MOBILE SMARTCARD BASED AUTHENTICATION
First Claim
1. Method for processing authentication information in a smartcard reader, the method comprising the following steps:
- receiving a challenge in the smartcard reader and sending the challenge to a smartcard;
receiving a response to the challenge from the smartcard, said response having at least a first part and a second part;
in response to having received the challenge in the smartcard reader via an interface to a computing device during normal authentication, sending said response to said computing device;
in response to having received the challenge in the smartcard reader via an interface to a computing device during an authentication preparation phase, sending the first part of the response to the computing device; and
in response to having received the challenge in the smartcard reader via a user interface of the smartcard reader, presenting at least the second part of the response to a user via the user interface.
1 Assignment
0 Petitions
Accused Products
Abstract
In an authentication server, information representing a first part of a response to a challenge is received during the authentication preparation phase. The challenge and the first part of the response are stored for further use. The challenge is resent and information representing a second part of the response to the challenge is received during a modified authentication phase. The first and second parts of the response are checked against the challenge for authenticating the user. In a smartcard reader, the response received from the smartcard is sent to a computing device, when the smartcard reader received the challenge via an interface to the computing device during normal authentication. In response to the smartcard reader having received the challenge via the interface to the computing device during an authentication preparation phase, the smartcard reader sends the first part of the response to the computing device. In response to the smartcard reader having received the challenge via a user interface, it presents at least the second part of the response to a user via the user interface.
9 Citations
20 Claims
-
1. Method for processing authentication information in a smartcard reader, the method comprising the following steps:
-
receiving a challenge in the smartcard reader and sending the challenge to a smartcard; receiving a response to the challenge from the smartcard, said response having at least a first part and a second part; in response to having received the challenge in the smartcard reader via an interface to a computing device during normal authentication, sending said response to said computing device; in response to having received the challenge in the smartcard reader via an interface to a computing device during an authentication preparation phase, sending the first part of the response to the computing device; and in response to having received the challenge in the smartcard reader via a user interface of the smartcard reader, presenting at least the second part of the response to a user via the user interface. - View Dependent Claims (2, 3, 4, 5)
-
-
6. Computer program product comprising a computer usable medium having computer usable program code for processing authentication information in a smartcard reader, said computer program product including:
-
computer usable program code for receiving a challenge in the smartcard reader and sending the challenge to a smartcard; computer usable program code for receiving a response to the challenge from the smartcard, said response having at least a first part and a second part; computer usable program code for sending said response to said computing device in response to having received the challenge in the smartcard reader via an interface to a computing device during normal authentication; computer usable program code for sending the first part of the response to the computing device in response to having received the challenge in the smartcard reader via an interface to a computing device during an authentication preparation phase; and computer usable program code for presenting at least the second part of the response to a user via the user interface in response to having received the challenge in the smartcard reader via a user interface of the smartcard reader.
-
-
7. A smartcard reader device comprising:
-
a user interface component for presenting information to a user and receiving input information from the user; a first component for providing an interface to a computing device for at least receiving a challenge from the computing device; a second component for providing an interface to a smartcard for at least sending a challenge to the smartcard and receiving a response to the challenge from the smartcard, said response having at least a first part and a second part; and a processing component for controlling operation of the smartcard reader, the processing component causing; the first component to send a response received from the smartcard to said computing device in response to the smartcard reader having received the respective challenge via the interface to the computing device during normal authentication; the first component to send the first part of a response received from the smartcard to the computing device in response to the smartcard reader having received the respective challenge via the interface to the computing device during an authentication preparation phase; and the user interface component to present at least the second part of a response received from the smart card via the user interface component in response to the smartcard reader having received the respective challenge via the user interface component.
-
-
8. Method for processing authentication information in an authentication server, the method comprising the following steps:
-
sending a challenge during an authentication preparation phase for authenticating a user; in response to sending the challenge during an authentication preparation phase, receiving information representing a first part of a response to the challenge; storing the challenge and the first part of the response during the authentication preparation phase for further use during modified authentication; resending the challenge during modified authentication for authenticating the user; in response to resending the challenge, receiving information representing a second part of the response to the challenge; and checking the first and second parts of the response against the challenge and successfully authenticating the user during the modified authentication if the response proves to be valid. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. Computer program product comprising a computer usable medium having computer usable program code for processing authentication information in an authentication server, said computer program product including:
-
computer usable program code for sending a challenge during an authentication preparation phase for authenticating a user; computer usable program code for receiving, in response to sending the challenge during an authentication preparation phase, information representing a first part of a response to the challenge; computer usable program code for storing the challenge and the first part of the response during the authentication preparation phase for further use during modified authentication; computer usable program code for resending the challenge during modified authentication for authenticating the user; computer usable program code for receiving, in response to resending the challenge, information representing a second part of the response to the challenge; and computer usable program code for checking the first and second parts of the response against the challenge and successfully authenticating the user during the modified authentication if the response proves to be valid.
-
-
20. Computing system for processing information, said computing system comprising:
-
means for sending a challenge during an authentication preparation phase for authenticating a user; means for receiving, in response to sending the challenge during an authentication preparation phase, information representing a first part of a response to the challenge; means for storing the challenge and the first part of the response during the authentication preparation phase for further use during modified authentication; means for resending the challenge during modified authentication for authenticating the user; means for receiving, in response to resending the challenge, information representing a second part of the response to the challenge; and means for checking the first and second parts of the response against the challenge and successfully authenticating the user during the modified authentication if the response proves to be valid.
-
Specification