-
公开(公告)号:US20220116230A1
公开(公告)日:2022-04-14
申请号:US17421079
申请日:2020-01-08
申请人: Bundesdruckerei GMBH
发明人: Frank DIETRICH , Marian MARGRAF , Tim OHLENDORF , Matthias SCHWAN
摘要: The invention relates to a method for securely providing a personalized electronic identity on a terminal (2) which can be used by a user (1) for identification purposes when claiming an online service. In the method, an identification application is ran on a terminal (2), which is assigned to a user (1), in a system comprising data processing devices (9; 10; 11; 12) and said terminal (2), and additionally a personalization application and an identity provider application are ran. The method has the following steps in particular; transmitting a request to transmit an identity attribute assigned to the user (1) front the personalization application to the identity provider application; transmitting the identity attribute from the identity provider application to the personalization application after an agreement to transmit the identity attribute by means of the identity provider application is received from the user (1); generating an asymmetric key pair with a public and a private key on the terminal (2) by means of the identification application; transmitting the public-key from tire identification application on the terminal (2) to the personalization application; and generating an electronic certificate for the public-key by means of tire personalization application and storing the electronic certificate in a data storage device in order to form a first public-key infrastructure of the personalization application, additionally having the steps of: generating a hash value for the identity attribute and recording the hash value onto the electronic certificate. The identity attribute is encoded and transmitted together with the electronic certificate from the personalization application to the identification application (14) on the terminal (2), where both are stored in a local storage device of the terminal (2).
-
公开(公告)号:US20240129139A1
公开(公告)日:2024-04-18
申请号:US18547069
申请日:2022-02-17
CPC分类号: H04L9/3271 , H04L9/0894 , H04L9/3263
摘要: The invention relates to a method for authenticating a user to an application program (108) installed on a mobile terminal (100). The terminal (100) comprises a first security element (110) associated with an operating system (106) and a second security element (112) associated with the application program (108), which is independent of the first security element (110). The method comprises:
in response to an authentication request from the application program (108), authenticating the user by the operating system (106) using an authentication sensor (118) of the terminal (100) and the first security element (110),
executing a challenge-response method between the first security element (110) and the second security element (112), wherein successful execution of the challenge-response method confirms successful authentication of the user by the operating system (106),
upon successful execution of the challenge-response method, confirming successful authentication of the user to the application program (108) by the second security element (112).
-
搜索结果
2 条记录 (耗时 0.011 秒)
