Method and apparatus for secure remote authentication in a public network
June 3, 2014. Estimated Expiration Date is calculated based on simple USPTO term provisions. It does not account for terminal disclaimers, term adjustments, failure to pay maintenance fees, or other factors which might affect the term of a patent.Patent ReferencesCryptographic verification of operational keys used in communication networks Recipient and message authentication method and system Technique for reducing RSA Crypto variable storage Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocessor Communication security accessing system and process Manipulating rights-to-execute in connection with a software copy protection mechanism Cryptographic communication method and cryptographic communication device Method for authenticating the user of a data station connected to a computer system Access control Patent #: 5323465 InventorApplicationNo. 253802 filed on 06/03/1994US Classes:713/155, Central trusted authority provides computer authentication709/228, Session/connection parameter setting713/152, Application layer security713/162, Having particular address related cryptography713/171Having key exchangeExaminersPrimary: Cangialosi, SalvatoreAttorney, Agent or FirmForeign Patent References
International ClassH04L 009/00AbstractA client workstation provides a login address as an anonymous ftp (file transfer protocol) request, and a password as a user's e-mail address. A destination server compares the user's e-mail address provided as a password to a list of authorized users' addresses. If the user's e-mail address is located on the list of authorized users' addresses maintained by the destination server, the destination server generates a random number (X), and encrypts the random number in an ASCII representation using encryption techniques provided by the Internet Privacy Enhanced Mail (PEM) procedures. The encrypted random number is stored in a file as the user's anonymous directory. The server further establishes the encrypted random number as one-time password for the user. The client workstation initiates an ftp request to obtain the encrypted PEM random number as a file transfer (ftp) request from the destination server. The destination server then sends the PEM encrypted password random number, as an ftp file, over the Internet to the client workstation. The client workstation decrypts the PEM encrypted file utilizing the user's private RSA key, in accordance with established PEM decryption techniques. The client workstation then provides the destination server with the decrypted random number password, which is sent in the clear over the Internet, to login to the destination server. Upon receipt of the decrypted random number password, the destination server permits the user to login to the anonymous directory, thereby completing the user authentication procedure and accomplishing login.Other References
| |
