Method for authorising a connection between a computer terminal and a source server
First Claim
Patent Images
1. A method for authorising a connection between a computer terminal of a user and a source server, the method comprising:
- (a) sending a password from the terminal to the source server;
(b) checking the password with the source server to authorize the connection with the terminal;
(c) in an initialization phase;
(i) connecting the terminal to a gateway server placed between the terminal and the source server by sending from the terminal to the gateway server an initialization request comprising a non-random identifier;
(ii) generating on the gateway server a secret key that is specific to the user and that comprises a random number and sending the secret key from the gateway server to the terminal;
(iii) as soon as the terminal receives the secret key, using the terminal to hide the password in a unique multimedia file by applying a steganographic encryption algorithm bootstrapped by the secret key;
(iv) as soon as the steganographic encryption algorithm is executed, deleting the secret key from the terminal; and
(v) once the password is hidden in the unique multimedia file, deleting the password from the terminal and keeping only the unique multimedia file containing the password in the terminal;
(d) in a connection phase;
(i) sending the unique multimedia file containing the hidden password from the terminal to the gateway server;
(ii) extracting the password from the unique multimedia file, on the gateway server, by executing a reverse encryption algorithm bootstrapped by the secret key, and sending the password from the gateway server to the source server;
(iii) immediately deleting the password from the gateway server as soon as the password is sent from the gateway server towards the source server; and
(iv) using the source server to analyze the received password and authorize the connection with the terminal in response to the password being authenticated.
2 Assignments
0 Petitions
Accused Products
Abstract
The disclosure relates to a method and a system for authorising a connection between a computer terminal and a source server, including an initialization phase wherein:
- the terminal connects to a gateway server,
- the gateway server sends a secret key to the terminal,
- the terminal hides the password in a data file by applying an encryption algorithm bootstrapped by the secret key, then deletes the secret key and the password,
and a connection phase wherein: - the terminal sends the data file containing the password to the gateway server,
- the gateway server extracts the files password by executing a reverse encryption algorithm bootstrapped by the secret key, and sends the password to the source server without saving it,
- the source server analysis the received password and authorizes the connection with the terminal if the password is authenticated.
-
Citations
8 Claims
-
1. A method for authorising a connection between a computer terminal of a user and a source server, the method comprising:
-
(a) sending a password from the terminal to the source server; (b) checking the password with the source server to authorize the connection with the terminal; (c) in an initialization phase; (i) connecting the terminal to a gateway server placed between the terminal and the source server by sending from the terminal to the gateway server an initialization request comprising a non-random identifier; (ii) generating on the gateway server a secret key that is specific to the user and that comprises a random number and sending the secret key from the gateway server to the terminal; (iii) as soon as the terminal receives the secret key, using the terminal to hide the password in a unique multimedia file by applying a steganographic encryption algorithm bootstrapped by the secret key; (iv) as soon as the steganographic encryption algorithm is executed, deleting the secret key from the terminal; and (v) once the password is hidden in the unique multimedia file, deleting the password from the terminal and keeping only the unique multimedia file containing the password in the terminal; (d) in a connection phase; (i) sending the unique multimedia file containing the hidden password from the terminal to the gateway server; (ii) extracting the password from the unique multimedia file, on the gateway server, by executing a reverse encryption algorithm bootstrapped by the secret key, and sending the password from the gateway server to the source server; (iii) immediately deleting the password from the gateway server as soon as the password is sent from the gateway server towards the source server; and (iv) using the source server to analyze the received password and authorize the connection with the terminal in response to the password being authenticated. - View Dependent Claims (2)
-
-
3. A method for authorising a connection between a computer terminal of a user and a source server, the method comprising:
-
(a) the terminal sending a password to the source server; (b) the source server checking the password to authorize the connection with the terminal; (c) in an initialization phase; (i) the terminal connecting to the source server by sending from a terminal to the source server an initialization request comprising a non-random identifier; (ii) the source server generating a secret key that is specific to the user and that comprises a random number and sending the secret key to the terminal; (iii) the terminal, as soon as the secret key is received, hiding the password in a unique multimedia file by applying a steganographic encryption algorithm bootstrapped by the secret key; (iv) as soon as the steganographic encryption algorithm is executed, deleting the secret key from the terminal; and (v) once the password is hidden in the unique multimedia file, deleting the password from the terminal and keeping only the unique multimedia file containing the password in the terminal; (d) in a connection phase; (i) the terminal sending the unique multimedia file containing the password to the source server; and (ii) the source server extracting the password from the unique multimedia file by executing a reverse encryption algorithm bootstrapped by the secret key, analyzing the password, and authorizing connection with the terminal in response to the password being authenticated. - View Dependent Claims (4)
-
-
5. A system for authorising a connection between a computer terminal of a user and a source server, the system comprising:
-
the terminal comprising a processor configured to execute first instructions from a non-transitory computer-readable medium, the first instructions comprising a resource for sending a password to the source server; the source server comprising a processor configured to execute second instructions from a non-transitory computer-readable medium, the second instructions comprising a resource for checking the password to authorize the connection with the terminal; in an initialization phase; (a) the terminal further comprising a resource for connecting to a gateway server placed between the terminal and the source server by sending from the terminal to the gateway server an initialization request comprising a non-random identifier; (b) the gateway server further comprising a resource for generating on the gateway server a secret key that is specific to the user and that comprises a random number and sending the secret key to the terminal; (c) the terminal further comprising a resource for hiding the password in a unique multimedia file as soon as the terminal receives the secret key, by applying a steganographic encryption algorithm bootstrapped by the secret key, and a resource for deleting the secret key as soon as the steganographic encryption algorithm is executed and deleting the password once the password is hidden in the unique multimedia file and keeping only the unique multimedia file containing the password; in a connection phase; (a) the terminal further comprising a resource for sending the unique multimedia file containing the password to the gateway server; (b) the gateway server further comprising a resource for extracting the password from the unique multimedia file by executing a reverse encryption algorithm bootstrapped by the secret key, a resource for sending the password to the source server, and a resource for immediately deleting the password from the gateway server as soon as the password is sent from the gateway server towards the source server; and (c) the source server further comprising a resource for analysing the received password and authorising the connection with the terminal in response to the password being authenticated.
-
-
6. A system for authorising a connection between a computer terminal of a user and a source server, the system comprising:
-
the terminal comprising a processor configured to execute first instructions from a non-transitory computer-readable medium, wherein the first instructions result in the terminal operably sending a password to the source server; the source server comprising a processor configured to execute second instructions from a non-transitory computer-readable medium, wherein the second instructions result in the source server operably checking the password to authorize the connection with the terminal; in an initialization phase; (a) the terminal operably connecting to the source server by sending from the terminal to the source server an initialization request comprising a non-random identifier; (b) the source server operably generating a secret key that is specific to the user and that comprises a random number and sending the secret key to the terminal; (c) the terminal operably hiding the password in a unique multimedia file, as soon as the secret key is received, by applying a steganographic encryption algorithm bootstrapped by the secret key, and the terminal operably deleting the secret key as soon as the steganographic encryption algorithm is executed and deleting the password once the password is hidden in the unique multimedia file and keeping only the unique multimedia file containing the password; in a connection phase; (a) the terminal operably sending the unique multimedia file containing the password to the source server; and (b) the source server operably extracting the password from the unique multimedia file by executing a reverse encryption algorithm bootstrapped by the secret key, the source server operably analysing the password and authorising connection with the terminal in response to the password being authenticated. - View Dependent Claims (7, 8)
-
Specification