METHOD AND APPARATUS FOR PERFORMING SECURE COMMUNICATION USING ONE TIME PASSWORD

US 20090158033A1
Filed: 08/29/2008
Published: 06/18/2009
Est. Priority Date: 12/12/2007
Status: Abandoned Application

First Claim

Patent Images

1. A user computer for using a communication service, comprising:

an OTP generator that generates a one time password (OTP); and

a first encryption communication module that transmits user information and an OTP value generated by the OTP generator to a service server which provides the communication service, in order to perform user authentication, and performs encryption communication with the service server using data encoded by the OTP value.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention relates to a communication method and system using a one time password (OTP). The communication system includes: a user computer that has an OTP generator for generating the OTP provided therein; a service server that performs user authentication using user information and an OTP value input from the user computer, and communicates with the user computer using the encoded data that is associated with the OTP value, when the user authentication succeeds; and an OTP integrated authentication server that verifies the OTP value between the user computer and the service server.

Citations

16 Claims

1. A user computer for using a communication service, comprising:
- an OTP generator that generates a one time password (OTP); and
  
  a first encryption communication module that transmits user information and an OTP value generated by the OTP generator to a service server which provides the communication service, in order to perform user authentication, and performs encryption communication with the service server using data encoded by the OTP value.
- View Dependent Claims (2, 3, 4)
- - 2. The user computer of claim 1,wherein the first encryption communication module includes:
    - a first timer that measures the duration of a session established for the encryption communication, andthe first encryption communication module receives a new OTP value from the OTP generator at a predetermined time interval of the duration of the session that is measured by the first timer, and encodes communication data.
  - 3. The user computer of claim 1,wherein the first encryption communication module includes:
    - a session monitoring unit that monitors whether the session established for the encryption communication is updated, andwhenever the session monitoring unit determines that the session is updated, the first encryption communication module receives a new OTP value from the OTP generator and encodes communication data.
  - 4. The user computer of claim 1,wherein the first encryption communication module includes:
    - a first encoding/decoding unit that encodes or decodes communication data using the OTP value as an encryption key, andthe first encoding/decoding unit converts the size and/or value of the OTP and uses the converted data as the encryption key.

5. A service server for providing a communication service, comprising:
- a second encryption communication module that performs a first user authentication process on the basis of user information input from a user computer that requests the communication service, verifies an OTP value input from the user computer through communication with an OTP integrated authentication server, thereby performing a second user authentication process, and when the user authentication of the user computer succeeds, performs encryption communication with the user computer using encoded data that is associated with the OTP value.
- View Dependent Claims (6, 7, 8, 9)
- - 6. The service server of claim 5,wherein the second encryption communication module includes:
    - a session establishing unit that establishes a session for encryption communication with the user computer, andwhenever the session establishing unit establishes the session in response to the communication service request of the user computer, the second encryption communication module receives a new OTP value from the OTP integrated authentication server, and encodes communication data.
  - 7. The service server of claim 6,wherein the second encryption communication module includes:
    - a second timer that measures the duration of the session established by the session establishing unit, andthe second encryption communication module receives a new OTP value from the OTP integrated authentication server at a predetermined time interval of the duration of the session that is measured by the second timer, and encodes communication data.
  - 8. The service server of claim 5,wherein the second encryption communication module includes:
    - a session establishing unit that establishes a session for encryption communication with the user computer, andwhen initial user authentication of the user computer succeeds using user information and the OTP value that are input from the user computer and the session establishing unit establishes a new session in response to a communication service request of the user computer, the second encryption communication module skips the user authentication process.
  - 9. The service server of claim 5,wherein the second encryption communication module includes:
    - a second encoding/decoding unit that encodes or decodes communication data using the OTP value as an encryption key, andthe second encoding/decoding unit converts the size and/or value of the OTP and uses the converted data as the encryption key.

10. A communication method using a one time password (OTP), comprising:
- receiving user information and an OTP value from a user computer in a service server;
  
  performing a first user authentication process using the user information;
  
  querying an OTP integrated authentication server for the OTP value to verify the OTP value, thereby performing a second user authentication process; and
  
  when the first and second user authentication processes succeed, establishing a session for communication with the user computer, and performing encryption communication through the established session, using data encoded by the OTP value.
- View Dependent Claims (11, 12, 13)
- - 11. The communication method of claim 10,wherein the performing of the encryption communication includes:
    - measuring the duration of the session established for the encryption communication; and
      
      receiving a new OTP value from the OTP integrated authentication server at a predetermined time interval of the duration of the session, and encoding communication data.
  - 12. The communication method of claim 10,wherein the performing of the encryption communication includes:
    - determining whether the session established for the encryption communication is updated; and
      
      whenever it is determined that the session is updated, receiving a new OTP value from the OTP integrated authentication server and encoding the communication data.
  - 13. The communication method of claim 12,wherein the performing of the encryption communication further includes:
    - whenever it is determined that the session is updated, determining whether the same user computer accesses.

14. A communication method using a one time password (OTP), comprising:
- receiving an OTP value for user authentication from an OTP generator in a user computer;
  
  transmitting user information and the OTP value to a service server; and
  
  when the user authentication succeeds and the service server establishes a session for communication, performing encryption communication through the established session, using data encoded by the OTP value.
- View Dependent Claims (15, 16)
- - 15. The communication method of claim 14,wherein the performing of the encryption communication includes:
    - measuring the duration of the session established for the encryption communication; and
      
      receiving a new OTP value from the OTP generator at a predetermined time interval of the duration of the session and encoding communication data.
  - 16. The communication method of claim 14,wherein the performing of the encryption communication includes:
    - determining whether the session established for the encryption communication is updated; and
      
      whenever it is determined that the session is updated, receiving a new OTP value from the OTP generator and encoding the communication data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Electronics and Telecommunications Research Institute
Original Assignee
Electronics and Telecommunications Research Institute
Inventors
Chung, Boheung, Jeong, Younseo, Kim, Kiyoung

Application Number

US12/201,011
Publication Number

US 20090158033A1
Time in Patent Office

Days
Field of Search
US Class Current

713/156
CPC Class Codes

H04L 63/068   using time-dependent keys, ...

H04L 63/0838   using one-time-passwords

H04L 9/3228   One-time or temporary data,...

METHOD AND APPARATUS FOR PERFORMING SECURE COMMUNICATION USING ONE TIME PASSWORD

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND APPARATUS FOR PERFORMING SECURE COMMUNICATION USING ONE TIME PASSWORD

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links