Information security – Access control or authentication – Network
Reexamination Certificate
2006-06-09
2008-08-05
Truong, Thanhnga B. (Department: 2135)
Information security
Access control or authentication
Network
C726S006000, C726S018000, C713S182000, C713S186000, C382S115000
Reexamination Certificate
active
07409705
ABSTRACT:
Disclosed is a user authentication system, which is designed to present a presentation pattern to a user subject to authentication, and apply a one-time-password derivation rule serving as a password of the user to certain pattern elements included in the presentation pattern at specific positions so as to create a one-time password. An authentication server is operable to generate a pattern seed value adapted to be combined with a user ID so as to allow a presentation pattern to be uniquely determined, and transmit the generated pattern seed value to an authentication-requesting client. The authentication-requesting client is operable to display a presentation pattern created based on an entered user ID and the received pattern seed value and in accordance with a given pattern-element-sequence creation rule, so as to allow the user to enter therein a one-time password, and transmit the entered one-time password to the authentication server. The authentication server is operable to duplicate the presentation pattern so as to create a verification code, and compare between the received one-time password and the created verification code, so as to carry out user authentication. The present invention provides a matrix authentication scheme capable of reducing the risk of password leakage.
REFERENCES:
patent: 6246769 (2001-06-01), Kohut
patent: 7051204 (2006-05-01), Pitsos
patent: 2004/0193882 (2004-09-01), Singerle
patent: 2005/0160297 (2005-07-01), Ogawa
patent: 2005/0289352 (2005-12-01), Benjes
patent: 2006/0018467 (2006-01-01), Steinmetz
patent: 2006/0031174 (2006-02-01), Steinmetz
patent: 2006/0129830 (2006-06-01), Haller et al.
patent: WO 03/069490 (2003-08-01), None
Shigeo Akutsu, “SecureMatrix—The brand new password solution provided by secure matrix”, Nov. 20, 2003, copyright 2003, Computer Systems Engineering Co., Ltd.
Saito Tsugune
Tamai Shigetomo
Ueda Yukiya
Blakely & Sokoloff, Taylor & Zafman
Computer Systems Engineering Co., Ltd.
De Klerk Stephen M.
Shan April Y
Truong Thanhnga B.
LandOfFree
System and method for user authentication does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for user authentication, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for user authentication will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4007902