System, method and program for off-line two-factor user authentication

Assignee

• CSE CO., LTD. · US

Inventors

• Shigetomo Tamai · Tokyo, JP
• Toru Takano · Tokyo, JP
• Tsuyoshi Kobayashi · Kawasaki, JP

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/0838
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Provided is an off-line two-factor user authentication system. The off-line two-factor user authentication system is designed to use, as a password, a one-time-password derivation rule to be applied to certain pattern elements included in a presentation pattern at specific positions so as to create a one-time password, and further use, as a second authentication factor, information identifying a client to be used by a user. A plurality of pattern seed values each adapted to uniquely specify a presentation pattern in combination with a client ID, and a plurality of verification codes corresponding to respective ones of the pattern seed values, are stored in an off-line two-factor authentication client. A presentation pattern is created based on a selected one of the pattern seed values and a client ID, and an entered one-time password is verified based on a verification code corresponding to the selected pattern seed value.