×

Entity authentication method with introduction of online third party

  • US 8,763,100 B2
  • Filed: 12/29/2009
  • Issued: 06/24/2014
  • Est. Priority Date: 08/28/2009
  • Status: Active Grant
First Claim
Patent Images

1. An entity authentication method with introduction of an online third party, comprising the steps of:

  • 1) transmitting, by an entity B, to an entity A a message 1 comprising a random number RB and an optional text Text1;

    2) transmitting, by the entity A, to a trusted third party TP a message 2 comprising the random number RB, an identity IA and an optional text Text2 upon reception of the message 1;

    3) examining, by the trusted third party TP, the entity A for legality against the identity IA upon reception of the message 2;

    4) returning, by the trusted third party TP, to the entity A a message 3 comprising an entity verification result ResA, a token TokenTA and an optional text Text4 after examining the entity A for legality;

    5) transmitting, by the entity A, to the entity B a message 4 comprising the entity verification result ResA, the token TokenTA and a token TokenAB upon reception of the message 3; and

    6) verifying, by the entity B, upon reception of the message 4,wherein the step

         6) comprises;

    6.1) verifying a signature of the trusted third party TP in TokenTA and examining the random number RB generated by the entity B in the message 1 and the random number RB in the signature of the trusted third party TP comprised in TokenTA for consistency, and performing a step 6.2) if the verification is passed;

    6.2) obtaining the verification result ResA of the entity A, and performing a step 6.3) if the entity A is legally valid;

    otherwise, ending; and

    6.3) obtaining a public key of the entity A, verifying a signature of the entity A in TokenAB, examining the random number RB generated by the entity B in the message 1 and the random number RB in the signature of the entity A comprised in TokenAB for consistency, and finishing, by the entity B, authentication of the entity A if the verification is passed; and

    wherein the entity A and the entity B include a transmitter to transmit messages and a receiver to receive messages.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×