×

System, method and program for off-line user authentication

  • US 20070234063A1
  • Filed: 06/09/2006
  • Published: 10/04/2007
  • Est. Priority Date: 03/30/2006
  • Status: Active Grant
First Claim
Patent Images

1. An off-line user authentication system designed to arrange a plurality of pattern elements in a given pattern format so as to create a presentation pattern to be presented to a user subject to authentication, and apply a one-time-password derivation rule serving as an off-line password of said user to certain ones of the pattern elements included in said presentation pattern at specific positions so as to create a one-time password, said off-line user authentication system comprising:

  • an off-line authentication support server for managing respective user IDs and passwords of users of the system; and

    an off-line authentication client serving as a terminal for authenticating the users in an off-line state of being not network-connected while being connectable to said off-line authentication support server via a network, said off-line authentication client includes;

    user-ID input means for allowing each of the users to enter his/her user ID therefrom; and

    user-ID transmission means for transmitting said entered user ID to said off-line authentication support server via the network, wherein said off-line authentication support server includes;

    a password storage section pre-storing respective user IDs and one-time-password derivation rules of the users in associated relation with each other on a user-by-user basis;

    pattern generation means for generating, in accordance with a given generation rule, a plurality of pattern element sequences each consisting of a set of pattern elements for forming a presentation pattern;

    user-ID receiving means for receiving the user ID of the user subject to authentication, from said off-line authentication client via the network;

    verification-code creation means for applying the one-time-password derivation rule associated with said received user ID to the respective sets of pattern elements included in the presentation patterns formed from the plurality of pattern element sequences generated by said pattern generation means, and subjecting the respective obtained results to a one-way function algorism to create a plurality of verification codes;

    pattern transmission means for transmitting said plurality of generated pattern element sequences to the off-line authentication client of said user subject to authentication via the network; and

    verification-code transmission means for transmitting said plurality of generated verification codes to the off-line authentication client of said user subject to authentication via the network, said off-line authentication client further includes;

    pattern receiving means for receiving said plurality of pattern element sequences transmitted from said off-line authentication support server, via the network;

    pattern storage section for storing said plurality of received pattern element sequences;

    verification-code receiving means for receiving said plurality of verification codes transmitted from said off-line authentication support server, via the network;

    verification-code storage section for storing said plurality of received verification codes;

    pattern selection means for selecting one of the plurality of pattern element sequences stored in said pattern storage section, to allow said selected pattern element sequence to be used in authenticating said user;

    verification-code determination means for determining one of said plurality of verification-codes which corresponds to said selected pattern element sequence;

    pattern display means for arranging the pattern elements included in said selected pattern element sequence, in said given pattern format, to create a presentation pattern, and displaying said created presentation pattern on a screen;

    one-time-password input means for allowing said user to enter therefrom a one-time password created as a result of applying said one-time-password derivation rule to the pattern elements included in said displayed presentation pattern; and

    user authentication means for comparing a result of subjecting said entered one-time password to said one-way function algorithm with said determined verification code, and successfully authenticating said user off-line if they are identical to one another.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×