Method and apparatus for simultaneously establishing user identity and group membership
First Claim
1. A computer-implemented method for authenticating a user to one or more groups, said method comprising the steps of:
- computationally verifying an identity of said user; and
computationally verifying a membership of said user with said one or more groups, wherein said verifying computations are performed substantially simultaneously using user information stored in a computer file associated with said user.
3 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus are disclosed for simultaneously establishing a user'"'"'s identity and membership in multiple groups, using only a single identification card (or computer file). In a registration or enrollment phase, secret information is created between the user and any groups for which the user has registered. Once the user has been registered with one or more groups, the user may be authenticated to a verification agent to obtain access to one or more selected groups by providing an encrypted authentication request based on public identifiers relating to one or more groups, and an exponential function based on private identifiers and several randomly generated numbers. The verification agent is able to verify the user'"'"'s registration with the selected groups without knowing the secret information. Optionally, for additional reliability, the verification agent may request the user to repeat the authentication process multiple times, each time altering one of the random numbers. Once verification is complete, the verification agent arranges for the user to access the selected groups. Significantly, the user is able to authenticate itself with multiple groups by carrying out a single authentication sequence.
17 Citations
25 Claims
-
1. A computer-implemented method for authenticating a user to one or more groups, said method comprising the steps of:
-
computationally verifying an identity of said user; and
computationally verifying a membership of said user with said one or more groups, wherein said verifying computations are performed substantially simultaneously using user information stored in a computer file associated with said user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for authenticating a user to one or more groups, said method comprising the steps of:
-
verifying an identity of said user; and
verifying a membership of said user with said one or more groups, wherein said verifying steps are performed using a single operation. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A system for authenticating a user to one or more groups, said system comprising:
-
a memory that stores computer-readable code; and
a processor operatively coupled to said memory, said processor configured to implement said computer-readable code, said computer-readable code configured to;
verify an identity of said user; and
verify a membership of said user with said one or more groups, wherein said verifying computations are performed substantially simultaneously using user information stored in a computer file associated with said user.
-
-
23. An article of manufacture for authenticating a user to one or more groups, comprising:
-
a computer readable medium having computer readable code means embodied thereon, said computer readable program code means comprising;
a step to verify an identity of said user; and
a step to verify a membership of said user with said one or more groups, wherein said verifying computations are performed substantially simultaneously using user information stored in a computer file associated with said user.
-
-
24. A system for authenticating a user to one or more groups, said method comprising the steps of:
-
a memory that stores computer-readable code; and
a processor operatively coupled to said memory, said processor configured to implement said computer-readable code, said computer-readable code configured to;
verify an identity of said user; and
verify a membership of said user with said one or more groups, wherein said verifying steps are performed using a single operation.
-
-
25. An article of manufacture for authenticating a user to one or more groups, comprising:
a computer readable medium having computer readable code means embodied thereon, said computer readable program code means comprising;
a step to verify an identity of said user; and
a step to verify a membership of said user with said one or more groups, wherein said verifying steps are performed using a single operation.
Specification