METHOD FOR PERSONALIZING AN AUTHENTICATION TOKEN
First Claim
1. A method for personalizing an authentication token responsive to a user input from an authentication token interface device to generate a secure password comprising:
- requesting from the authentication token, by a personalization device in communication with the authentication token, a serial number of the authentication token;
establishing an encrypted session between the authentication token and the personalization device upon receipt of the serial number;
sending, by the personalization device to the authentication token, an initial seed value and an initial secret key responsive to authentication of the serial number;
storing, by the personalization device, the initial seed value and the initial secret key; and
,transferring, by the personalization device to the authentication token, the initial seed value and the initial secret key used by the authentication token to generate the secure password.
4 Assignments
0 Petitions
Accused Products
Abstract
An authentication token using a smart card that an organisation would issue to its customer, the smart card having a processor for executing a software application that is responsive to a user input to generate a one-time password as an output. The smart card co-operates with an interface device for inputting the user input and displaying the one-time password. The authentication token may be used in combination with a remote authentication server for validation of the password and hence authentication of the user.
-
Citations
5 Claims
-
1. A method for personalizing an authentication token responsive to a user input from an authentication token interface device to generate a secure password comprising:
-
requesting from the authentication token, by a personalization device in communication with the authentication token, a serial number of the authentication token; establishing an encrypted session between the authentication token and the personalization device upon receipt of the serial number; sending, by the personalization device to the authentication token, an initial seed value and an initial secret key responsive to authentication of the serial number; storing, by the personalization device, the initial seed value and the initial secret key; and
,transferring, by the personalization device to the authentication token, the initial seed value and the initial secret key used by the authentication token to generate the secure password. - View Dependent Claims (2, 3, 4, 5)
-
Specification