摘要 |
A method, apparatus and system for electronically verifying that a person using an electronic apparatus is who the person claims to be. As a separate device, it may be used for computers, e-commerce, automotive access, security badges, building access, cell phones and any other application in which electronic identification of a person is required. The security device (28, 18, 10) in initiating a contact or in response to an inquiry as to identification transmits its public key identification number. The host (30, 12, 20) encrypts a random message utilizing the user's public key identification number and sends the resulting cryptogram to the user (28, 18, 10). Assuming the user is who the user claims to be, the user is able to decrypt the random message utilizing the user's corresponding private key. The decrypted random message is sent to the host (30, 12, 20), upon which favorable comparison with the random message sent to the user is able to verify that the user is the person he or she claims to be.
|