Multi-server one-time passcode verification on respective high order and low order passcode portions

摘要

Multi-server one-time passcode verification is provided for respective high order and low order passcode portions. A user is authenticated by receiving an authentication passcode generated by a token associated with the user; and authenticating the user based on the received authentication passcode using at least a first authentication server and a second authentication server, wherein the first authentication server verifies a high-order portion of the received authentication passcode and wherein the second authentication server verifies a low-order portion of the received authentication passcode. The received authentication passcode is based on, for example, at least two protocodes PR,t and PB,t generated by the token and/or pseudorandom information RA,t. A codebook Ct, based on the pseudorandom information RA,t, can be used to embed additional auxiliary information into the authentication passcode.

主权项

1. A method for authenticating a user, comprising: receiving an authentication passcode generated by a token associated with said user, wherein the received authentication passcode comprises a high-order portion and a low-order portion;
providing the received authentication passcode to a first authentication server and a second authentication server; and authenticating the user based on the received authentication passcode using at least the first authentication server and the second authentication server, wherein said first authentication server verifies the high-order portion of the received authentication passcode and wherein said second authentication server verifies the low-order portion of the received authentication passcode, wherein a binary codebook B is used to embed additional auxiliary information into said authentication passcode.