WO2006056990A2 (en) * 2004-11-25 2006-06-01 The Wow Effect Ltd. Method for authenticating a website
US20060200855A1 (en) * 2005-03-07 2006-09-07 Willis Taun E Electronic verification systems
US20070067620A1 (en) * 2005-09-06 2007-03-22 Ironkey, Inc. Systems and methods for third-party authentication

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020023059A1 (en) * 2000-01-14 2002-02-21 Bari Jonathan H. Method and system for secure registration, storage, management and linkage of personal authentication credentials data over a network
US20050166262A1 (en) * 2001-10-12 2005-07-28 Beattie Douglas D. Methods and systems for automated authentication, processing and issuance of digital certificates
WO2006056990A2 (en) * 2004-11-25 2006-06-01 The Wow Effect Ltd. Method for authenticating a website
US20060200855A1 (en) * 2005-03-07 2006-09-07 Willis Taun E Electronic verification systems
US20070067620A1 (en) * 2005-09-06 2007-03-22 Ironkey, Inc. Systems and methods for third-party authentication

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106453207A (en) * 2015-08-07 2017-02-22 北京奇虎科技有限公司 Advertisement material data website verification method and device

Also Published As

Publication number Publication date
IL173128A0 (en) 2006-06-11
WO2007080588A2 (en) 2007-07-19

Similar Documents

Publication Publication Date Title
CN100346249C (en) Method for generating digital certificate and applying the generated digital certificate
US7231526B2 (en) System and method for validating a network session
CN101282222B (en) Digital signature method based on CSK
WO2006118829A3 (en) Preventing fraudulent internet account access
WO2009158086A3 (en) Techniques for ensuring authentication and integrity of communications
CA2530944A1 (en) Challenge response system and method
WO2007121190A3 (en) Method and apparatus for binding multiple authentications
TWI347769B (en) Three way validation and authentication of boot files transmitted from server to client
WO2008011628A3 (en) Device authentication
MX2010003403A (en) Authentication method and framework.
WO2009022560A1 (en) Client device, server device, and program
WO2008024559A3 (en) Method and apparatus for authenticating applications to secure services
CN101364869A (en) Electronic document digital sign-off system and method
CN101005361A (en) Server and software protection method and system
WO2006107542A3 (en) System and method for achieving machine authentication without maintaining additional credentials
CN101917270A (en) A Weak Authentication and Key Agreement Method Based on Symmetric Cryptography
RU2011105187A (en) PROTOCOL OF LINKING THE DEVICE TO THE STATION
WO2007115982A3 (en) Identity protection method, devices and corresponding computer programme product
WO2006093561A3 (en) Secure software communication method and system
SG143127A1 (en) Client credential based secure session authentication method and apparatus
WO2007139706A3 (en) Authenticating a tamper-resistant module in a base station router
CN105162599A (en) Data transmission system and data transmission method
CN105743638A (en) System client authorization authentication method based on B/S framework
WO2014026462A1 (en) Digital rights management method
CN102404337A (en) Data encryption method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07700734

Country of ref document: EP

Kind code of ref document: A2