WO2008128528A3 - Anti-tapping and manipulation encoding for online accounts - Google Patents
Anti-tapping and manipulation encoding for online accounts Download PDFInfo
- Publication number
- WO2008128528A3 WO2008128528A3 PCT/DE2008/000688 DE2008000688W WO2008128528A3 WO 2008128528 A3 WO2008128528 A3 WO 2008128528A3 DE 2008000688 W DE2008000688 W DE 2008000688W WO 2008128528 A3 WO2008128528 A3 WO 2008128528A3
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- characters
- client
- server
- tapping
- sequence
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G09—EDUCATION; CRYPTOGRAPHY; DISPLAY; ADVERTISING; SEALS
- G09C—CIPHERING OR DECIPHERING APPARATUS FOR CRYPTOGRAPHIC OR OTHER PURPOSES INVOLVING THE NEED FOR SECRECY
- G09C5/00—Ciphering apparatus or methods not provided for in the preceding groups, e.g. involving the concealment or deformation of graphic data such as designs, written or printed messages
Abstract
The invention relates to a method for anti-tapping and manipulation encoding for online accounts, in particular for online banking, by means of visual cryptography. A first partial secret image is generated on a film by the server according to the method of visual cryptography. A second partial secret image is generated by the server with keypads with random characters and displayed on the screen of the client, the keypad being clickable with the mouse. In the next step, the film and the screen are superimposed by the client such that both partial secret images give the image with the clickable keypad with written characters. The client can now enter a sequence of n characters by n mouse clicks on the keypads with characters. The information about which keys the client has clicked in which sequence is then transmitted to the server and the inputted sequence of characters reconstructed in the server.
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| DE200710018802 DE102007018802B3 (en) | 2007-04-20 | 2007-04-20 | Method for tap-proof transmission of character string from client to server through computer network, involves producing shadow image on screen through server according to visual cryptography process |
| DE102007018802.3 | 2007-04-20 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| WO2008128528A2 WO2008128528A2 (en) | 2008-10-30 |
| WO2008128528A3 true WO2008128528A3 (en) | 2009-06-11 |
Family
ID=39646328
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/DE2008/000688 WO2008128528A2 (en) | 2007-04-20 | 2008-04-19 | Anti-tapping and manipulation encoding for online accounts |
Country Status (2)
| Country | Link |
|---|---|
| DE (1) | DE102007018802B3 (en) |
| WO (1) | WO2008128528A2 (en) |
Families Citing this family (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE102007052734B4 (en) | 2007-06-27 | 2010-12-30 | Universität Tübingen | Device and method for tapping and tamper-proof encryption for online accounts |
| DE102007043843A1 (en) | 2007-07-21 | 2009-01-22 | Borchert, Bernd, Dr. | Character string tap-proof transmitting method for e.g. on-line bank account, involves providing information with image to position client, and inputting reconstruction of character string by client using server |
| DE102008053219A1 (en) | 2008-02-05 | 2009-08-06 | Borchert, Bernd, Dr. | Character string e.g. transaction authentication number, transmission method for online bank accounts, involves transmitting information to server, and reconstructing character string, inputted by client, by server |
| DE102008056605A1 (en) | 2008-11-10 | 2010-05-12 | Borchert, Bernd, Dr. | Method for manipulation-secure transmission of e.g. password, from client to server via computer network, for online-banking, involves reconstructing code word, and declining execution of transaction by server |
| DE102008061233A1 (en) | 2008-12-09 | 2010-06-10 | Borchert, Bernd, Dr. | Method for tapping and phishing secure transfer of password and/or personal identification number from clients to server for on-line bank account, involves reconstructing row of images inputted by clients by server |
| DE102008062872A1 (en) | 2008-12-17 | 2010-06-24 | Universität Tübingen | Method for bi-directional transmission of click position information of smart card between server of bank and personal computer system of bank customer in online banking process, involves determining symbols associated to line surface |
| DE102009007277A1 (en) | 2009-02-03 | 2010-08-05 | Borchert, Bernd, Dr. | Method for manipulation-proof transmitting of character string from clients to server in bank via computer network for online accounts, involves transmitting inputted characters to server, and testing inputted characters by server |
| DE102009024893B4 (en) | 2009-06-15 | 2020-09-03 | Giesecke+Devrient Mobile Security Gmbh | Method for securely displaying display data |
| DE102009033918B4 (en) | 2009-07-20 | 2024-01-25 | Giesecke+Devrient ePayments GmbH | Secure display of user data on a telecommunications device |
| DE102009033919A1 (en) | 2009-07-20 | 2011-01-27 | Giesecke & Devrient Gmbh | Secure display of user data on a telecommunication terminal |
| EP2325805B1 (en) * | 2009-10-29 | 2013-08-28 | Deutsche Telekom AG | Authorisation checking method and system |
| EP2339507B1 (en) | 2009-12-28 | 2013-07-17 | Softkinetic Software | Head detection and localisation method |
| DE102010035017A1 (en) * | 2010-08-20 | 2012-02-23 | Giesecke & Devrient Gmbh | Verification of security elements with window and further information |
| US9378499B2 (en) | 2012-06-12 | 2016-06-28 | Square, Inc. | Software PIN entry |
| DE102013002184A1 (en) | 2013-02-06 | 2014-08-07 | Florian Thie | Computer-implemented method for encrypting and decrypting data, involves applying hash function to freely selectable password, where key string is generated to encrypt data to be encrypted and to decrypt data to be encrypted |
| US9773240B1 (en) | 2013-09-13 | 2017-09-26 | Square, Inc. | Fake sensor input for passcode entry security |
| US9613356B2 (en) | 2013-09-30 | 2017-04-04 | Square, Inc. | Secure passcode entry user interface |
| US9558491B2 (en) * | 2013-09-30 | 2017-01-31 | Square, Inc. | Scrambling passcode entry interface |
| US9928501B1 (en) | 2013-10-09 | 2018-03-27 | Square, Inc. | Secure passcode entry docking station |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1472584B1 (en) * | 2002-01-17 | 2005-11-30 | Koninklijke Philips Electronics N.V. | Secure data input dialogue using visual cryptography |
| US20060020559A1 (en) * | 2004-07-20 | 2006-01-26 | Scribocel, Inc. | System for authentication and identification for computerized and networked systems |
| US20060177060A1 (en) * | 2003-07-21 | 2006-08-10 | Koninklijke Philips Electronics N.V. | Image alignment |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2005522717A (en) * | 2002-04-08 | 2005-07-28 | コーニンクレッカ フィリップス エレクトロニクス エヌ ヴィ | Graphical message reproduction device |
| CN1759364A (en) * | 2003-03-11 | 2006-04-12 | 皇家飞利浦电子股份有限公司 | Method and system for enabling remote message composition |
| DE10326462A1 (en) * | 2003-06-12 | 2005-01-05 | Deutsche Telekom Ag | Providing subkeys of an event encrypted by visual cryptography |
-
2007
- 2007-04-20 DE DE200710018802 patent/DE102007018802B3/en not_active Revoked
-
2008
- 2008-04-19 WO PCT/DE2008/000688 patent/WO2008128528A2/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1472584B1 (en) * | 2002-01-17 | 2005-11-30 | Koninklijke Philips Electronics N.V. | Secure data input dialogue using visual cryptography |
| US20060177060A1 (en) * | 2003-07-21 | 2006-08-10 | Koninklijke Philips Electronics N.V. | Image alignment |
| US20060020559A1 (en) * | 2004-07-20 | 2006-01-26 | Scribocel, Inc. | System for authentication and identification for computerized and networked systems |
Non-Patent Citations (1)
| Title |
|---|
| PIM TUYLS ET AL: "Visual Crypto Displays Enabling Secure Communications", INTERNET CITATION, XP002298807, Retrieved from the Internet <URL:BOPPARD> [retrieved on 20041001] * |
Also Published As
| Publication number | Publication date |
|---|---|
| DE102007018802B3 (en) | 2008-08-28 |
| WO2008128528A2 (en) | 2008-10-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2008128528A3 (en) | Anti-tapping and manipulation encoding for online accounts | |
| US20210097205A1 (en) | Systems, Methods and Computer Program Products for Managing Remote Execution of Transaction Documents | |
| US10049421B2 (en) | Secure content and document watermarking | |
| Yang et al. | Reducing shadow size in essential secret image sharing by conjunctive hierarchical approach | |
| Ferry et al. | Accountability and transparency: a nuanced response to Etzioni | |
| US20110055585A1 (en) | Methods and Systems to Create Big Memorizable Secrets and Their Applications in Information Engineering | |
| PH12019500805A1 (en) | Offline-service multi-user interaction based on augmented reality | |
| TWI335546B (en) | ||
| US20160078449A1 (en) | Two-Way Interactive Support | |
| Juneja et al. | An improved LSB based Steganography with enhanced Security and Embedding/Extraction | |
| US11398903B1 (en) | System and method for generating a cryptographic key | |
| AU2002351145A1 (en) | Secure data input dialogue using visual cryptography | |
| JP2014523669A5 (en) | ||
| WO2012092423A3 (en) | Extending data confidentiality into a player application | |
| US20130141471A1 (en) | Obscuring graphical output on remote displays | |
| CN106576098B (en) | The authentication engine and crossfire crypto engine being shared in digital content protection framework | |
| CN103414727A (en) | Encryption protection system for input password input box and using method thereof | |
| WO2008085677A3 (en) | Method and system for manipulating graphical images | |
| ZA200707794B (en) | Dynamic method for visual rendering of data display and input windows on a computer screen | |
| Wang et al. | Temporal integration based visual cryptography scheme and its application | |
| Reddy et al. | Combine use of steganography and visual cryptography for online payment system | |
| NO20200974A1 (en) | ||
| Jabbari Tofighi et al. | ST360IQ: No-Reference Omnidirectional Image Quality Assessment with Spherical Vision Transformers | |
| Lu et al. | Digital information encryption using Multiple Fourier transforms and decimal expansion of irrational numbers | |
| WO2019104455A1 (en) | Encryption/decryption method, encryption/decryption terminal, and double random phase encryption and decryption system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 08757970 Country of ref document: EP Kind code of ref document: A2 |
|
| 122 | Ep: pct application non-entry in european phase |
Ref document number: 08757970 Country of ref document: EP Kind code of ref document: A2 |