×

Cryptographic authentication techniques for mobile devices

  • US 9,185,111 B2
  • Filed: 07/30/2013
  • Issued: 11/10/2015
  • Est. Priority Date: 06/23/2012
  • Status: Active Grant
First Claim
Patent Images

1. A multifactor authentication method performed at a computing device, comprising:

  • at registration time, obtaining a passcode from a user;

    at registration time, generating a protocredential comprising one or more parameters combinable with the passcode to generate a credential;

    at registration time, storing the protocredential in the computing device;

    at registration time, generating the credential, the credential comprising a key pair, the key pair comprising a private key and a public key;

    at registration time, using the credential to register the device and subsequently discarding the credential;

    at authentication time, obtaining again the passcode from the user;

    at authentication time, regenerating the credential from the protocredential stored in the computing device and the passcode obtained from the user, using a credential regeneration process having at least 1% probability of producing well-formed output and at most 0.1% probability of producing correct output from the protocredential and a random guess of the passcode, the random guess having a uniform probability distribution over the range of allowable passcodes; and

    at authentication time, proving possession of the credential to a verifier by sending the public key and a proof of knowledge of the private key to the verifier over a secure connection after the verifier has authenticated to the computing device.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×