WO2002021469A3 - Interactive authentication process - Google Patents

Interactive authentication process Download PDF

Info

Publication number
WO2002021469A3
WO2002021469A3 PCT/GB2001/003856 GB0103856W WO0221469A3 WO 2002021469 A3 WO2002021469 A3 WO 2002021469A3 GB 0103856 W GB0103856 W GB 0103856W WO 0221469 A3 WO0221469 A3 WO 0221469A3
Authority
WO
WIPO (PCT)
Prior art keywords
central computer
random number
result
computed
formulae
Prior art date
Application number
PCT/GB2001/003856
Other languages
French (fr)
Other versions
WO2002021469A2 (en
Inventor
Eugene Zhen Yu Zhang
Tung Hung Daniel Chu
Original Assignee
Ed Vision Holdings Ltd
Eugene Zhen Yu Zhang
Tung Hung Daniel Chu
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from EP01304171A external-priority patent/EP1172776A3/en
Application filed by Ed Vision Holdings Ltd, Eugene Zhen Yu Zhang, Tung Hung Daniel Chu filed Critical Ed Vision Holdings Ltd
Priority to AU2001295708A priority Critical patent/AU2001295708A1/en
Priority to US10/363,529 priority patent/US20040015688A1/en
Publication of WO2002021469A2 publication Critical patent/WO2002021469A2/en
Publication of WO2002021469A3 publication Critical patent/WO2002021469A3/en

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • G06Q20/40975Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Finance (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

A method of authenticating a person or device, the method comprising the steps of storing a plurality of formulae at a smart card 1 and at a central computer 6. A random number is generated at the central computer 6 and identifies one of said formulae. The random number is then sent to the smart card 1. At the smart card 1, a result is computed using at least the formula identified by the received random number. The computed result is sent to the central computer 6. At the central computer 6, the person or device is authenticated by comparing the received result against a result computed at central computer 6 using said random number and the formulae stored at the central computer.
PCT/GB2001/003856 2000-09-05 2001-08-29 Interactive authentication process WO2002021469A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
AU2001295708A AU2001295708A1 (en) 2000-09-05 2001-08-29 Interactive authentication process
US10/363,529 US20040015688A1 (en) 2000-09-05 2001-08-29 Interactive authentication process

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US22974300P 2000-09-05 2000-09-05
US60/229,743 2000-09-05
EP01304171.0 2001-05-09
EP01304171A EP1172776A3 (en) 2000-07-15 2001-05-09 Interactive authentication process

Publications (2)

Publication Number Publication Date
WO2002021469A2 WO2002021469A2 (en) 2002-03-14
WO2002021469A3 true WO2002021469A3 (en) 2002-11-28

Family

ID=26077128

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/GB2001/003856 WO2002021469A2 (en) 2000-09-05 2001-08-29 Interactive authentication process

Country Status (2)

Country Link
AU (1) AU2001295708A1 (en)
WO (1) WO2002021469A2 (en)

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4074079A (en) * 1976-06-02 1978-02-14 Bell Telephone Laboratories, Incorporated Coin telephone antifraud system
US4786790A (en) * 1987-03-04 1988-11-22 Siemens Aktiengesellschaft Data exchange system with authentication code comparator
GB2227111A (en) * 1989-01-17 1990-07-18 Toshiba Kk Certification system
US5177789A (en) * 1991-10-09 1993-01-05 Digital Equipment Corporation Pocket-sized computer access security device
GB2273629A (en) * 1992-12-16 1994-06-22 American Telephone & Telegraph Method for visual authentication by images transmitted over a telecommunication system
US5355413A (en) * 1992-03-06 1994-10-11 Mitsubishi Denki Kabushiki Kaisha Authentication method performed between IC card and terminal unit and system therefor
US5826245A (en) * 1995-03-20 1998-10-20 Sandberg-Diment; Erik Providing verification information for a transaction
US5903721A (en) * 1997-03-13 1999-05-11 cha|Technologies Services, Inc. Method and system for secure online transaction processing
GB2332833A (en) * 1997-12-24 1999-06-30 Interactive Magazines Limited Secure credit card transactions over the internet
WO1999055991A2 (en) * 1998-04-29 1999-11-04 Siemens Aktiengesellschaft Authentication method

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4074079A (en) * 1976-06-02 1978-02-14 Bell Telephone Laboratories, Incorporated Coin telephone antifraud system
US4786790A (en) * 1987-03-04 1988-11-22 Siemens Aktiengesellschaft Data exchange system with authentication code comparator
GB2227111A (en) * 1989-01-17 1990-07-18 Toshiba Kk Certification system
US5177789A (en) * 1991-10-09 1993-01-05 Digital Equipment Corporation Pocket-sized computer access security device
US5355413A (en) * 1992-03-06 1994-10-11 Mitsubishi Denki Kabushiki Kaisha Authentication method performed between IC card and terminal unit and system therefor
GB2273629A (en) * 1992-12-16 1994-06-22 American Telephone & Telegraph Method for visual authentication by images transmitted over a telecommunication system
US5826245A (en) * 1995-03-20 1998-10-20 Sandberg-Diment; Erik Providing verification information for a transaction
US5903721A (en) * 1997-03-13 1999-05-11 cha|Technologies Services, Inc. Method and system for secure online transaction processing
GB2332833A (en) * 1997-12-24 1999-06-30 Interactive Magazines Limited Secure credit card transactions over the internet
WO1999055991A2 (en) * 1998-04-29 1999-11-04 Siemens Aktiengesellschaft Authentication method

Also Published As

Publication number Publication date
AU2001295708A1 (en) 2002-03-22
WO2002021469A2 (en) 2002-03-14

Similar Documents

Publication Publication Date Title
CA2491049A1 (en) Method of preventing unauthorized distribution and use of electronic keys using a key seed
WO2008070480A3 (en) Token authentication
WO2004019550A3 (en) System and method for authenticating wireless component
WO2001018635A3 (en) Virtual smart card system and method
WO2004012408A3 (en) Authentication of shared data by means of perceivable sensory elements
WO2001077792A3 (en) System and method for authenticating a user
EP0856820A3 (en) IC card, IC card processing system, and IC card authentication method
ES2154034T3 (en) PROCEDURE, SYSTEM AND DEVICE FOR THE AUTHENTICATION OF PERSONS.
GB2348309B (en) Authentication executing,device portable authentication device and authentication method using biometrics identification
WO2004051585A3 (en) Identity authentication system and method
WO2002054663A3 (en) Local authentication in a communication system
EP1271435A3 (en) Authentication and access control system
WO2001086376A3 (en) Biometric authorization and registration systems and methods
WO2004068283A3 (en) A method and apparatus for biometric authentication
WO2002091142A3 (en) Remote authentification of fingerprints over an insecure network
AU2001251411A1 (en) Biometric authentication card, system and method
WO2004114075A3 (en) Method, system, and apparatus for identification number authentication
EP1952863A3 (en) Gaming software authentication
WO2002039640A3 (en) Electronic game programming system
WO2002067091A3 (en) Method of authenticating a payment account user
EP1139200A3 (en) Access code generating system including smart card and smart card reader
CA2404551A1 (en) Subscriber authentication
EP1434121A3 (en) Techniques for implementing security on a small footprint device using a context barrier
AU2001235984A1 (en) Authenticating method
WO2005038573A3 (en) Authentication system

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PH PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PH PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

WWE Wipo information: entry into national phase

Ref document number: 10363529

Country of ref document: US

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP