Cryptography – Particular algorithmic function encoding – Nbs/des algorithm
Patent
1996-02-08
1997-01-07
Gregory, Bernarr E.
Cryptography
Particular algorithmic function encoding
Nbs/des algorithm
380 25, 380 29, 380 49, H04L 932
Patent
active
055925537
ABSTRACT:
A system for authenticating a user located at a requesting node to a resource such as a host application located at an authenticating node using one-time passwords that change pseudorandomly with each request for authentication. At the requesting node a non-time-dependent value is generated from nonsecret information identifying the user and the host application, using a secret encryption key shared with the authenticating node. The non-time-dependent value is combined with a time-dependent value to generate a composite value that is encrypted to produce an authentication parameter. The authentication parameter is reversibly transformed into an alphanumeric character string that is transmitted as a one-time password to the authenticating node. At the authenticating node the received password is transformed back into the corresponding authentication parameter, which is decrypted to regenerate the composite value. The non-time-dependent value is replicated at the authenticating node using the same nonsecret information and encryption key shared with the requesting node. The locally generated non-time-dependent value is combined with the regenerated composite value to regenerate the time-dependent value. The user is authenticated if the regenerated time-dependent value is within a predetermined range of a time-dependent value that is locally generated at the authenticating node.
REFERENCES:
patent: 4078152 (1978-03-01), Tuckerman
patent: 4229818 (1980-10-01), Matyas et al.
patent: 4800590 (1989-01-01), Vaughan
patent: 4885778 (1989-12-01), Weiss
patent: 5163097 (1992-11-01), Pegg
patent: 5241594 (1993-08-01), Kung
FIPS PUB 46-1, "Data Encryption Standard"; 1988, National Bureau of Standards, U.S. Dept. of Commerce.
Cryptography: A New Dimension In Computer Data Security by C. H. Meyer et al--pp. 73-85; John Wiley & Sons; New York, 1982.
"Kerberos: An Authentication Service for Open Network Systems" by J. Steiner et al, pp. 191-202.
UNIX Network Programming by W. R. Stevens, pp. 430-436, Prentice-Hall, 1990; Englewood Cliffs, N.J.
IBM TDB, vol. 32, No. 3A, Aug. 1989, Dean et al, "Generating Random Eight Character Quantities Using The Data Encryption . . . Algorithm".
Cryptography: A New Dimension in Computer Data Security, C. H. Meyer and S. M. Matyas, John Willey & Sons, New York; 1982; pp. 356-359, 484-486, 23-31 .
Coppersmith Don
Guski Richard H.
Johnson Donald B.
Larson Raymond C.
Matyas, Jr. Stephen M.
Gregory Bernarr E.
International Business Machines - Corporation
Kinnaman Jr. William A.
LandOfFree
Authentication system using one-time passwords does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Authentication system using one-time passwords, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Authentication system using one-time passwords will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1771608