Authentication method in wire/wireless communication system using markup language

US 20050021957A1
Filed: 06/14/2004
Published: 01/27/2005
Est. Priority Date: 06/14/2003
Status: Abandoned Application

First Claim

Patent Images

1. An authentication method comprising:

declaring authentication methods in a document type definition (DTD) for declaring a markup language structure; and

selecting one of the declared authentication methods.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An authentication method is provided between a client and a server in a wire/wireless communication system using a markup language. A variety of authentication methods are defined in an extensible markup language document type definition (XML DTD) by using an extensible authentication protocol (EAP). An authentication process is performed between the client and the server by using one authentication method randomly selected from the authentication methods.

Citations

28 Claims

1. An authentication method comprising:
- declaring authentication methods in a document type definition (DTD) for declaring a markup language structure; and
  
  selecting one of the declared authentication methods.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method of claim 1, wherein the authentication methods comprise at least one member of a group of an Identity/Password-based authentication method, an MD5-based authentication method, a one time password (OTP)-based authentication method, a TokenCard-based authentication method and a certificate-based authentication method using transport layer security (TLS).
  - 3. The method of claim 1, wherein declaring the authentication methods comprises using an extensible authentication protocol (EAP).
  - 4. The method of claim 1, further comprising recognizing similar available authentication methods.
  - 5. The method of claim 1, wherein selecting one of the authentication methods comprises when the client transmits an access request, the server selecting one of the authentication methods, and requesting security information from the client according to the selected authentication method.
  - 6. The method of claim 5, wherein the server further transmits to the client a request message including the selected authentication method and a request for security information according to the authentication method.
  - 7. The method of claim 6, wherein when the client receives the request message, the client detects the authentication method and the request for the security information from the request message, and transmits the security information to the server as a response according to the authentication method.
  - 8. The method of claim 7, wherein the authentication method is detected based on information of a <
    - DataKind>
      
      element of an <
      
      EAPData>
      
      element of the <
      
      EAP>
      
      element.
  - 9. The method of claim 7, wherein the request message comprises a random value.
  - 10. The method of claim 9, wherein a response by the authentication method comprises a value obtained by processing the random value, the security information and a set value according to the detected authentication method, and wherein the random value is detected from the request message.
  - 11. The method of claim 10, wherein the set value comprises another value to identify the client.
  - 12. The method of claim 7, wherein the server searches security information that the server has requested to the client from a database, processes the searched security information according to the selected authentication method, and compares the processed value with the response from the client to determine authentication success/failure.
  - 13. The method of claim 1, wherein the selected authentication method comprises a randomly selected authentication method.

14. An authentication method comprising:
- recognizing identical authentication methods;
  
  authenticating, at a server, a client by using one random authentication method of the identical authentication methods; and
  
  authenticating, at the client, the server by using another random authentication method of the identical authentication methods.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The method of claim 14, further comprising defining the authentication method in a document type definition (DTD) for declaring a markup language structure by using an extensible authentication protocol (EAP).
  - 16. The method of claim 14, wherein the authentication methods comprise at least one member of a group of an Identity/Password-based authentication method, an MD5-based authentication method, a one time password (OTP)-based authentication method, a TokenCard-based authentication method, and a certificate-based authentication method using transport layer security (TLS).
  - 17. The method of claim 14, wherein the one random authentication method is different from the another random authentication method.
  - 18. The method of claim 14, wherein the one random authentication method is similar to the another random authentication method.

19. An authentication protocol comprising:
- an extensible markup language document type definition (XML DTD) for declaring a plurality of authentication methods by using an extensible authentication protocol (EAP) element; and
  
  an authentication message including an EAP element having information of one random authentication method of the declared authentication methods.
- View Dependent Claims (20, 21, 22)
- - 20. The authentication protocol of claim 19, wherein the EAP element comprises a <
    - Code>
      
      element for indicating a kind of the authentication message and an <
      
      Identifier>
      
      element for identifying the authentication message.
  - 21. The authentication protocol of claim 20, wherein the EAP element further comprises an <
    - EAPData>
      
      element for containing actual data of the authentication message.
  - 22. The authentication protocol of claim 20, wherein the <
    - EAPData>
      
      element comprises a <
      
      DataKind>
      
      element for indicating a kind of the data, and an information element having information of the random authentication method.

23. An authenticating method comprising:
- determining a plurality of authentication methods between a client and a server;
  
  authenticating the client based on one of the authenticating methods; and
  
  authenticating the server based on one of the authenticating methods.
- View Dependent Claims (24, 25, 26, 27, 28)
- - 24. The method of claim 23, wherein determining the plurality of authentication methods comprises recognizing identical authentication methods.
  - 25. The method of claim 23, further comprising defining the authentication method in a document type definition (DTD) for declaring a markup language structure by using an extensible authentication protocol (EAP).
  - 26. The method of claim 23, wherein the authentication methods comprise at least one member of a group of an Identity/Password-based authentication method, an MD5-based authentication method, a one time password (OTP)-based authentication method, a TokenCard-based authentication method, and a certificate-based authentication method using transport layer security (TLS).
  - 27. The method of claim 23, wherein the client is authenticated using an authentication method different than an authentication method of the server.
  - 28. The method of claim 23, wherein the client is authenticated using an authentication method similar to an authentication method of the server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
LG Electronics, Inc. (LG Corporation)
Original Assignee
LG Electronics, Inc. (LG Corporation)
Inventors
Gu, Se-Wan

Application Number

US10/865,765
Publication Number

US 20050021957A1
Time in Patent Office

Days
Field of Search
US Class Current

713/170
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/162   at the data link layer

H04L 63/205   involving negotiation or de...

H04L 67/02   based on web technology, e....

H04L 69/329   in the application layer [O...

H04L 9/40   Network security protocols

H04W 12/069   using certificates or pre-s...

Authentication method in wire/wireless communication system using markup language

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication method in wire/wireless communication system using markup language

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links