STRONG MUTUAL AUTHENTICATION OF DEVICES
First Claim
1. A method for enabling strong mutual authentication on a computer network comprising the steps of:
- transmitting, by a first computer, a first encrypted message to a second computer over a first communication channel; and
transmitting, by said first computer, a second message to said second computer over a second communication channel, wherein said second message comprises a second authentication number used to decrypt said first message.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for enabling strong mutual authentication between two computers or devices in a communication system. A user attempting to gain access to a first computer transmits login information over a first communication channel to the first computer. The first computer transmits a first message, which in one embodiment includes a first key encrypted by a second key, to the second computer over the first communication channel. The first computer then transmits a second message to a third device over a second communication channel. The second message includes the second key needed by the second computer to decrypt the first message. The third device uses the user'"'"'s login information to obtain the user'"'"'s private key, which the third device uses to obtain the second key.
The third device transmits the second key in a third message to the second computer over a third communication channel. The second computer then uses the second key to decrypt the first message and obtain the first key.
Once the second computer obtains the first key, in one embodiment the second computer switches the role of the keys from the first message by encrypting the second key with the first key into a fourth message. The second computer transmits the fourth message to the server over the first communication channel, and the first computer decrypts the fourth message using its first key. If the received second key is the same as the generated second key, the second computer is authenticated to the first computer.
-
Citations
23 Claims
-
1. A method for enabling strong mutual authentication on a computer network comprising the steps of:
-
transmitting, by a first computer, a first encrypted message to a second computer over a first communication channel; and
transmitting, by said first computer, a second message to said second computer over a second communication channel, wherein said second message comprises a second authentication number used to decrypt said first message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system for enabling strong mutual authentication comprising:
-
a first transmitter; and
a first receiver in communication with said first transmitter over a first communication channel and in communication with said first transmitter over a second communication channel;
wherein said first transmitter transmits a first encrypted message to said first receiver over said first communication channel; and
wherein said first transmitter transmits a second message to said first receiver over said second communication channel, sdaid second message used to decrypt said first encrypted message. - View Dependent Claims (17, 18, 19, 20)
-
-
21. An apparatus for enabling strong mutual authentication on a computer network comprising:
-
means for transmitting a first message to a computer over a first communication channel, wherein said first message comprises a first encrypted authentication number; and
means for transmitting a second message to said computer over a second communication channel, wherein said second message comprises a second authentication number used to decrypt said first message. - View Dependent Claims (22)
-
-
23. A method for enabling strong mutual authentication on a computer network comprising the steps of:
-
transmitting, by a server computer, a first encrypted message to a client computer over a first communication channel;
receiving, by said client computer, a key over a second communication channel; and
transmitting, by said client computer, a decrypted message over said first communication channel.
-
Specification