STRONG AUTHENTICATION METHOD

摘要

The present invention relates to a method of authenticating, with an authentication server, a user having at his disposal a calculator storing at least one unique identifier specific to the calculator and one first secret key (KO) and calculating a non-invertible function (H); the method comprising: • reception of the unique identifier by the authentication server, which sends an item of information (challenge) and an action code; • reception by the authentication server of three results of the non-invertible function, • the first result (R0) depending on at least one item of data specific to a unique or quasi-unique element of the calculator (SN); • the second result (RT) depending on a Turing test, conditioned to the action code, carried out by the user; and • the third result (R1) depending on a second secret key (K1); • authentication of the user if all four of the unique identifier and the first, second and third results are valid.

主权项

1. A method for authenticating, with an authentication server, a user who has at their disposal a calculator comprising
a memory area for storing at least one unique identifier specific to the calculator and one first secret key (K0); and a processor for calculating at least one non-invertible function (H); the method comprising: the sending by the calculator of its unique identifier to the authentication server; the sending by the authentication server of an item of information (challenge) and an action code to the calculator; the sending by the calculator to the authentication server:
of a first result (R0) of the non-invertible function (H) depending on the item of information (challenge) received from the authentication server, of the first secret key (K0) and of at least one item of data specific to a unique or virtually unique component of the calculator (SN);of a second result (RT) of the non-invertible function (H) depending on the result of a Turing test passed by the user, the Turing test being conditional upon the action code; andof a third result (R1) of the non-invertible function (H) depending on the item of information (challenge) received from the authentication server, of the first secret key (K0) and of a second secret key (K1); the verification by the authentication server of the validity of the unique identifier and of the first, second and third results, and the authentication of the user if all four are valid.