摘要 |
A method relates to receiving, by an authentication server executed by a processing device, an authentication request from a client device via a public network, wherein the authentication request comprises a user identifier associated with a password, selecting a first private key of the authentication server from a first range of numbers and a second private key of the authentication server from a second range of numbers, wherein an upper limit of the first range and the second range is specified according to a prime number, receiving, from the client device, a first public key of the client device and a second public key of the client device, calculating a third private key of the authentication server in view of the second private key of the authentication server and a numerical value of the password, receiving, from the client device, a third public key of the client device, calculating a session key of the authentication server in view of the second public key of the client device, the third public key of the client device, and the third private key of the authentication server, and validating the session key. |
主权项 |
1. A method comprising:
receiving, by an authentication server executed by a processing device, an authentication request from a client device via a public network, wherein the authentication request comprises a user identifier associated with a password; selecting a first private key of the authentication server from a first range of numbers and a second private key of the authentication server from a second range of numbers, wherein an upper limit of the first range and the second range is specified according to a prime number; receiving, from the client device, a first public key of the client device and a second public key of the client device; calculating a third private key of the authentication server in view of the second private key of the authentication server and a numerical value of the password; receiving, from the client device, a third public key of the client device; calculating a session key of the authentication server in view of the second public key of the client device, the third public key of the client device, and the third private key of the authentication server; and validating the session key. |