发明名称 Authentication method and device
摘要 The present invention describes a method for authenticating a user of a mobile device by a verification authority, by making use of at least a personal identification number (PIN) and at least one cryptographic key, such that the PIN and the cryptographic key is known only to the user and the verification authority. The cryptographic key has at least one session key. Firstly, the user encodes the PIN by using at least one session key and then transfers the encoded PIN to a predefined address of the verification authority via the mobile device. Next, the verification authority decodes the PIN by using the cryptographic key authenticates the user if the decoded PIN matches a PIN stored corresponding to the user.
申请公布号 US9277403(B2) 申请公布日期 2016.03.01
申请号 US201113582419 申请日期 2011.03.01
申请人 Eko India Financial Services Pvt. Ltd. 发明人 Sinha Abhinav;Sinha Abhishek;Varghese Anupam;Naldurg Prasad;Bhaskar Raghav;Panjwani Saurabh
分类号 G06F21/00;H04W12/06;H04L29/06 主分类号 G06F21/00
代理机构 代理人 Sheets Kendal M.
主权项 1. A method for authenticating a user of an access device by a verification authority, the method comprising: providing a personal identification number (PIN) to the user; providing cryptographic keys to the user, the PIN and the cryptographic keys being known only to the user and the verification authority, and the cryptographic keys comprising a plurality of session keys; transferring an encoded PIN to a predefined address of the verification authority from the access device using a default messaging protocol of the access device without modifying the default messaging protocol, wherein the PIN is encoded by employing a current session key from the plurality of session keys outside the access device and without utilizing a cryptographic software installed on the access device and wherein the verification authority decodes the PIN by using the cryptographic keys and authenticates the user based on a match between decoded PIN and a PIN stored corresponding to the user, wherein the PIN is encoded by using the cryptographic keys by replacing each character of the PIN by a corresponding character of the current session key, and wherein a slider is used to assist in looking up the current session key, the slider being movable over the plurality of session keys enabling the user to look up a desired session key by sliding the slider over a medium containing the cryptographic keys, the slider comprising grooves of predefined size causing each digit of the desired session key to fall into one of the grooves when the slider is placed over the desired session key.
地址 IN