Personal device, terminal, server and methods for establishing a trustworthy connection between a user and a terminal
First Claim
1. A server being equipped for establishing a trustworthy connection between a user and a terminal via a user input device, the server comprising:
- a communication component for establishing and conducting communications along a first trusted connection between the server and the terminal and along a second trusted connection between the server and said user input device;
receiver means for receiving at least one authentication request from said terminal based on user input to said terminal;
at least one authentication component for verifying the authenticity of the terminal; and
a message generation component for generating at least one user-specific terminal authenticity output message in response to said user input for delivery to said user input device along said second trusted connection without delivery of said message along the first trusted connection between the terminal and the server.
3 Assignments
0 Petitions
Accused Products
Abstract
The invention is related to a system which allows a user to authenticate unknown terminals. The invention uses a first authentication step wherein the terminal authenticates itself to a server. Depending on whether the personal device has its own output means, such as a loudspeaker or a screen, the final message, whether the terminal can be trusted or not, can be output on the personal device or on the terminal itself. In the case where the device has no output means of its own, this message can originate in the device and be transmitted from there to the terminal. The user can input authentication information into his personal device, which can then be fully or partially transmitted to the terminal. In the end, the terminal may use the transmitted information to give out the authenticity output message. After the first authentication step follows a second authentication step, wherein the server authenticates itself to the personal device, if there is one. Upon success of both authentication steps, the authenticity output message can be given to the user.
-
Citations
16 Claims
-
1. A server being equipped for establishing a trustworthy connection between a user and a terminal via a user input device, the server comprising:
-
a communication component for establishing and conducting communications along a first trusted connection between the server and the terminal and along a second trusted connection between the server and said user input device; receiver means for receiving at least one authentication request from said terminal based on user input to said terminal; at least one authentication component for verifying the authenticity of the terminal; and a message generation component for generating at least one user-specific terminal authenticity output message in response to said user input for delivery to said user input device along said second trusted connection without delivery of said message along the first trusted connection between the terminal and the server. - View Dependent Claims (2, 3)
-
-
4. A method for establishing a trustworthy connection between a user via a personal user device and a terminal which is connected to and authenticatable by at least one server which is authenticatable by said user device, the method comprising:
-
said server authenticating said terminal in response to user input at said terminal; establishing a first authenticated trusted connection between said server and said terminal upon success of said authenticating; said server authenticating itself to said user device; establishing a second trusted connection between said server and said user device; and said server providing, in response to said user input, a terminal authenticity message to said user device via said established second trusted connection confirming the established authenticity of said terminal without communicating the terminal authenticity message along the first connection between the terminal and the server. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A program storage device readable by machine, tangibly embodying a program of instructions executable by the machine to perform method steps for a server to establish a trustworthy connection between a user via a user device and a terminal, said method steps comprising:
-
said server authenticating said terminal in response to user input at said terminal; establishing a first authenticated trusted connection between said server and said terminal upon success of said authenticating; said server authenticating itself to said user device; establishing a second trusted connection between said server and said user device; and said serving providing, in response to said user input, a terminal authenticity message to said user device via said established second trusted connection confirming the established authenticity of said terminal without communicating the terminal authenticity message along the first connection between the terminal and the server.
-
Specification