Authentication method and system
First Claim
1. A computer implemented method for performing mutual authentication between an online service server and a service user comprising the steps of:
- (a) generating, by an authentication server, a simple authentication number when a generation request of the simple authentication number including user account information of the service user accessing the online service server is received from the online service server;
(b) transmitting, by the authentication server, a generation condition used to generate the simple authentication number to a simple authenticator of a user corresponding to the user account information;
(c) generating, by the simple authenticator, an inspection authentication number corresponding to the simple authentication number by using the generation condition of the simple authentication number; and
(d) generating, by the authentication server, a corresponding inspection value to correspond to an additional inspection value transferred from the simple authenticator when inspection of the online service server through the simple authentication number and the inspection authentication number is completed and comparing whether the additional inspection value and the corresponding inspection value match each other to authenticate a corresponding service user.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided is a computer implemented method for performing mutual authentication between an online service server and a service user, including: (a) generating, by an authentication server, a server inspection OTP; (b) generating, by an OTP generator, a verification OTP having the same condition as the server inspection OTP and using the same generation key as an OTP generation key and a calculation condition different from a calculation condition is applied or a generation key different from the OTP generation key is used and the same calculation condition as the calculation condition used for generating the server inspection OTP is applied to generate a user OTP; and (c) generating, by the authentication server, a corresponding OTP having the same condition as the user OTP and comparing whether the generated corresponding OTP and the user OTP match each other to authenticate the service user.
23 Citations
8 Claims
-
1. A computer implemented method for performing mutual authentication between an online service server and a service user comprising the steps of:
-
(a) generating, by an authentication server, a simple authentication number when a generation request of the simple authentication number including user account information of the service user accessing the online service server is received from the online service server; (b) transmitting, by the authentication server, a generation condition used to generate the simple authentication number to a simple authenticator of a user corresponding to the user account information; (c) generating, by the simple authenticator, an inspection authentication number corresponding to the simple authentication number by using the generation condition of the simple authentication number; and (d) generating, by the authentication server, a corresponding inspection value to correspond to an additional inspection value transferred from the simple authenticator when inspection of the online service server through the simple authentication number and the inspection authentication number is completed and comparing whether the additional inspection value and the corresponding inspection value match each other to authenticate a corresponding service user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
Specification