User authentication method and apparatus
First Claim
Patent Images
1. A user authentication method for authenticating a user from a server, the user authentication method comprising:
- (a) transmitting a one-time server certification message in response to an authentication request including a user ID of a client terminal, and receiving a one-time terminal certification message from the client terminal; and
(b) authenticating the user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID,wherein the authenticating of the user in said step (b) comprises;
calculating a second-order hash value by applying a unidirectional hash function to at least one of a random value, the hash value, and IP information included in a packet header of the one-time terminal certification message;
deriving a resultant value of applying an exclusive disjunction operation to the calculated second-order hash value and the hash value; and
authenticating the user by determining whether or not the derived resultant value and a resultant value included in the one-time terminal certification message are identical.
1 Assignment
0 Petitions
Accused Products
Abstract
A user authentication method and apparatus are disclosed. One embodiment of the invention can provide a method for authenticating a user from a server that includes: (a) transmitting a one-time server certification message in response to an authentication request including a user ID of a client terminal, and receiving a one-time terminal certification message from the client terminal; and (b) authenticating the user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID.
-
Citations
12 Claims
-
1. A user authentication method for authenticating a user from a server, the user authentication method comprising:
-
(a) transmitting a one-time server certification message in response to an authentication request including a user ID of a client terminal, and receiving a one-time terminal certification message from the client terminal; and (b) authenticating the user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID, wherein the authenticating of the user in said step (b) comprises; calculating a second-order hash value by applying a unidirectional hash function to at least one of a random value, the hash value, and IP information included in a packet header of the one-time terminal certification message; deriving a resultant value of applying an exclusive disjunction operation to the calculated second-order hash value and the hash value; and authenticating the user by determining whether or not the derived resultant value and a resultant value included in the one-time terminal certification message are identical. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A user authentication request method for a client terminal requesting user authentication to a server, the user authentication request method comprising:
-
transmitting a user ID to the server; receiving a one-time server certification message from the server in response to transmitting the user ID; and generating a one-time terminal certification message for user authentication, if a verification of the server is successful, and transmitting the one-time terminal certification message to the server, the verification of the server performed by verifying the one-time server certification message by using a hash value using a password, wherein the generating of the one-time terminal certification message comprises; generating a second-order hash value by applying a unidirectional hash function to at least one of the random value, the hash value, and IP information of the client terminal; calculating a resultant value of performing an exclusive disjunction operation on the second-order hash value and the hash value; and generating the one-time terminal certification message to include the resultant value. - View Dependent Claims (8, 9, 10)
-
-
11. A server comprising:
a processor configured to; transmit a one-time server certification message in response to an authentication request including a user ID of a client terminal and receive a one-time terminal certification message from the client terminal in reply to the transmission; authenticate a user by verifying the one-time terminal certification message by using a hash value stored beforehand in correspondence to the user ID; calculate a second-order hash value by applying a unidirectional hash function to at least one of a random value, the hash value, and IP information included in a packet header of the one-time terminal certification message; derive a resultant value of applying an exclusive disjunction operation to the calculated second-order hash value and the hash value; and authenticate the user by determining whether or not the derived resultant value and a resultant value included in the one-time terminal certification message are identical.
-
12. A client terminal comprising:
a processor configured to; receive a one-time server certification message in response to transmitting a user ID; verify a server by verifying the one-time server certification message by using a hash value using a password; generate a one-time terminal certification message for user authentication, if a verification of the server is successful, and to transmit the one-time terminal certification message to the server; generate a second-order hash value by applying a unidirectional hash function to at least one of the random value, the hash value, and IP information of the client terminal; calculate a resultant value of performing an exclusive disjunction operation on the second-order hash value and the hash value; and generate the one-time terminal certification message to include the resultant value.
Specification