| 发明名称 |
Authentication of data communications |
| 摘要 |
Methods and apparatus are provided for authenticating communications between a user computer and a server via a data communications network. A security device has memory containing security data, and security logic to use the security data to generate an authentication response to an authentication message received from the server in use. An interface device communicates with the security device. The interface device has a receiver for receiving from the user computer an authentication output containing the authentication message sent by the server to the user computer in use, and interface logic adapted to extract the authentication message from the authentication output and to send the authentication message to the security device. Includes a communications interface for connecting to the server via a communications channel bypassing the user computer. Either the security device or interface device sends the authentication response to the server via the communications channel bypassing the user computer. |
| 申请公布号 |
US8990912(B2) |
申请公布日期 |
2015.03.24 |
| 申请号 |
US200912425805 |
申请日期 |
2009.04.17 |
| 申请人 |
International Business Machines Corporation |
发明人 |
Baentsch Michael;Buhler Peter;Eirich Thomas;Kramp Thorsten;Kuyper-Hammond Michael Peter;Osborne Michael Charles;Visegrady Tamas |
| 分类号 |
G06F7/04;G06F15/16;G06F17/30;H04L29/06;H04W12/06;H04W8/24;G06F21/34;H04W88/02 |
主分类号 |
G06F7/04 |
| 代理机构 |
|
代理人 |
Tuchman Ido;Davis Jennifer R. |
| 主权项 |
1. An apparatus for authenticating communication between a user computer and a server via a data communications network, the apparatus comprising:
a security device having: a memory containing security data; and a security logic configured to use the security data to generate an authentication response to an authentication message received from the server in use; an interface device configured for data communication with the security device, the interface device having: a receiver configured to receive from the user computer an authentication output containing the authentication message sent by the server to the user computer in use; and an interface logic configured to extract the authentication message from the authentication output and to send the authentication message to the security device, the interface device configured to communicate with the server via a first communications channel; and a communications interface configured to connect to the server via a second communications channel bypassing the user computer, wherein one of the security device and interface device is configured to send the authentication response to the server via the communications channel; wherein the interface device is configured to interface between the security device and the user computer for communicating with the server via said first communications channel, and wherein said communications interface is configured for communicating with the server via the second communications channel which bypasses the user computer. |
| 地址 |
Armonk NY US |
