Entity authentication method with introduction of online third party
First Claim
1. An entity authentication method with introduction of an online third party, comprising the steps of:
- 1) transmitting, by an entity B, to an entity A a message 1 comprising a random number RB and an optional text Text1;
2) transmitting, by the entity A, to a trusted third party TP a message 2 comprising the random number RB, an identity IA and an optional text Text2 upon reception of the message 1;
3) examining, by the trusted third party TP, the entity A for legality against the identity IA upon reception of the message 2;
4) returning, by the trusted third party TP, to the entity A a message 3 comprising an entity verification result ResA, a token TokenTA and an optional text Text4 after examining the entity A for legality;
5) transmitting, by the entity A, to the entity B a message 4 comprising the entity verification result ResA, the token TokenTA and a token TokenAB upon reception of the message 3; and
6) verifying, by the entity B, upon reception of the message 4,wherein the step
6) comprises;
6.1) verifying a signature of the trusted third party TP in TokenTA and examining the random number RB generated by the entity B in the message 1 and the random number RB in the signature of the trusted third party TP comprised in TokenTA for consistency, and performing a step 6.2) if the verification is passed;
6.2) obtaining the verification result ResA of the entity A, and performing a step 6.3) if the entity A is legally valid;
otherwise, ending; and
6.3) obtaining a public key of the entity A, verifying a signature of the entity A in TokenAB, examining the random number RB generated by the entity B in the message 1 and the random number RB in the signature of the entity A comprised in TokenAB for consistency, and finishing, by the entity B, authentication of the entity A if the verification is passed; and
wherein the entity A and the entity B include a transmitter to transmit messages and a receiver to receive messages.
1 Assignment
0 Petitions
Accused Products
Abstract
An entity authentication method by introducing an online third party includes the following steps: 1) an entity B sends a message 1 to an entity A; 2) the entity A sends a message 2 to a trusted third party TP after receiving the message 1; 3) the trusted third party TP checks the validity of the entity A after receiving the message 2; 4) the trusted third party TP returns a message 3 to the entity A after checking the validity of the entity A; 5) the entity A sends a message 4 to the entity B after receiving the message 3; 6) and the entity B performs validation after receiving the message 4. The online retrieval and authentication mechanism of the public key simplifies the operating condition of a protocol, and realizes validity identification of the network for the user through the authentication of the entity B to the entity A.
-
Citations
6 Claims
-
1. An entity authentication method with introduction of an online third party, comprising the steps of:
-
1) transmitting, by an entity B, to an entity A a message 1 comprising a random number RB and an optional text Text1; 2) transmitting, by the entity A, to a trusted third party TP a message 2 comprising the random number RB, an identity IA and an optional text Text2 upon reception of the message 1; 3) examining, by the trusted third party TP, the entity A for legality against the identity IA upon reception of the message 2; 4) returning, by the trusted third party TP, to the entity A a message 3 comprising an entity verification result ResA, a token TokenTA and an optional text Text4 after examining the entity A for legality; 5) transmitting, by the entity A, to the entity B a message 4 comprising the entity verification result ResA, the token TokenTA and a token TokenAB upon reception of the message 3; and 6) verifying, by the entity B, upon reception of the message 4, wherein the step
6) comprises;6.1) verifying a signature of the trusted third party TP in TokenTA and examining the random number RB generated by the entity B in the message 1 and the random number RB in the signature of the trusted third party TP comprised in TokenTA for consistency, and performing a step 6.2) if the verification is passed; 6.2) obtaining the verification result ResA of the entity A, and performing a step 6.3) if the entity A is legally valid;
otherwise, ending; and6.3) obtaining a public key of the entity A, verifying a signature of the entity A in TokenAB, examining the random number RB generated by the entity B in the message 1 and the random number RB in the signature of the entity A comprised in TokenAB for consistency, and finishing, by the entity B, authentication of the entity A if the verification is passed; and wherein the entity A and the entity B include a transmitter to transmit messages and a receiver to receive messages. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification