Method and system for authenticating a network user
First Claim
1. A method for creating a service provider of a communications network to create a certificate for a client of the service provider, said method comprising:
- establishing a communications link between the client and the service provider through a dedicated communication channel;
receiving a request from the client, via the communications link, to create a client certificate for the client;
obtaining information identifying the client from an operator of the dedicated communication channel, the information identifying the client being based on the communications link; and
in response to obtaining the information identifying the client, creating the requested client certificate using the obtained information identifying the client.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system for creating a certificate for a client of a service provider of a communications network, wherein the client has a client private key and a client public key. The method includes the steps of establishing a communications link with the service provider through a dedicated communication channel; requesting a client certificate from the service provider; obtaining a caller-ID from an operator of the dedicated communication channel; and creating the requested client certificate using the caller-ID. Preferably, the method also includes the step of verifying that the caller-ID obtained from the operator of the dedicated communication channel is the same as client information provided by the client when requesting the client certificate. The certificate can be stored at a caller ID server or a client'"'"'s storage.
92 Citations
17 Claims
-
1. A method for creating a service provider of a communications network to create a certificate for a client of the service provider, said method comprising:
-
establishing a communications link between the client and the service provider through a dedicated communication channel;
receiving a request from the client, via the communications link, to create a client certificate for the client;
obtaining information identifying the client from an operator of the dedicated communication channel, the information identifying the client being based on the communications link; and
in response to obtaining the information identifying the client, creating the requested client certificate using the obtained information identifying the client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
verifying that the information identifying the client obtained from the operator of the dedicated communication channel is the same as client information provided by the client in the received request for the client certificate.
-
-
3. The method of claim 1, further comprising:
collecting client information from the client; and
signing the client information into the certificate.
-
4. The method of claim 1, wherein the client certificate includes a time-stamp for recording the time at which the certificate is created.
-
5. The method of claim 1, wherein the communications network is the Internet and the service provider is an Internet service provider.
-
6. The method of claim 1, wherein the service provider includes a telephone service company.
-
7. The method of claim 1, wherein the operator of the dedicated communication channel is a telephone company and the information identifying the client is a caller ID.
-
8. The method of claim 7, wherein the caller ID includes a phone number of a client'"'"'s telephone at a first site, said method further comprising:
-
generating an additional certificate having a value indicative of a communication device used by the client at a second site different from the first site, and verifying the additional certificate with a public key of the client.
-
-
9. The method of claim 8, wherein the value includes a MAC address of the communication device.
-
10. A system for a service provider of a communications network to create a certificate for a client of the service provider, said system comprising:
-
means for establishing a communications link between the client and the service provider through a dedicated communication channel;
means, responsive to a request received from the client via the communications link to create a client certificate for the client, for providing a first signal indicating the client'"'"'s request for the client certificate;
means, responsive to the first signal, for obtaining information identifying the client from an operator of the dedicated communication channel, the information identifying the client being based on the communications link, and for providing a second signal indicating the obtained information identifying the client; and
means, responsive to the second signal, for creating the requested client certificate using the obtained information identifying the client. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
means for generating an additional certificate having a value indicative of a communication device used by the client at a second site different from the first site, and means for verifying the additional certificate with a public key of the client.
-
-
17. The system of claim 16, wherein the value includes a MAC address of the communication device.
Specification