Two-channel challenge-response authentication method in random partial shared secret recognition system
US8006300B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Oct 24, 2006 |
| Grant date | Aug 23, 2011 |
| Priority date | — |
| Expiry date | Sep 4, 2029 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2209/80
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Random partial shared secret recognition is combined with using more than one communication channel between server-side resources and two logical or physical client-side data processing machines. After a first security tier, a first communication channel is opened to a first data processing machine on the client side. The session proceeds by delivering an authentication challenge, identifying a random subset of an authentication credential, to a second data processing machine on the client side using a second communication channel. Next, the user enters an authentication response in the first data processing machine, based on a random subset of the authentication credential. The authentication response is returned to the server side on the first communication channel for matching. The authentication credential can be a one-session-only credential delivered to the user for one session, or a static credential used many times.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.