Agile OTP generation
First Claim
1. A method for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising:
- generating an OTP at the token generator according to a variance technique;
wherein the variance technique is selected from a set of variance techniques;
where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D;
wherein D is a unique value for the token generator;
wherein G is a function to determine a variance technique for OTP generation;
where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V);
wherein the InputSet2 is a set comprising K and C;
wherein H is a Hash;
wherein K is a key;
wherein C is a unique value for the generation of the OTP at the token generator;
SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;
receiving the OTP at a validator;
determining, at the validator, the variance technique from a plurality of possible variance techniques used by the token generator to generate the OTP; and
determining whether to validate the OTP based on the OTP and variance technique.
18 Assignments
0 Petitions
Accused Products
Abstract
A method, system, and apparatus for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising generating a OTP at the token generator according to a variance technique; wherein the variance technique is selected from a set of variance techniques, receiving the OTP at a validator, determining, at the validator, the variance technique used by the token generator to generate the OTP, and determining whether to validate the OTP based on the OTP and variance technique.
-
Citations
17 Claims
-
1. A method for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising:
-
generating an OTP at the token generator according to a variance technique;
wherein the variance technique is selected from a set of variance techniques;
where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D;
wherein D is a unique value for the token generator;
wherein G is a function to determine a variance technique for OTP generation;
where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V);
wherein the InputSet2 is a set comprising K and C;
wherein H is a Hash;
wherein K is a key;
wherein C is a unique value for the generation of the OTP at the token generator;
SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;receiving the OTP at a validator; determining, at the validator, the variance technique from a plurality of possible variance techniques used by the token generator to generate the OTP; and determining whether to validate the OTP based on the OTP and variance technique. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for agile generation of one time passcodes (OTPs) in a security environment, the system comprising:
-
a token generator comprising a token generator algorithm;
wherein the token generator algorithm generates an OTP at the token generator according to a variance technique;
wherein the variance technique is selected from a set of variance techniques;
where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D;
wherein D is a unique value for the token generator;
wherein G is a function to determine a variance technique for OTP generation;
where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V);
wherein the InputSet2 is a set comprising K and C;
wherein H is a Hash;
wherein K is a key;
wherein C is a unique value for the generation of the OTP at the token generator;
SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;a validator; and computer-executable program code operating in memory, wherein the computer-executable program code is configured to enable execution of; receiving the OTP at the validator; determining, at the validator, the variance technique used by the token generator to generate the OTP; and determining whether to validate the OTP based on the OTP and variance technique. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method for provisioning an OTP generator, the method comprising:
-
selecting one or more variance techniques from a set of variance techniques, where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D, wherein D is a unique value for the token generator, wherein G is a function to determine a variance technique for OTP generation, where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V), wherein the InputSet2 is a set comprising K and C, wherein H is a Hash, wherein K is a key, and wherein C is a unique value for the generation of the OTP at the token generator, SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate; provisioning the OTP generator with the one or more variance techniques; and enabling a validator to determine which authentication technique is used by the OTP generator. - View Dependent Claims (16, 17)
-
Specification