Process of Authentication for an Access to a Web Site
First Claim
1. A method of secure authentication based on the collecting of data representative of hardware components contained in a system (I.H.S), said process comprising a step of enrolment and a step of authentication comprising the steps:
- connecting to a web site and receipt of a web page comprising a code being executable by a browser;
detecting and collecting a list of hardware components from the data collected by the operating system, in particular during the installation of drivers;
wherein the enrolment procedure further comprises the following steps;
displaying a list of hardware components resulting from said collecting and selection from a subset of said list in order to constitute a digital information of reference (DDNA) of the user system;
generating a digital information of reference (DDNA) from said subset, said digital information of reference resulting from a hash operation applied to the raw data composing the collected data.
2 Assignments
0 Petitions
Accused Products
Abstract
A Process of reinforced authentication based on data collection of hardware components contained in a system having steps of enrolment authentication. A web site is connected to and a web page received. A list of hardware components is detected and collected. A subset of the list constituting digital information of reference (DDNA) is generated by a hash operation applied to the raw data. The DDNA is used with a received seed of an authentication server to generate a unique use password (OTP).
-
Citations
18 Claims
-
1. A method of secure authentication based on the collecting of data representative of hardware components contained in a system (I.H.S), said process comprising a step of enrolment and a step of authentication comprising the steps:
-
connecting to a web site and receipt of a web page comprising a code being executable by a browser; detecting and collecting a list of hardware components from the data collected by the operating system, in particular during the installation of drivers; wherein the enrolment procedure further comprises the following steps; displaying a list of hardware components resulting from said collecting and selection from a subset of said list in order to constitute a digital information of reference (DDNA) of the user system; generating a digital information of reference (DDNA) from said subset, said digital information of reference resulting from a hash operation applied to the raw data composing the collected data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 11, 12, 13, 14, 15, 16, 17)
-
-
9. The method of authentication based on the data collection representative of hardware-components contained in a data processing system (I.H.S.) of a user, said system communicating with a web site and an authentication server, said process comprising the following steps:
-
requesting connection to said web site through a software browser transmitted by said system; receiving from said system of a web page and an executable code by a software browser in response to said connection; requesting connection through the software browser transmitted to said authentication server in order to request the authentication parameters serving for the generation of a OTP; transmitting said authentication server of an information representative of a list of the types of hardwares and eligible components for the calculation of digital information of reference (DNA) and reception by said system of data processing (I.H.S.); requesting challenge transmitted by said system to that the authentication server; generating said authentication server of a first challenge; transmitting said system of the user of an authentication information to said authentication server, said information comprises; the LOGIN of the user; a hash of the PIN code of the user; the identifier of the first received challenge; checking by said authentication server of said authentication information transmitted by said system of the user; in the event of success of said verification, requesting said system of the user of the description and the type of fingerprints (DDNA) stored on said authentication server, said fingerprints (DDNA) being associated with hardwares likely to be present in the system of the user; transmitting said system of the user by said authentication server of the description and the type of the fingerprints of the digital information of reference (DDNA) stored on said server; determining a list of hardwares to be tested on said system of the user; for each hardware component corresponding to said list, achieve the following steps; transmission of a request for challenge to said authentication server; reception of a challenge of said authentication server; transmission of a response including; the identifier of connection (login) associated to the connection to the web site a fingerprint based on said digital information of reference (DDNA) of the tested hardware component; a hash; checking the authentication elements by the authentication server and transmission of a response to said system of the user comprising an identifier of session (sessionID2); transmitting by the system of the user of a request for passport associated to said identifier of session (session ID2); transmitting by said authentication server of the passport in an encrypted form; decoding by said user of the system of said passport and access to said web site.
-
-
10. A computer-readable medium having computer-executable instructions for performing a method of secure authentication based on the collecting of data representative of hardware components contained in a system (I.H.S), said process comprising a step of enrolment and a step of authentication comprising the steps:
-
connecting to a web site and receipt of a web page comprising a code being executable by a browser; detecting and collecting a list of hardware components from the data collected by the operating system, in particular during the installation of drivers; wherein the enrolment procedure further comprises the following steps; displaying a list of hardware components resulting from said collecting and selection from a subset of said list in order to constitute a digital information of reference (DDNA) of the user system; generating a digital information of reference (DDNA) from said subset, said digital information of reference resulting from a hash operation applied to the raw data composing the collected data.
-
-
18. The computer-readable medium having computer-executable instructions for performing the method of authentication based on the data collection representative of hardware components contained in a data processing system (I.H.S.) of a user, said system communicating with a web site and an authentication server, said process comprising the following steps:
-
requesting connection to said web site through a software browser transmitted by said system; receiving from said system of a web page and an executable code by a software browser in response to said connection; requesting connection through the software browser transmitted to said authentication server in order to request the authentication parameters serving for the generation of a OTP; transmitting said authentication server of an information representative of a list of the types of hardwares and eligible components for the calculation of digital information of reference (DNA) and reception by said system of data processing (I.H.S.); requesting challenge transmitted by said system to that the authentication server; generating said authentication server of a first challenge; transmitting said system of the user of an authentication information to said authentication server, said information comprises; the LOGIN of the user; a hash of the PIN code of the user; the identifier of the first received challenge; checking by said authentication server of said authentication information transmitted by said system of the user; in the event of success of said verification, requesting said system of the user of the description and the type of fingerprints (DDNA) stored on said authentication server, said fingerprints (DDNA) being associated with hardwares likely to be present in the system of the user; transmitting said system of the user by said authentication server of the description and the type of the fingerprints of the digital information of reference (DDNA) stored on said server; determining a list of hardwares to be tested on said system of the user; for each hardware component corresponding to said list, achieve the following steps; transmission of a request for challenge to said authentication server; reception of a challenge of said authentication server; transmission of a response including; the identifier of connection (login) associated to the connection to the web site a fingerprint based on said digital information of reference (DDNA) of the tested hardware component; a hash; checking the authentication elements by the authentication server and transmission of a response to said system of the user comprising an identifier of session (session ID2); transmitting by the system of the user of a request for passport associated to said identifier of session (session ID2); transmitting by said authentication server of the passport in an encrypted form; decoding by said user of the system of said passport and access to said web site.
-
Specification