摘要 |
The authentication requires that the server read identification information from a portable device. This information is produced by a specific algorithm applied to a first identification code supplied by the user, and determines whether authentication is positive or negative. The algorithm comprises two main steps. The first stage produces a partial identification code, deduced from the identification code entered by the user. The second stage applies a first non-reversible encryption algorithm to the partial identification code to generate the authentication information. The server holds a master key applicable to a group of users, and the portable device has a secret key operating on the master key.
|