Authentication system using one-time passwords

Cryptography – Particular algorithmic function encoding – Nbs/des algorithm

Patent

Rate now

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Details

380 25, 380 29, 380 49, H04L 932

Patent

active

055925537

ABSTRACT:
A system for authenticating a user located at a requesting node to a resource such as a host application located at an authenticating node using one-time passwords that change pseudorandomly with each request for authentication. At the requesting node a non-time-dependent value is generated from nonsecret information identifying the user and the host application, using a secret encryption key shared with the authenticating node. The non-time-dependent value is combined with a time-dependent value to generate a composite value that is encrypted to produce an authentication parameter. The authentication parameter is reversibly transformed into an alphanumeric character string that is transmitted as a one-time password to the authenticating node. At the authenticating node the received password is transformed back into the corresponding authentication parameter, which is decrypted to regenerate the composite value. The non-time-dependent value is replicated at the authenticating node using the same nonsecret information and encryption key shared with the requesting node. The locally generated non-time-dependent value is combined with the regenerated composite value to regenerate the time-dependent value. The user is authenticated if the regenerated time-dependent value is within a predetermined range of a time-dependent value that is locally generated at the authenticating node.

REFERENCES:
patent: 4078152 (1978-03-01), Tuckerman
patent: 4229818 (1980-10-01), Matyas et al.
patent: 4800590 (1989-01-01), Vaughan
patent: 4885778 (1989-12-01), Weiss
patent: 5163097 (1992-11-01), Pegg
patent: 5241594 (1993-08-01), Kung
FIPS PUB 46-1, "Data Encryption Standard"; 1988, National Bureau of Standards, U.S. Dept. of Commerce.
Cryptography: A New Dimension In Computer Data Security by C. H. Meyer et al--pp. 73-85; John Wiley & Sons; New York, 1982.
"Kerberos: An Authentication Service for Open Network Systems" by J. Steiner et al, pp. 191-202.
UNIX Network Programming by W. R. Stevens, pp. 430-436, Prentice-Hall, 1990; Englewood Cliffs, N.J.
IBM TDB, vol. 32, No. 3A, Aug. 1989, Dean et al, "Generating Random Eight Character Quantities Using The Data Encryption . . . Algorithm".
Cryptography: A New Dimension in Computer Data Security, C. H. Meyer and S. M. Matyas, John Willey & Sons, New York; 1982; pp. 356-359, 484-486, 23-31 .

LandOfFree

Say what you really think

Search LandOfFree.com for the USA inventors and patents. Rate them and share your experience with other people.

Rating

Authentication system using one-time passwords does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with Authentication system using one-time passwords, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Authentication system using one-time passwords will most certainly appreciate the feedback.

Rate now

     

Profile ID: LFUS-PAI-O-1771608

  Search
All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.