Recovery mechanism for fault-tolerant split-server passcode verification of one-time authentication tokens
US9350545B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Jun 30, 2014 |
| Grant date | May 24, 2016 |
| Priority date | — |
| Expiry date | Nov 8, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/061
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A recovery mechanism is provided for split-server passcode verification systems. An exemplary server-centric recovery scheme enables the system to respond to authentication attempts even if an authentication server is unavailable. The exemplary server-centric recovery scheme allows a periodic exchange of encrypted partial secret states among the authentication servers. Recovery occurs by allowing the decryption of the encrypted partial secret state that corresponds to the server that is unresponsive. An exemplary token-centric recovery scheme comprises determining that a first authentication server is unavailable; applying an authentication mechanism to a message requesting a token to change to a new split-state mode; and sending the authenticated message to the token.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.