Terminal authentication system, server device, and terminal authentication method
First Claim
1. A terminal authentication system comprising:
- a client terminal; and
a server device,wherein the client terminal and the server device are connected to each other through a network,wherein the client terminal includes;
a storage that, in operation, stores a secret key of the client terminal, secret information for the client terminal and a client certificate including a public key of the client terminal and a hash value which is derived from the secret information, anda first transceiver that is coupled to the storage and that, in operation, transmits the client certificate to the server device, andwherein the server device includes;
a second transceiver,a random number generator that, in operation, generates a first random number in a case that the second transceiver receives the client certificate from the client terminal,first data encryption processor that, in operation, encrypts the first random number using the public key of the client terminal which is included in the client certificate; and
wherein the second transceiver transmits the encrypted first random number to the client terminal, andwherein the client terminal further includes;
a first data decryption processor that, in operation, decrypts the encrypted a first random number using the secret key of the client terminal to thereby acquire the first random number in a case that the first transceiver receives the encrypted first random number from the server device, anda second data encryption processor that, in operation, encrypts the secret information using a first shared key based on the first random number, andwherein the server device further includes;
a second data decryption processor that, in operation decrypts the encrypted secret information using a second shared key based on the first random number to thereby acquire the secret information, in a case that the second transceiver receives the encrypted secret information from the client terminal,a unidirectional function processor that is coupled to the second transceiver and that, in operation, derives a hash value from the encrypted secret information, using a unidirectional function, andan authentication processor that is coupled to the unidirectional function processor and that, in operation, authenticates the client terminal based on the derived hash value and the hash value of the secret information which is included in the client certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided is a terminal authentication system including a client terminal and a server device. The client terminal transmits first information based on secret information different for each client terminal and a client certificate including a hash value of the secret information which is derived from the secret information, to a server device. The server device receives the first information and the client certificate, derives a hash value from the secret information based on the first information using a unidirectional function, and authenticates the client terminal on the basis of the derived hash value and the hash value of the secret information which is included in the client certificate.
-
Citations
7 Claims
-
1. A terminal authentication system comprising:
-
a client terminal; and a server device, wherein the client terminal and the server device are connected to each other through a network, wherein the client terminal includes; a storage that, in operation, stores a secret key of the client terminal, secret information for the client terminal and a client certificate including a public key of the client terminal and a hash value which is derived from the secret information, and a first transceiver that is coupled to the storage and that, in operation, transmits the client certificate to the server device, and wherein the server device includes; a second transceiver, a random number generator that, in operation, generates a first random number in a case that the second transceiver receives the client certificate from the client terminal, first data encryption processor that, in operation, encrypts the first random number using the public key of the client terminal which is included in the client certificate; and wherein the second transceiver transmits the encrypted first random number to the client terminal, and wherein the client terminal further includes; a first data decryption processor that, in operation, decrypts the encrypted a first random number using the secret key of the client terminal to thereby acquire the first random number in a case that the first transceiver receives the encrypted first random number from the server device, and a second data encryption processor that, in operation, encrypts the secret information using a first shared key based on the first random number, and wherein the server device further includes; a second data decryption processor that, in operation decrypts the encrypted secret information using a second shared key based on the first random number to thereby acquire the secret information, in a case that the second transceiver receives the encrypted secret information from the client terminal, a unidirectional function processor that is coupled to the second transceiver and that, in operation, derives a hash value from the encrypted secret information, using a unidirectional function, and an authentication processor that is coupled to the unidirectional function processor and that, in operation, authenticates the client terminal based on the derived hash value and the hash value of the secret information which is included in the client certificate. - View Dependent Claims (2, 3, 6, 7)
-
-
4. A server device which is connected to a client terminal through a network, the server device comprising:
-
a transceiver; a random number generator that, in operation, generates a first random number in a case that the transceiver receives a client certificate including a public key of the client terminal and a hash value which is derived from secret information stored by the client terminal, from the client terminal; a data encryption processor that, in operation, encrypts the first random number using the public key of the client terminal which is included in the client certificate, wherein the transceiver transmits the encrypted first random number to the client terminal; a data decryption processor that, in operation decrypts encrypted secret information, which was encrypted by the client terminal using a first shared key based on the first random number, using a second shared key based on the first random number to thereby acquire the secret information, in a case that the transceiver receives the encrypted secret information from the client terminal; a unidirectional function processor that is coupled to the transceiver and that, in operation, derives a hash value from the encrypted secret information, using a unidirectional function; and an authentication processor that is coupled to the unidirectional function processor and that, in operation, authenticates the client terminal based on the derived hash value and the hash value of the secret information which is included in the client certificate.
-
-
5. A terminal authentication method in a server device which is connected to a client terminal through a network, the terminal authentication method comprising:
-
receiving a client certificate including a public key of the client terminal and a hash value which is derived from secret information stored by the client, from the client terminal; generating a first random number, responsive to the receiving of the client certificate including the public key of the client terminal and the hash value which is derived from the secret information stored by the client, from the client terminal; encrypting the first random number using the public key of the client terminal which is included in the client certificate; transmitting the encrypted first random number to the client terminal; decrypting encrypted secret information, which was encrypted by the client terminal using a first shared key based on the first random number, using a second shared key based on the first random number to thereby acquire the secret information, in a case that the transceiver receives the encrypted secret information from the client terminal; deriving a hash value from the encrypted secret information, using a unidirectional function; and authenticating the client terminal based on the derived hash value and the hash value of the secret information which is included in the client certificate.
-
Specification