-
1.发明申请SYSTEM AND METHOD FOR PROCESSING RANDOM CHALLENGES WITHIN AN AUTHENTICATION FRAMEWORK 有权在验证框架中处理随机挑战的系统和方法公开(公告)号:US20140189828A1
公开(公告)日:2014-07-03
申请号:US13730780
申请日:2012-12-28
IPC分类号: H04L29/06
CPC分类号: H04L63/0861
摘要: A system, apparatus, method, and machine readable medium are described for transparently requesting a new random challenge from a server within an authentication framework. For example, one embodiment of a method comprises: transmitting a random challenge and an indication of a timeout period associated with the random challenge from a server to a client within the context of a network registration or authentication process using authentication devices communicatively coupled to the client; automatically detecting that the random challenge is no longer valid based on the timeout period; and responsively transmitting a request for a new random challenge from the client to a server, wherein transmitting is performed transparently to a user of the client.
摘要翻译: 描述了系统,装置,方法和机器可读介质,用于从认证框架内的服务器透明地请求新的随机挑战。 例如,一种方法的一个实施例包括:使用通信地耦合到客户端的认证装置,在网络注册或认证过程的上下文中,从服务器向客户端发送随机询问和与随机挑战相关联的超时时段的指示 ; 根据超时时间自动检测出随机挑战不再有效; 并响应于从客户端向服务器发送新的随机挑战的请求,其中向客户端的用户透明地执行发送。
-
2.发明申请公开(公告)号:US20140189360A1
公开(公告)日:2014-07-03
申请号:US13730795
申请日:2012-12-28
申请人: Davit Baghdasaryan , Matthew Lourie
发明人: Davit Baghdasaryan , Matthew Lourie
IPC分类号: H04L9/32
CPC分类号: H04L9/3281 , H04L9/3231 , H04L9/3234 , H04L9/3247 , H04L63/0861 , H04L63/126 , H04L2209/56
摘要: A system, apparatus, method, and machine readable medium are described for performing transaction signing within an authentication framework. For example, one embodiment of a method comprises: executing an online transaction between a first server and a client; providing transaction details of the online transaction to a second server; generating a signature over the transaction details using a key at the second server; transmitting an authentication request to the client with the signature and the transaction details; authenticating a user on the client to generate authentication data, the authentication data specifying whether the user was successfully authenticated on the client; and transmitting the authentication data, the transaction details, and the signature to the second server; using the transaction details and the key to validate the signature and using the authentication details to authenticate the client at the second server, wherein upon validating the signature and authenticating the client, the second server transmits a confirmation for the transaction to the first server.
摘要翻译: 描述了用于在认证框架内执行事务签名的系统,装置,方法和机器可读介质。 例如,方法的一个实施例包括:在第一服务器和客户端之间执行在线交易; 向第二服务器提供在线交易的交易细节; 使用第二服务器上的密钥在事务细节上生成签名; 向所述客户端发送具有所述签名和所述交易细节的认证请求; 在客户端上验证用户以生成认证数据,所述认证数据指定所述用户是否在客户端上被成功认证; 以及将所述认证数据,所述交易细节和所述签名发送到所述第二服务器; 使用所述交易细节和所述密钥来验证所述签名,并使用所述认证细节来在所述第二服务器处认证所述客户端,其中在验证所述签名并认证所述客户端时,所述第二服务器向所述第一服务器发送所述交易的确认。
-
搜索结果
2 条记录 (耗时 0.012 秒)
