System and method for extending secure authentication using unique session keys derived from entropy generated by authentication method
First Claim
1. A method for utilizing a public wireless local area network (WPAN) for a client with a smart card, comprising:
- creating a one-time entropy generated password for a client including;
combining an identification information of the client, an encryption key provided by the WPAN, and a predetermined text character string to create client identifying information;
calculating a hash value of the created client identifying information, wherein the calculated hash value includes a plurality of octet values; and
converting any non-alphanumeric octet values of the plurality of octet values of the calculated hash value into an alphanumeric octet value;
storing the one-time entropy generated password and identification information of the client on a public wireless local area network; and
utilizing the one-time entropy generated password and identity information of the client to authenticate the client in the public wireless local area network.
2 Assignments
0 Petitions
Accused Products
Abstract
The present disclosure relates generally to the field of communications systems, and more particularly, to a system and method for extending secure authentication using unique session keys derived from entropy generated by authentication method. In one example, a method for utilizing a public wireless local area network for a client with a smart card includes: creating an one-time password for a client upon a successful authentication; storing the password and identification information of the client; and utilizing the password and the client identity information to authenticate the client in the public wireless local area network.
106 Citations
19 Claims
-
1. A method for utilizing a public wireless local area network (WPAN) for a client with a smart card, comprising:
-
creating a one-time entropy generated password for a client including;
combining an identification information of the client, an encryption key provided by the WPAN, and a predetermined text character string to create client identifying information;
calculating a hash value of the created client identifying information, wherein the calculated hash value includes a plurality of octet values; and
converting any non-alphanumeric octet values of the plurality of octet values of the calculated hash value into an alphanumeric octet value;storing the one-time entropy generated password and identification information of the client on a public wireless local area network; and utilizing the one-time entropy generated password and identity information of the client to authenticate the client in the public wireless local area network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system for utilizing a public wireless local area network for a client with a smart card, comprising:
-
a smart card for a client; and a first adapter arranged to generate a one-time use password for the client, wherein the one-time use password is generated by; combining an identification information of the client, an encryption key provided by the WPAN to create client identifying information; calculating a hash value of the created client identifying information, wherein the calculated hash value includes a plurality of octet values; and converting any non-alphanumeric octet values of the plurality of octet values of the calculated hash value into an alphanumeric octet value, wherein the password is used for authenticating the client by a Remote Authentication Dial-In User Service (RADIUS) server. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A method for adapting a public wireless local area network for a client with a smart card, comprising:
-
creating a one-time use password for a client including;
combining information of the client, an encryption key provided by the WPAN, and a text character string to create client identifying information;
calculating a hash value of the created client identifying information, wherein the calculated hash value includes a plurality of octet values; and
converting any non-alphanumeric octet values of the plurality of octet values of the calculated hash value into an alphanumeric octet value;storing the password and the identification information on a Remote Authentication Dial-In User Service (RADIUS) server; utilizing the created password and the identification information to authenticate the client on the RADIUS server; and modifying RADIUS based accounting data to generate General Packed Radio Server (GPRS) based accounting data for the client. - View Dependent Claims (19)
-
Specification