4. Information security
  5. Access control or authentication
  6. Network

One time password

Information security – Access control or authentication – Network

Reexamination Certificate

Rate now
  [ 0.00 ] – not rated yet Voters 0   Comments 0

Details

C726S002000, C726S004000, C726S005000, C726S008000, C726S016000, C726S017000, C726S018000, C726S020000, C726S026000, C726S029000, C726S030000, C726S034000, C713S159000, C713S161000, C713S172000, C713S182000, C713S184000, C713S185000, C713S193000, C713S194000, C713S400000, C713S502000

Reexamination Certificate

active

08087074

ABSTRACT:
A token calculates a one time password by generating a HMAC-SHA-1 value based upon a key K and a counter value C, truncating the generated HMAC-SHA-1 value modulo 10^Digit, where Digit is the number of digits in the one time password. The one time password can be validated by a validation server that calculates its own version of the password using K and its own counter value C′. If there is an initial mismatch, the validation server compensate for a lack of synchronization between counters C and C′ within a look-ahead window, whose size can be set by a parameter s.

REFERENCES:
patent: 5023908 (1991-06-01), Weiss
patent: 5168520 (1992-12-01), Weiss
patent: 5448045 (1995-09-01), Clark
patent: 5661807 (1997-08-01), Guski et al.
patent: 6067621 (2000-05-01), Yu et al.
patent: 6292896 (2001-09-01), Guski et al.
patent: 6370649 (2002-04-01), Angelo et al.
patent: 7058180 (2006-06-01), Ferchichi et al.
patent: 7069438 (2006-06-01), Balabine et al.
patent: 7318235 (2008-01-01), Grawrock
patent: 7805377 (2010-09-01), Felsher
patent: 7921455 (2011-04-01), Lin et al.
patent: 2003/0163569 (2003-08-01), Panasyuk et al.
patent: 2003/0212894 (2003-11-01), Buck et al.
patent: 2003/0217288 (2003-11-01), Guo et al.
patent: 2004/0044896 (2004-03-01), Kelley et al.
patent: 2004/0059952 (2004-03-01), Newport et al.
patent: 2005/0239440 (2005-10-01), Chen et al.
patent: 2006/0034238 (2006-02-01), Inoue et al.
patent: 2006/0041756 (2006-02-01), Ashok et al.
patent: 2006/0041759 (2006-02-01), Kaliski et al.
patent: 2007/0033265 (2007-02-01), Anderson et al.
Krawczyk et al, Feb. 1997, RFC 2104, HMAC: Keyed-Hashing For Message Authentication, pp. 1-11.
Haller et al, Feb. 1998, RFC 2289, One Time Password, pp. 1-20.
FIPS Pub 198, Mar. 6, 2002, HMAC, InformationTechnology Laboratory.
Kaliski, Jun. 22, 2004, Password Protection Module U.S. Appl. No. 60/584,997.
RSA Security, RSA Securid Authenticators, 2004, pp. 1-2.
M. Bellare, et al.:Keying Hash Functions for Message Authentication, Proceedings of Crypto '96, Jan. 25, 1996, LNCS vol. 1109, pp. 1-15.
Krawczyk, et al.:HMAC: Keyed-Hasing for Message Authentication, IETF Network Working Group, RFC 2104, Feb. 1997, pp. 1-11.
D. Eastlake, 3rd, et al.:Randomness Recommendations for Security, IETF Network Working Group, RFC 1750, Dec. 2004, pp. 1-30.
S. Bradner:Key words for use in RFCs to Indicate Requirement Levels, BCP 14, RFC 2119, Mar. 1997, pp. 1-3.
S. Bradner:Intellectual Property Rights in IETF Technology, BCP 79, RFC 3668, Feb. 2004, pp. 1-14.
http://www.openauthentication.org/, OATH—Initiative for Open Authentication, retrieved Oct. 17, 2005.
Bart Preneel, et al.:MDx-MAC and Building Fast MACs from Hash Functions, Advances in Cryptology CRYPTO '95, Lecture Notes in Computer Science, vol. 963, D. Coppersmith ed., Springer-Verlag, 1995.
http://www.eetimes.com/showArticle.jhtml?articleID=60402150:Crack in SHA-1 code ‘stuns’ security gurus, retrieved Oct. 17, 2005, pp. 1-4.
http://www.schneier.com/blog/archives/2005/02/shal—broken.html. Bruce Schneier:SHA-1 Broken, Feb. 15, 2005, 24 pp.
http:/
ews.com.com/Researchers+Digital+encryption+standard+flawed/2100-1002—3-55, Robert Lemos:Researchers: Digital encryption standard, Feb. 16, 2005, 5 pp.
Adi Shamir:How to Share a Secret, Communications of the ACM, vol. 22, No. 11, pp. 612-613, Nov. 1979.

Hart Loren

Inventor

  [ 0.00 ] – not rated yet Voters 0   Comments 0

M'Raihi David

Inventor

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Popp Nicolas

Inventor

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Jackson Jenise

Examiner

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Morris & Kamlay LLP

Law Firm

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Orgad Edan

Examiner

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Symantec Corporation

Corporate Assignee

  [ 0.00 ] – not rated yet Voters 0   Comments 0

LandOfFree

Say what you really think

Search LandOfFree.com for the USA inventors and patents. Rate them and share your experience with other people.

Rating

One time password does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with One time password, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and One time password will most certainly appreciate the feedback.

Rate now

     

Profile ID: LFUS-PAI-O-4252943

  Search
All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.

Canada

 Charities
 Companies
 MP Candidates
 Patents
 Employee Salary Disclosure

World

 Places of the World
 Scientific Papers

United States

 Banks
 Companies
 Counties
 Patents
 Employee Salary Disclosure