发明名称 |
Method for mutual authentication between a terminal and a remote server by means of a third-party portal |
摘要 |
Mutual authentication between: (i) a user terminal cooperating with a security element and an application for registering with a service, and (ii) a remote server that provides the service, by means of a third-party portal, includes: i) transmitting, to the remote server by means of the portal, signed information R enabling the security element to be authenticated in the remote server; ii) authenticating the security element in the remote server; iii) transmitting a value R′ signed by the remote server to the application by means of the portal; iv) transmitting a request for verification of the signed value R′ from the application to the security element; v) verifying, in the security element, the signature of the remote server and whether the requested service has been granted by the remote server; vi) establishing a secure connection with the remote server using the security element, and requesting that the service be executed. |
申请公布号 |
US9319882(B2) |
申请公布日期 |
2016.04.19 |
申请号 |
US201314439167 |
申请日期 |
2013.10.25 |
申请人 |
GEMALTO SA |
发明人 |
Berard Xavier;Pico Richard;Faure Frederic;Gonzalvo Benoit |
分类号 |
G06F7/04;H04W12/06;H04L29/06;H04W4/00 |
主分类号 |
G06F7/04 |
代理机构 |
Buchanan Ingersoll & Rooney PC |
代理人 |
Buchanan Ingersoll & Rooney PC |
主权项 |
1. A method for mutual authentication between (i) a user terminal cooperating with a security element as well as an application for registering with a service, and (ii) a remote server by means of a third-party portal, said remote server being suitable for providing said service, said method comprising:
step i—after authenticating the user of said user terminal with said third-party portal, transmitting to said remote server by means of said third-party portal, signed information R, to enable said security element to be authenticated in said remote server, as well as a service request, wherein R comprises an identifier of said security element; step ii—authenticating said security element in said remote server, and if said security element is recognized: step iii—transmitting a value R′ signed by said remote server from said remote server to said application by means of said third-party portal, said value R′ including said s fined information R as well as a URL address making a response to said service request possible; step iv—transmitting a request for verification of said signed value R′ from said application to said security element; step v—verifying, in said security element, the signature of the remote server and whether the requested service has been granted by said remote server; step vi—establishing a secure connection with said remote server from said security element, and requesting that said requested service be executed. |
地址 |
Meudon FR |