摘要 |
A method and apparatus for utilizing a random token, preferably a non-repetitive "dumb token", for secure access by authorized users to sensitive information, specifically as a part of a system where the security algorithm and/or the password cannot be modified and/or updated during consecutive data exchange sessions. The token is generated by the Token Generator (TG) and should be presented in machine readable form to a Token Processor (TP). The TP uses the token in order to generate a secure key and an encoding sequence. The key, which may be time varying, should be sent back to the TG where it is used to generate a decoding sequence. The TP encodes the secure information using the encoding sequence and sends it to the TG, which decodes the secure information using the decoding sequence. |