| 发明名称 | Method for mutual authentication between a terminal and a remote server by means of a third-party portal | ||
| 摘要 | Mutual authentication between: (i) a user terminal cooperating with a security element and an application for registering with a service, and (ii) a remote server that provides the service, by means of a third-party portal, includes: i) transmitting, to the remote server by means of the portal, signed information R enabling the security element to be authenticated in the remote server; ii) authenticating the security element in the remote server; iii) transmitting a value R′ signed by the remote server to the application by means of the portal; iv) transmitting a request for verification of the signed value R′ from the application to the security element; v) verifying, in the security element, the signature of the remote server and whether the requested service has been granted by the remote server; vi) establishing a secure connection with the remote server using the security element, and requesting that the service be executed. | ||
| 申请公布号 | US9319882(B2) | 申请公布日期 | 2016.04.19 |
| 申请号 | US201314439167 | 申请日期 | 2013.10.25 |
| 申请人 | GEMALTO SA | 发明人 | Berard Xavier;Pico Richard;Faure Frederic;Gonzalvo Benoit |
| 分类号 | G06F7/04;H04W12/06;H04L29/06;H04W4/00 | 主分类号 | G06F7/04 |
| 代理机构 | Buchanan Ingersoll & Rooney PC | 代理人 | Buchanan Ingersoll & Rooney PC |
| 主权项 | 1. A method for mutual authentication between (i) a user terminal cooperating with a security element as well as an application for registering with a service, and (ii) a remote server by means of a third-party portal, said remote server being suitable for providing said service, said method comprising: step i—after authenticating the user of said user terminal with said third-party portal, transmitting to said remote server by means of said third-party portal, signed information R, to enable said security element to be authenticated in said remote server, as well as a service request, wherein R comprises an identifier of said security element; step ii—authenticating said security element in said remote server, and if said security element is recognized: step iii—transmitting a value R′ signed by said remote server from said remote server to said application by means of said third-party portal, said value R′ including said s fined information R as well as a URL address making a response to said service request possible; step iv—transmitting a request for verification of said signed value R′ from said application to said security element; step v—verifying, in said security element, the signature of the remote server and whether the requested service has been granted by said remote server; step vi—establishing a secure connection with said remote server from said security element, and requesting that said requested service be executed. | ||
| 地址 | Meudon FR | ||