Authentication method for networks

US 5,706,427 A
Filed: 06/27/1996
Issued: 01/06/1998
Est. Priority Date: 09/08/1995
Status: Expired due to Fees

First Claim

Patent Images

1. An authentication method for use by application servers on networks to authenticate users of the applications, comprising:

a requesting step wherein one of the application servers request one of the users to send authentication data to a verification server;

a sending step wherein the one of the users, in response to the request of the one of the application servers received during the requesting step, sends the authentication data of the one of the users together with identification data of the one of the users to the verification server;

a verification step wherein the verification server verifies whether the authentication data is a valid authentication data of the one of the users designated by the identification data;

a verification result reporting step wherein the verification server notifies the one of the application servers of a verification result; and

an authentication step wherein, based on the verification result returned in the verification result reporting step, the one of the application servers authenticates the one of the users.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for authenticating users on networks includes an application server requesting a user host to send authentication data to a verification server. The verification server maintains a database of valid authentication data, against which it compares and verifies the authentication data it receives from the user host. The verification result is sent to the application server, which authenticates the user based on the result. Therefore, the configuration of the application server is simplified. The verification server can be used by a plurality of application servers, allowing for the efficient use of resources on a network.

325 Citations

11 Claims

1. An authentication method for use by application servers on networks to authenticate users of the applications, comprising:
- a requesting step wherein one of the application servers request one of the users to send authentication data to a verification server;
  
  a sending step wherein the one of the users, in response to the request of the one of the application servers received during the requesting step, sends the authentication data of the one of the users together with identification data of the one of the users to the verification server;
  
  a verification step wherein the verification server verifies whether the authentication data is a valid authentication data of the one of the users designated by the identification data;
  
  a verification result reporting step wherein the verification server notifies the one of the application servers of a verification result; and
  
  an authentication step wherein, based on the verification result returned in the verification result reporting step, the one of the application servers authenticates the one of the users.
- View Dependent Claims (5, 6, 7, 8, 9, 10, 11)
- - 5. The authentication method of claim 1, wherein the authentication data includes at least one of signature data and fingerprint data.
  - 6. The authentication method of claim 5, wherein the signature data includes two-dimensional coordinate data, stylus point pressure data and speed data.
  - 7. The authentication method of claim 1, wherein the authentication data includes at least one of password data and membership data.
  - 8. The authentication method of claim 1, wherein the identification data includes at least one of membership data and a name of the one of the users.
  - 9. The authentication method of claim 1, wherein the verification server includes an internal database for storing the authentication data of the one of the users.
  - 10. The authentication method of claim 9, wherein the authentication data includes signature data and system required items.
  - 11. The authentication method of claim 1, further comprising:
    - a rerequesting step wherein, based on the verification result, the one of the application servers requests the one of the users to send additional authentication data to the verification server.

2. An authentication method for use by application servers on networks to authenticate users of the applications, comprising:
- a requesting step wherein one of the application servers request one of the users to send authentication data to a verification server;
  
  a verification preparation request step wherein the one of the application servers sends an identification data of the one of the users to the verification server, requesting that a valid authentication data of the one of the users be read in advance from a database;
  
  a sending step wherein the one of the users, in response to the request of the one of the application servers received during the requesting step, sends the authentication data of the one of the users together with identification data of the one of the users to the verification server;
  
  a verification step wherein the verification server verifies whether the sent authentication data is a valid authentication data of the one of the users designated by the identification data;
  
  a verification result reporting step in which the verification server notifies the one of the application servers of a verification result; and
  
  an authentication step wherein, based on the verification result returned in the verification result reporting step, the one of the application servers authenticates the one of the users.

3. An authentication method for use by application servers on networks to authenticate users of the applications, comprising:
- a requesting step wherein one of the application servers request one of the users to send authentication data to one of a plurality of verification servers;
  
  a sending step wherein the one of the users, in response to the request of the one of the application servers received during the requesting step, sends the authentication data of the one of the users together with identification data of the one of the users to the one of the verification servers;
  
  a verification step wherein the one of the verification servers verifies whether the authentication data is a valid authentication data of the one of the users designated by the identification data;
  
  a verification result reporting step wherein the one of the verification servers notifies the one of the application servers of a verification result; and
  
  an authentication step wherein, based on the verification result returned in the verification result reporting step, the one of the application servers authenticates the one of the users.
- View Dependent Claims (4)
- - 4. The authentication method of claim 3, further comprising:
    - designating a specific verification server as the one of a plurality of verification servers for receiving the sent authentication data and the sent identification data, for verifying whether the authentication data is the authentication data of the one of the users and for notifying the one of the application servers of a verification result.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Identity Verification Solutions LLC (Acacia Research Corporation)
Original Assignee
CADIX, Inc.
Inventors
Tabuki, Takaaki
Primary Examiner(s)
Beausoliel, Jr., Robert W.
Assistant Examiner(s)
Palys, Joseph E.

Application Number

US08/671,241
Time in Patent Office

558 Days
Field of Search

395/186, 395/187.01, 395/188.01, 395/609, 395/610, 380/3, 380/4, 380/23, 380/25
US Class Current

726/5
CPC Class Codes

G06F 21/335   for accessing specific reso...

G06F 21/41   where a single sign-on prov...

G06V 10/94   Hardware or software archit...

H04L 63/08   for authentication of entit...

Authentication method for networks

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

325 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication method for networks

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

325 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links