Device authentication system
First Claim
1. A device authentication system comprising a terminal device including confidential information for device authentication and an authentication server for granting device authentication to the terminal device using the confidential information, whereinthe terminal device acquires a random number and random number identification information identifying the random number, and generates a conversion value by converting a set of the acquired random number and the confidential information using a one-way function;
- the authentication server acquires (i) the random number acquired by the terminal device, using the random number identification information acquired by the terminal device, (ii) the confidential information of the terminal device, and (iii) the conversion value generated by the terminal device;
a conversion value is generated by the authentication server by converting the set of the acquired random number and the confidential information acquired by the authentication server using the same one-way function as that used by the terminal device; and
the conversion value generated by the terminal device is compared with the conversion value generated by the authentication server.
1 Assignment
0 Petitions
Accused Products
Abstract
A device authentication module and an encryption module can be connected via a dynamic link in a CE device.
A random number is generated in an authentication server (5). The device authentication module (7) combines a pass-phrase and this random number to generate a digest, and transmits this and a device ID to the encryption module (8). The encryption module encrypts a communication pathway and transmits these items of information to the authentication server (5). The authentication server (5) searches for the pass-phrase based on the device ID and combines this and the generated random number to generate a digest. This digest is compared with the digest received from the encryption module (8) for device authentication. The encryption module (8) receives from the device authentication module (7) not the pass-phrase but a digest, and therefore can be connected via a dynamic link instead of a static link.
-
Citations
16 Claims
-
1. A device authentication system comprising a terminal device including confidential information for device authentication and an authentication server for granting device authentication to the terminal device using the confidential information, wherein
the terminal device acquires a random number and random number identification information identifying the random number, and generates a conversion value by converting a set of the acquired random number and the confidential information using a one-way function; -
the authentication server acquires (i) the random number acquired by the terminal device, using the random number identification information acquired by the terminal device, (ii) the confidential information of the terminal device, and (iii) the conversion value generated by the terminal device; a conversion value is generated by the authentication server by converting the set of the acquired random number and the confidential information acquired by the authentication server using the same one-way function as that used by the terminal device; and the conversion value generated by the terminal device is compared with the conversion value generated by the authentication server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
Specification