METHOD FOR AUTHENTICATING A USER DEVICE DURING THE PROCESS OF LOGGING INTO A SERVER
6 Assignments
0 Petitions
Accused Products
Abstract
The invention relates to a computer system (10) and to a method for authenticating a user device (Bm) associated with a user during the process of logging into a server (20), wherein the user device (Bm) belongs to a user device group (B1-Bn) known to the server (20) and has both a user ID (IDBm) and a password (PBm), which are known to the server (20). The method comprises the following steps: a) the server (20) generates input requests (Et1-Etx), each of which is valid only during a defined time period, and displays said input requests (Et1-Etx) individually in succession in a login screen (31), b) the user device (Bm) reads in the input request (Et2) displayed at the time of the login and calculates a response (ABm) by using said input request (Et2), the password (PBm) of the user device, and the current time (t2), c) the user device (Bm) transmits the calculated response (ABm) to the login screen (31), d) the response (ABm) is transmitted by the login screen (31) to the server (20), e) at least for part of the user device group (B1-Bn), the server (20) calculates a response (AS1-ASn) in each case by using the input request (Et2) displayed at the time of the login, the particular password (PB1-PBn), and the current time (t2) and compares the responses (AS1-ASn) calculated by the server with the response (ABm) transmitted by the user device (Bm), and f) the server (20) confirms the authentication for that user device (Bm) for which the response (ASm) calculated by the server (20) matches the response (ABm) transmitted by the user device (Bm).
10 Citations
20 Claims
-
1-10. -10. (canceled)
-
11. A computer-implemented method for authenticating a user device assigned to a user during the process of logging into a server, wherein the user device belongs to a user device group known to the server and has a user ID as well as a password that are known to the server, comprising the following steps:
-
generating input requests by the server that are only valid for a defined length of time, and displaying these input requests in sequence, one at a time, on a login screen; reading the input request displayed at the time of the login and calculating a response using this input request, its password, and a current time; transmitting the calculated response using the user device to the login screen; transmitting the response by the login screen to the server; calculating by the server a respective response for at least part of the user device group, using the input request displayed at the time of the login, the respective password, and the current time, and comparing the responses calculated by the server to the response transmitted by the user device; and confirming by the server the authentication for each user device for which the response calculated by the server matches the response transmitted by the user device. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification