Two-way authentication using a combined code
US7814538B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Dec 13, 2005 |
| Grant date | Oct 12, 2010 |
| Priority date | — |
| Expiry date | Oct 8, 2028 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2209/805
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
An authentication process using a combined code as a shared secret between a client and target service is provided. The combined code is provided out-of-band and includes data to perform two-way authentication for both the client and the target service. The target service may provide the client with a certificate to establish a secure channel. The client may use the data in the combined code to validate the target service. When the target service is validated, the client may provide credentials in the combined code to the target service for authentication. In one example implementation, the combined code includes a hash of a public key. The client may compute another hash of another public key in the certificate provided by the target service and validate the service by comparing the hash in the combined code and the computed hash.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.