OTP GENERATION USING A CAMOUFLAGED KEY
First Claim
1. A method of generating a user one-time passcode (OTP) for a provider account, the method comprising:
- providing a passcode application to a user device;
providing a cardstring to the passcode application, wherein;
the cardstring is defined by the provider account, andthe cardstring is defined by at least one key that is camouflaged with a personal identification number (PIN);
wherein the passcode application is operable to generate a passcode configured as a user OTP for the provider account using the cardstring;
providing the PIN to the passcode application; and
generating the user OTP on the user device using the passcode application and the cardstring.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method is provided for generating a one-time passcode (OTP) from a user device. The method includes providing a passcode application and a cardstring defined by a provider account to the user device. The passcode application is configured to generate a passcode configured as a user OTP for the provider account, using the cardstring. The cardstring is defined by at least one key camouflaged with a personal identification number (PIN). The key may be camouflaged by modifying and encrypting the modified key under the PIN. The key may be configured as a symmetric key, a secret, a seed, and a controlled datum. The cardstring may be an EMV cardstring; and the key may be a UDKA or UDKB. The cardstring may be an OTP cardstring, and the key may be a secret configurable to generate one of a HOTP, a TOTP, and a counter-based OTP.
-
Citations
20 Claims
-
1. A method of generating a user one-time passcode (OTP) for a provider account, the method comprising:
-
providing a passcode application to a user device; providing a cardstring to the passcode application, wherein; the cardstring is defined by the provider account, and the cardstring is defined by at least one key that is camouflaged with a personal identification number (PIN); wherein the passcode application is operable to generate a passcode configured as a user OTP for the provider account using the cardstring; providing the PIN to the passcode application; and generating the user OTP on the user device using the passcode application and the cardstring. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for providing a one-time passcode (OTP), the system comprising:
-
a user device configured to receive a passcode application, a cardstring, and a personal identification number (PIN); a provisioning server configured to provide a cardstring to the user device; wherein the cardstring is defined by at least one camouflaged key that is camouflaged with the PIN; wherein the passcode application is configured to generate a passcode configured as a user OTP for a provider account; and wherein the passcode application uses the cardstring and the PIN to generate the user OTP for the provider account. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification