| 发明名称 |
METHOD TO MANAGE A ONE TIME PASSWORD KEY |
| 摘要 |
The present invention relates to a method to manage a One Time Password key, referenced OTP key, used in an OTP algorithm in a user device having access to an unsafe storage including the steps of retrieving a Personal Identification Number, named PIN, of a user of the user device, deriving a symmetric key from the PIN, encrypting the OTP key using the derived symmetric key, storing the encrypted OTP key in the unsafe storage, decrypting the OTP key using the derived symmetric key, and generating a next OTP key using an incremental parameter, wherein the start value of the incremental parameter of the OTP key generation is random. |
| 申请公布号 |
US2017104739(A1) |
申请公布日期 |
2017.04.13 |
| 申请号 |
US201515128185 |
申请日期 |
2015.03.25 |
| 申请人 |
GEMALTO SA |
发明人 |
LANSLER Martin;PETIT Sébastien;PIERQUIN Guillaume |
| 分类号 |
H04L29/06;H04L9/32;G06F21/60 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. Method to manage a One Time Password key, referenced OTP key, used in an OTP algorithm in a user device having access to an unsafe storage including the preliminary steps of:
retrieving a Personal Identification Number, named PIN, of a user of the user device, deriving a symmetric key from the PIN, encrypting the OTP key using the derived symmetric key, storing the encrypted OTP key in the unsafe storagethe method further comprising the following steps, when the calculation of an OTP is required:
retrieving a PIN of a user of the user device, decrypting the stored OTP key using the derived symmetric key, and using said decrypted OTP key and an incremental parameter to generate a next OTP,wherein the start value of the incremental parameter of the OTP generation is random. |
| 地址 |
Meudon FR |
