USER AUTHENTICATION METHOD AND APPARATUS
First Claim
Patent Images
1. A user authentication method for authenticating a user from a server, the user authentication method comprising:
- (a) transmitting a one-time server certification message in response to an authentication request including a user ID of a client terminal, and receiving a one-time terminal certification message from the client terminal; and
(b) authenticating the user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID.
1 Assignment
0 Petitions
Accused Products
Abstract
A user authentication method and apparatus are disclosed. One embodiment of the invention can provide a method for authenticating a user from a server that includes: (a) transmitting a one-time server certification message in response to an authentication request including a user ID of a client terminal, and receiving a one-time terminal certification message from the client terminal; and (b) authenticating the user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID.
-
Citations
14 Claims
-
1. A user authentication method for authenticating a user from a server, the user authentication method comprising:
-
(a) transmitting a one-time server certification message in response to an authentication request including a user ID of a client terminal, and receiving a one-time terminal certification message from the client terminal; and (b) authenticating the user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A user authentication request method for a client terminal requesting user authentication to a server, the user authentication request method comprising:
-
transmitting a user ID to the server; receiving a one-time server certification message from the server in response to transmitting the user ID; and generating a one-time terminal certification message for user authentication, if a verification of the server is successful, and transmitting the one-time terminal certification message to the server, the verification of the server performed by verifying the one-time server certification message by using a hash value using a password. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A server comprising:
-
a communication unit configured to transmit a one-time server certification message in response to an authentication request including a user ID of a client terminal and configured to receive a one-time terminal certification message from the client terminal in reply to the transmission; and an authentication unit configured to authenticate a user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID.
-
-
14. A client terminal comprising:
-
a communication unit configured to receive a one-time server certification message in response to transmitting a user ID; a server verification unit configured to verify a server by verifying the one-time server certification message by using a hash value using a password; and an authentication request unit configured to generate a one-time terminal certification message for user authentication, if a verification of the server is successful, and to transmit the one-time terminal certification message to the server.
-
Specification