OTP generation using a camouflaged key
First Claim
1. A method of generating a user one-time passcode (OTP) for a provider account, the method comprising:
- receiving a passcode application on a user device;
receiving a cardstring on the user device, wherein;
the cardstring is defined by the provider account, andthe cardstring comprises a key camouflaged with a personal identification number (PIN);
receiving the PIN on the user device;
providing the PIN to the passcode application via the user device; and
generating, by the passcode application on the user device passcode that is a user OTP for the provider account, the generating the passcode that is the user OTP comprising using the cardstring in combination with the PIN.
0 Assignments
0 Petitions
Accused Products
Abstract
A system and method is provided for generating a one-time passcode (OTP) from a user device. The method includes providing a passcode application and a cardstring defined by a provider account to the user device. The passcode application is configured to generate a passcode configured as a user OTP for the provider account, using the cardstring. The cardstring is defined by at least one key camouflaged with a personal identification number (PIN). The key may be camouflaged by modifying and encrypting the modified key under the PIN. The key may be configured as a symmetric key, a secret, a seed, and a controlled datum. The cardstring may be an EMV cardstring; and the key may be a UDKA or UDKB. The cardstring may be an OTP cardstring, and the key may be a secret configurable to generate one of a HOTP, a TOTP, and a counter-based OTP.
33 Citations
19 Claims
-
1. A method of generating a user one-time passcode (OTP) for a provider account, the method comprising:
-
receiving a passcode application on a user device; receiving a cardstring on the user device, wherein; the cardstring is defined by the provider account, and the cardstring comprises a key camouflaged with a personal identification number (PIN); receiving the PIN on the user device; providing the PIN to the passcode application via the user device; and generating, by the passcode application on the user device passcode that is a user OTP for the provider account, the generating the passcode that is the user OTP comprising using the cardstring in combination with the PIN. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A user device for providing a one-time passcode (OTP) for a provider account, the device comprising:
-
a memory that stores a passcode application; and a processor coupled to the memory, the processor executes the passcode application to; receive a cardstring and a personal identification number (PIN), the cardstring being defined by a key that is camouflaged with the PIN; and generate a passcode that is a user OTP for the provider account, the processor uses the cardstring in combination with the PIN to generate the passcode that is the user OTP for the provider account. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification