Authentication method for networks
First Claim
1. An authentication method for use by application servers on at least one network to authenticate users of the applications, comprising:
- a receiving step in which one of the application servers receives authentication data from one of the users;
a determining step in which the receiving application server determines a type of the authentication data received from the user and selects one of a plurality of verification servers based on the type of the authentication data received;
a sending step in which the authentication data received in the receiving step is sent together with the identification data of the user to the selected one of the verification servers;
a verification step in which the selected one of the verification servers verifies whether the authentication data sent in the sending step is valid authentication data of the user designated by the identification data sent in the sending step;
a verification result reporting step in which the selected one of the verification servers notifies the receiving application server of the verification result; and
an authentication step in which the receiving application server authenticates the user on the basis of the verification result returned in the verification result reporting step.
5 Assignments
0 Petitions
Accused Products
Abstract
An authentication method for use by application servers on networks to authenticate users of the applications is provided. In the method, an application server receives authentication data from the user. The application server determines the type of authentication data received from the user and determines a suitable verification server. The received authentication data is sent together with the identification data of the user to a verification server. The verification server verifies whether the sent authentication data is the authentication data of the user designated by the sent identification data. The verification server notifies the application server of the verification result and, on the basis of the returned verification result, the application server authenticates the user.
234 Citations
6 Claims
-
1. An authentication method for use by application servers on at least one network to authenticate users of the applications, comprising:
-
a receiving step in which one of the application servers receives authentication data from one of the users; a determining step in which the receiving application server determines a type of the authentication data received from the user and selects one of a plurality of verification servers based on the type of the authentication data received; a sending step in which the authentication data received in the receiving step is sent together with the identification data of the user to the selected one of the verification servers; a verification step in which the selected one of the verification servers verifies whether the authentication data sent in the sending step is valid authentication data of the user designated by the identification data sent in the sending step; a verification result reporting step in which the selected one of the verification servers notifies the receiving application server of the verification result; and an authentication step in which the receiving application server authenticates the user on the basis of the verification result returned in the verification result reporting step.
-
-
2. An authentication method for use by application servers on networks to authenticate users of the applications, comprising:
-
a verification preparation request step in which one of the application servers sends the identification data of one of the users to a verification server requesting that the valid authentication data of the user be read in advance from a database; a receiving step in which one of the application servers receives authentication data from one of the users; a sending step in which the authentication data received in the receiving step is sent together with the identification data of the user to a verification server; a verification step in which the verification server verifies whether the sent authentication data sent in the sending step is the authentication data of the user designated by the identification data sent in the sending step; a verification result reporting step in which the verification server notifies the receiving application server of the verification result; and an authentication step in which the receiving application server authenticates the user on the basis of the verification result returned in the verification result reporting step.
-
-
3. An authentication method for use by application servers on networks to authenticate each user of each application, comprising:
-
a verification server designation step in which a user designates a verification server on which the user'"'"'s authentication data is kept; a verification preparation request step in which the application server sends the identification data of the user to the designated verification server, requesting that the valid authentication data of the user be read in advance from a database; a receiving step in which the application server receives authentication data from the user; a sending step in which the authentication data received in the receiving step is sent together with the identification data of the user to the designated verification server; a verification step in which the designated verification server verifies whether the authentication data sent in the sending step is the authentication data of the user designated by the identification data sent in the sending step; a verification result reporting step in which the designated verification server notifies the application server of the verification result; and an authentication step in which the application server authenticates the aforementioned user based on the verification result returned in the verification result reporting step.
-
-
4. An authentication apparatus for use by each application server on a network to authenticate each user of each application, comprising:
-
receiving means for receiving authentication data from the user; determining means for determining a type of authentication data received from the user and for determining a suitable verification server from a plurality of verification servers based on the type of authentication data; sending means for sending the received authentication data together with the identification data of the user to the determined verification server; verifying means for verifying whether the authentication data sent by the sending means is the authentication data of the user designated by the identification data sent by the sending means; reporting means for reporting a verification result of the verification means to the application server; and authenticating means for authenticating the user on the basis of the verification result.
-
-
5. An authentication apparatus for use by each application server on a network to authenticate each user of each application, comprising:
-
a user host that receives authentication data from the user and sends the authentication data to an application server; an application server that determines the type of authentication data received from the user and determines a suitable verification server from a plurality of verification servers based on the type of authentication data received; a communication link that sends the authentication data received together with the identification data of the user to the determined verification server; and a verification server that verifies whether the authentication data sent by the communication link is the authentication data of the user designated by the identification data sent by the communication link, wherein the verification server reports a verification result to the application server and the application server authenticates the user based on the verification result.
-
-
6. An authentication apparatus for use by each application server on a network to authenticate each user of each application, comprising:
-
a user host that receives authentication data from the user and sends the authentication data to an application server; an application server that determines the type of authentication data received from the user and determines a suitable verification server from a plurality of verification servers based on the type of authentication data received, wherein the application server sends the identification data of the user to the determined verification server, requesting that the valid authentication data of the user be read in advance from a database; a communication link that sends the authentication data received together with the identification data of the user to the determined verification server; a verification server that verifies whether the authentication data sent by the communication link is the authentication data of the user designated by the identification data sent by the communication link, wherein the verification server reports the results of the verification to the application server and the application server authenticates the user based on the verification result.
-
Specification