Method for authenticating a user device during the process of logging into a server
First Claim
1. A computer-implemented method for authenticating a user device assigned to a user during the process of logging into a server, wherein the user device belongs to a user device group known to the server and has a user ID as well as a password that are known to the server, the method comprising:
- generating input requests by the server that are only valid for a defined length of time, and displaying these input requests in sequence, one at a time, on a login screen;
the user device reading a first input request of the input requests that is displayed at the time of the login and calculating a response using the first input request, its password, and a current time;
the user device transmitting the calculated response to the login screen without also transmitting the user ID;
transmitting the response by the login screen to the server without also transmitting the user ID;
calculating by the server a first respective response for at least part of the user device group, using the first input request displayed at the time of the login, the password of the user device, and the current time, and comparing the first respective response calculated by the server to the response transmitted by the user device;
confirming by the server the authentication for the user device in response to the first respective response calculated by the server matching the response to the first input request transmitted by the user device;
generating a second input request of the input requests by the server for display on the login screen after the confirming of the first respective response matches the response to the first input request;
the user device calculating a response using the second input request;
transmitting the response to the second input request to the server; and
the server logging in the user device that transmitted the response that matches the first respective response calculated by the server after the response to the second input request is determined to match a second respective response to the second input request that is calculated by the server.
6 Assignments
0 Petitions
Accused Products
Abstract
A computer system and method for authenticating a user device associated with a user during the process of logging into a server. The server can generate input requests each of which is valid only during a defined time period, and displays said input requests in succession in a login screen. The user device reads in the input request displayed at the time of the login and calculates a response by using said input request, the password of the user device, and the current time. The user device transmits the calculated response to the login screen and the response is transmitted by the login screen to the server. The server confirms the authentication when the response calculated by the server matches the response transmitted by the user device.
14 Citations
19 Claims
-
1. A computer-implemented method for authenticating a user device assigned to a user during the process of logging into a server, wherein the user device belongs to a user device group known to the server and has a user ID as well as a password that are known to the server, the method comprising:
-
generating input requests by the server that are only valid for a defined length of time, and displaying these input requests in sequence, one at a time, on a login screen; the user device reading a first input request of the input requests that is displayed at the time of the login and calculating a response using the first input request, its password, and a current time; the user device transmitting the calculated response to the login screen without also transmitting the user ID; transmitting the response by the login screen to the server without also transmitting the user ID; calculating by the server a first respective response for at least part of the user device group, using the first input request displayed at the time of the login, the password of the user device, and the current time, and comparing the first respective response calculated by the server to the response transmitted by the user device; confirming by the server the authentication for the user device in response to the first respective response calculated by the server matching the response to the first input request transmitted by the user device; generating a second input request of the input requests by the server for display on the login screen after the confirming of the first respective response matches the response to the first input request; the user device calculating a response using the second input request; transmitting the response to the second input request to the server; and the server logging in the user device that transmitted the response that matches the first respective response calculated by the server after the response to the second input request is determined to match a second respective response to the second input request that is calculated by the server. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer readable medium having code that, when executed, defines a method performed by a server that executes the code, the method comprising:
-
generating input requests by the server that are only valid for a defined length of time, and displaying these input requests in sequence, one at a time, on a login screen so that each of the input requests is readable by a user device at a time of logging in to the server; in response to the server receiving a calculated response to a first input request of the input requests from the user device that was transmitted via the login screen in which the response to the first input request was generated based on the first input request displayed via the login screen, a password of the user device, and a current time, the server calculating a first respective response for at least part of a user device group to which the user device is assigned using the first input request, a password of the user device, and a current time, and comparing the first respective response calculated by the server to the response to the first input request transmitted by the user device; confirming by the server the authentication for the user device when the first respective response calculated by the server matches the response to the first input request transmitted by the user device; generating a second input request of the input requests by the server for display on the login screen after the confirming of the first respective response matching the response to the first input request; transmitting the second input request for display on the login screen; and the server logging in the user device that transmitted the response to the first input request that matches the first respective response calculated by the server after a response to the second input request from the user device is determined to match a second respective response to the second input request calculated by the server. - View Dependent Claims (9, 18, 19)
-
-
10. A computer system for authenticating a user device assigned to a user during the process of logging into a server, comprising:
-
a server for generating input requests that are valid only for a defined length of time, storing user IDs and passwords, and calculating responses to the input requests; multiple user devices, each of which belongs to a user device group and has both a user ID and a password and each of which can calculate a response to the input requests, the multiple user devices including a first user device; and a login screen assigned to the server for displaying the input requests and inputting the calculated responses, wherein the server comprises a non-transitory memory and a controller configured to; generate input requests that are only valid for a defined length of time to display these input requests in sequence, one at a time, on the login screen so that each of the input requests is readable by the user devices at a time of logging in to the server; in response to the server receiving a calculated response to a first input request of the input requests from the first user device that was transmitted via the login screen, calculate a first respective response for at least part of a user device group to which the first user device is assigned using the first input request, the password of the first user device, and a current time, and comparing the first respective response calculated by the server to the response to the first input request transmitted by the first user device; confirming authentication for the first user device for which the first respective response calculated by the server matches the response to the first input request transmitted by the first user device; generate a second input request of the input requests by the server for display on the login screen after confirmation of the first respective response matching the response to the first input request; transmit the second input request for display on the login screen; and login the first user device that transmitted the response to the first input request that matches the first respective response calculated by the server after a response to the second input request is determined to match a second respective response to the second input request calculated by the server. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
Specification