摘要 |
The present invention relates to a method and system for mutual authentication of a user and service provider, said method comprising acts of: authenticating an event by a key generation module (KGM), said event is generated on a computing device by a user, sending a shared secret of registered user for the event by an authentication server to the key generation module (KGM), generating one time key by the KGM for the event, transmitting the one time key by appending the shared secret to registered user mobile device, and performing at least one of: authenticating the user for said event by the KGM when a registered user enters the one-time key on the computing device within a predetermined time period, or terminating the event upon receipt of predefined key sequence from the mobile device. |
主权项 |
1. A method for mutual authentication of a user and service provider, the method comprising:
receiving, at a key generation module (KGM), a notification of an event generated at a computing device, the KGM comprising a service provider server and a third party server, transmitting the notification of the event to an authentication server via the service provider server, receiving, at the third party server, a shared secret provided by a registered user for the event, the shared secret transmitted to the KGM by the authentication server, generating, by the KGM, a one time key for the event, appending the shared secret to the one time key to generate an appended key, transmitting the appended key to a registered user mobile device, and performing at least one of:
authentication of the event by the KGM in response to a registered user entering the one-time key on the computing device within a predetermined time period, andtermination of the event upon receipt of a predefined key sequence from the mobile device. |