System and method for authentication seed distribution

US 7,502,467 B2
Filed: 11/02/2005
Issued: 03/10/2009
Est. Priority Date: 05/04/1999
Status: Expired due to Fees

First Claim

Patent Images

1. A method for distributing seed information associated with a device, said method comprising:

generating a master seed associated with the device;

deriving a derived seed from the master seed and information associated with a security system; and

sharing with the security system a value that is derived from the derived seed, wherein the security system cannot access the master seed.

View all claims

14 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In one embodiment of a user authentication system and method according to the invention, a device shares a secret, referred to as a master seed, with a server. The device and the server both derive one or more secrets, referred to as verifier seeds, from the master seed, using a key derivation function. The server shares a verifier seed with one or more verifiers. The device, or an entity using the device, can authenticate with one of the verifiers using the appropriate verifier seed. In this way, the device and the verifier can share a secret, the verifier seed for that verifier, without that verifier knowing the master seed, or any other verifier seeds. Thus, the device need only store the one master seed, have access to the information necessary to correctly derive the appropriate seed, and have seed derivation capability. A verifier cannot compromise the master seed, because the verifier does not have access to the master seed.

Citations

42 Claims

1. A method for distributing seed information associated with a device, said method comprising:
- generating a master seed associated with the device;
  
  deriving a derived seed from the master seed and information associated with a security system; and
  
  sharing with the security system a value that is derived from the derived seed, wherein the security system cannot access the master seed.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
- - 2. The method of claim 1, further comprising sharing the master seed with the device.
  - 3. The method of claim 2, wherein sharing with the device said information associated with the security system includes entering said information associated with the security system into the device through a key pad.
  - 4. The method of claim 2, further comprising in the device deriving the derived seed.
  - 5. The method of claim 2, further comprising storing a static password in the device and using the static password along with the derived seed to perform authentication with the security system.
  - 6. The method of claim 2, further comprising sharing with the device the information associated with the security system.
  - 7. The method of claim 6, wherein sharing with the device said information associated with the security system includes programming said information associated with the security system into the device.
  - 8. The method of claim 6, wherein sharing with the device said information associated with the security system includes entering said information associated with the security system into the device electronically.
  - 9. The method of claim 6, wherein sharing with the device said information associated with the security system includes entering said information associated with the security system into the device through a key pad.
  - 10. The method of claim 1, further comprising sharing the master seed with the device and a server.
  - 11. The method of claim 1, further comprising:
    - deriving a second derived seed using the master seed and information associated with a second security system; and
      
      sharing the second derived seed with the second security system.
  - 12. The method of claim 1, further comprising, at the security system, generating an authentication code in response to deriving the derived seed.
  - 13. The method of claim 12, wherein authentication code generating includes generating the authentication code from the derived seed and a time dependent value.
  - 14. The method of claim 12, further comprising authenticating using the authentication code.
  - 15. The method of claim 14, wherein authenticating comprises authenticating a user or a device by verifying the authentication code.
  - 16. The method of claim 15 wherein authenticating further comprises transmitting the authentication code to the security system.
  - 17. The method of claim 12, wherein authentication code generating includes sending a challenge value to the device and receiving from the device a response which is the challenge encrypted by using the derived seed.
  - 18. The method of claim 1 wherein master seed generating comprises at least one of randomly generating and pseudorandomly generating the master seed.
  - 19. The method of claim 1 wherein deriving comprises deriving the derived seed from a time identifier.
  - 20. The method of claim 1, wherein deriving comprises deriving the derived seed by using the master seed and information associated with a verifier as inputs to a key derivation function.
  - 21. The method of claim 20, wherein the key derivation function comprises a hash function.
  - 22. The method of claim 1, further comprising generating an encryption key from the derived seed.
  - 23. The method of claim 1, further comprising using the derived seed for encryption.
  - 24. The method of claim 1, wherein generating the master seed is performed by the device.
  - 25. The method of claim 1, further comprising:
    - deriving a plurality of different derived seeds using the master seed and information associated with a plurality of security systems; and
      
      sharing the plurality of derived seeds with the plurality security systems, wherein the first-mentioned security system is one of the plurality of security systems and the first-mentioned derived seed is one of the plurality of derived seeds.
  - 26. The method of claim 1, wherein sharing said value with the security system includes typing the value into a keypad associated with the security system.
  - 27. The method of claim 1, wherein sharing said value with the security system includes transmitting over a network.
  - 28. The method of claim 1, wherein deriving the derived seed includes first deriving an intermediate seed from the master seed and a time identifier and then deriving the derived seed from the intermediate seed and said information associated with the security system.

29. A method of authenticating a device to a security system based on a master seed associated with the device, said method comprising:
- deriving a derived seed using the master seed and information associated with the security system;
  
  isolating the master seed from the security system such that the security system cannot access the master seed;
  
  in the security system. generating an authentication code based at least in part on the derived seed;
  
  using the authentication code to authenticate the device; and
  
  storing a static password in the device and using the static password along with the derived seed to perform authentication with the security system.

30. A method comprising:
- at a user device, calculating a verifier seed by applying a cryptographic function to a master seed and to a verifier identifier, the master seed being uniquely associated with the user device, the verifier identifier being associated with a security system;
  
  at a host server, the host server storing the master seed associated with the user device and the verifier identifier associated with the security system, calculating the verifier seed by applying the cryptographic function to the master seed and to the verifier identifier;
  
  transmitting the calculated verifier seed from the host server to the security system by a secure mechanism, the security system having no access to the master seed;
  
  transmitting an authentication message from the user device to the security system; and
  
  at the security system, authenticating, based on the received authentication message and the received calculated verifier seed, that the user device is in possession of the verifier seed.
- View Dependent Claims (31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
- - 31. A method as in claim 30 wherein the method further comprises:
    - generating the master seed associated with the user device with one of a random number generator and a pseudorandom number generator;
      
      sharing the generated master seed with the user device and the host server; and
      
      persistently storing the shared master seed in user device and in the host server.
  - 32. A method as in claim 31 wherein generating the master seed is performed by the user device.
  - 33. A method as in claim 30 wherein:
    - the security system is one security system of a plurality of security systems; and
      
      the verifier identifier is uniquely associated with the security system of the plurality of security systems.
  - 34. A method as in claim 30 wherein calculating the verifier seed, at both the user device and the security system, further includes applying the cryptographic function to a time identifier.
  - 35. A method as in claim 30 wherein transmitting the calculated verifier seed from the host server to the security system by the secure mechanism includes transmitting across a secure channel.
  - 36. A method as in claim 30 wherein transmitting the calculated verifier seed from the host server to the security system by the secure mechanism includes transmitting across a computer network with encryption.
  - 37. A method as in claim 30 wherein transmitting the authentication message from the user device to the security system includes sending the verifier seed from the user device to the security system.
  - 38. A method as in claim 30 wherein transmitting the authentication message from the user device to the security system includes:
    - at the user device, calculating an authentication code by encrypting a piece of data with the verifier seed as encryption key; and
      
      transmitting the authentication code from the user device to the security system.
  - 39. A method as in claim 38 wherein:
    - calculating the authentication code by encrypting a piece of data with the verifier seed as encryption key includes encrypting a personal identification code with the verifier seed; and
      
      authenticating, based on the received authentication message and the received calculated verifier seed, that the user device is in possession of the verifier seed includes decrypting the received authentication message with the calculated verifier seed and verifying that the decrypted authentication message encodes a valid personal identification code.
  - 40. A method as in claim 39 wherein the method further comprises, at the user device, receiving the personal identification code through user entry at substantially the same time that a user seeks access to the security system.
  - 41. A method as in claim 39 wherein encrypting the personal identification code with the verifier seed includes retrieving the personal identification code from persistent storage within the user device.
  - 42. A method as in claim 38 wherein:
    - calculating the authentication code by encrypting a piece of data with the verifier seed as encryption key includes encrypting a time identifier with the verifier seed; and
      
      authenticating, based on the received authentication message and the received calculated verifier seed, that the user device is in possession of the verifier seed includes decrypting the received authentication message with the calculated verifier seed and verifying that the decrypted authentication message encodes a time identifier indicating that the authentication code was generated within a specified time period prior to the decryption.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Emc IP Holding Company LLC (Dell Technologies Inc.)
Original Assignee
RSA Security Incorporated (Symphony Technology Group LLC)
Inventors
Brainard, John G., Nystrom, Magnus, Kaliski, Burton S. Jr., Rivest, Ronald L.
Primary Examiner(s)
Zand; Kambiz
Assistant Examiner(s)
Baum; Ronald

Application Number

US11/265,510
Publication Number

US 20060256961A1
Time in Patent Office

1,224 Days
Field of Search

380/44
US Class Current

380/44
CPC Class Codes

G06F 21/31   User authentication

G06F 21/33   using certificates

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 9/0844   with user authentication or...

H04L 9/0869   involving random numbers or...

H04L 9/3234   involving additional secure...

System and method for authentication seed distribution

First Claim

14 Assignments

0 Petitions

Accused Products

Abstract

Citations

42 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for authentication seed distribution

First Claim

14 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

42 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links