Secure authentication of a user of a device during a session with a connected server

Assignee

• BEHA VIOSEC INC · US

Inventors

• Ingo Deutschmann · Merseburg, DE
• Neil Costigan · Carlow, IE
• Tony Libell · Luleå, SE

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/0428
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Method for a secure authenticating of a user identity of a device for a service during a session including a transaction between an authentication-client and a connected authentication-server, whereby said authentication-client is running on said device using a user-agent with a specific authentication-interface to communicate encrypted authentication messages using a Transport Layer Security (TLS) protocol between said user-agent of said authentication-client and a web-server of both said authentication-server of a ‘Relying Party’ using a unique and secret authentication-identifier (e.g. a hash-value created from ‘Relying Party’, date and time) between them, and a Behaviometric-server using a unique and secret Behaviometric-identifier (e.g. a hash-value created from a Behaviometric-Server, date and time) between them, whereby said session comprising an earlier authentication stage and at least in authentication case (said user identity is positively authenticated) a later controlling stage. Also a related computer program algorithm and a computer-system executing this.