SYSTEM AND METHOD FOR ENCRYPTION
First Claim
1. A method of generating a signature on behalf of a user having a first and second user device, the method comprising:
- receiving a request from said first user device to create a signature for a first message M;
generating a validation challenge using a second message M′
which is based on the first message M and a first secret shared with said user;
sending said validation challenge to said user to enable said user device to regenerate said second message M′
;
receiving a validation code from said second user device, said validation code confirming the request to create a signature; and
generating the signature for the user for the first message M.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for generating a signature for a user are described. The system comprises a signature server, an initial transaction device for a user and a validation device for a user. The initial transaction device is configured to display a first message M and send a request to the signature server to create a signature for said first message M. The signature server is configured to generate a validation challenge using a second message M′ which is based on said first message M′ and a first secret shared between said user and said signature server and send said validation challenge to the validation device. The validation device is configured to regenerate said second message M′ using said first shared secret, display said second message M′, receive user confirmation that the displayed second message M′ corresponds to said first message M, generate a validation code confirming the request to create a signature; and send said validation code to said signature server. Thereafter, said signature server generates the sig nature for the user for the first message M.
10 Citations
37 Claims
-
1. A method of generating a signature on behalf of a user having a first and second user device, the method comprising:
-
receiving a request from said first user device to create a signature for a first message M; generating a validation challenge using a second message M′
which is based on the first message M and a first secret shared with said user;sending said validation challenge to said user to enable said user device to regenerate said second message M′
;receiving a validation code from said second user device, said validation code confirming the request to create a signature; and generating the signature for the user for the first message M. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of validating a signature request for a first message M from a signature creation device, the method comprising:
-
receiving a validation challenge from the signature creation device, the validation challenge having been created using a second message M′
which is based on the first message M and a first secret shared between said signature creation device and said user;generating the second message M′
from the validation challenge using the first shared secret;displaying the second message M′
to the user;receiving confirmation that the second message M′
as displayed corresponds to the first message M;generating a validation code confirming the request to create the signature; and outputting the validation code. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A method of generating a signature on behalf of a user, the method comprising:
-
displaying a first message M on a first user device; sending a request from said first user device to a signature server to create a signature for said first message M; creating a second message M′
which is based on the first message M;generating a validation challenge using said second message M′ and
a first secret shared between said user and said signature server;sending said validation challenge to a second user device; regenerating said second message M′
on said second user device using said first shared secret;displaying said second message M′
on said second user device;receiving user confirmation that the displayed second message M′
corresponds to said first message M;generating a validation code confirming the request to create a signature; sending said validation code from said second user device to said signature server; and generating the signature for the user for the first message M. - View Dependent Claims (18)
-
-
19. (canceled)
-
20. A signature server for creating a signature on behalf of a user, the user having a first and second user device, the server being configured to:
-
receive a request from said first user device to create a signature for a first message M; generate a validation challenge using a second message M′
which is based on the first message M and a first secret shared with said user;send said validation challenge to said user to enable said second user device to regenerate said second message M′
;receive a validation code from said second user device, said validation code confirming the request to create a signature; and generate the signature for the user for the first message M. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
-
-
28. A validation device for a user to validate a signature request for a first message M, the validation device being configured to:
-
receive a validation challenge from a signature creation device, the validation challenge having been created using a second message M′
which is based on the first message M and a first secret shared between said signature creation device and said validation device;generate the second message M′
from the validation challenge using the first shared secret;display the second message M′
to the user;receive user confirmation that the second message M′
corresponds to the first message M;generate a validation code confirming the request to create the signature; and output the validation code. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35)
-
-
36. (canceled)
-
37. A system comprising a signature server, an initial transaction device for a user and a validation device for a user, the initial transaction device being configured to:
-
display a first message M; and send a request to the signature server to create a signature for said first message M; the signature server being configured to; generate a validation challenge using a second message M′
which is based on said first message M and a first secret shared between said user and said signature server; andsend said validation challenge to the validation device; the validation device being configured to; regenerate said second message M′
using said first shared secret;display said second message M′
;receive user confirmation that the displayed second message M′
corresponds to said first message M;generate a validation code confirming the request to create a signature; and send said validation code to said signature server; whereby said signature server generates the signature for the user for the first message M.
-
Specification