METHOD OF GENERATING ONE-TIME PASSWORD AND APPARATUS FOR PERFORMING THE SAME
First Claim
1. A method of generating a One-Time Password (OTP) performed by a user terminal, the method comprising:
- receiving user secret information that is input according to execution of a process of providing an OTP;
authenticating the user secret information by generating a response value based on the received user secret information and a challenge value received from a user verification apparatus, and transmitting the response value to the user verification apparatus; and
generating an OTP using at least one of the user secret information, the challenge value and the response value as the user secret information is authenticated.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed is a technology related to a method of generating an OTP and an apparatus for performing the same. The method includes receiving user secret information that is input according to execution of a process of providing an OTP; authenticating the user secret information by generating a response value based on the received user secret information and a challenge value received from a user verification apparatus, and transmitting the response value to the user verification apparatus; and generating an OTP using at least one of the user secret information, the challenge value and the response value as the user secret information is authenticated, thereby effectively dealing with loss or appropriation of a user terminal and also improving the security of an OTP.
13 Citations
10 Claims
-
1. A method of generating a One-Time Password (OTP) performed by a user terminal, the method comprising:
-
receiving user secret information that is input according to execution of a process of providing an OTP; authenticating the user secret information by generating a response value based on the received user secret information and a challenge value received from a user verification apparatus, and transmitting the response value to the user verification apparatus; and generating an OTP using at least one of the user secret information, the challenge value and the response value as the user secret information is authenticated. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An apparatus for generating an One-Time Password (OTP) implemented by a user terminal, the apparatus comprising:
-
a secret information receiving unit configured to receive user secret information that is input according to execution of a process of providing an OTP; a secret information authenticating unit configured to authenticate the user secret information by generating a response value based on the received user secret information and a challenge value received from a user verification apparatus, and transmitting the response value to the user verification apparatus; and an OTP generating unit configured to generate an OTP using at least one of the user secret information, the challenge value, and the response value as the user secret information is authenticated. - View Dependent Claims (7, 8, 9, 10)
-
Specification