System and method for implementing a one-time-password using asymmetric cryptography
First Claim
1. A method comprising:
- generating a challenge at a server;
encrypting the challenge at the server using a public encryption key;
transmitting the encrypted challenge to a connected device having a first connection over a network with the server;
providing the encrypted challenge from the connected device to a user device;
decrypting the encrypted challenge at the user device using a private encryption key corresponding to the public encryption key to determine the challenge;
converting the challenge to a converted challenge, the converted challenge having a different format than the original challenge;
receiving the converted challenge at the connected device and providing the converted challenge from the connected device to the server, wherein receiving the converted challenge at the connected device comprises receiving manual user entry of the converted challenge via a user input device coupled to the connected device; and
validating the converted challenge at the server to authenticate the user.
2 Assignments
0 Petitions
Accused Products
Abstract
A system, apparatus, method, and machine readable medium are described for authentication with asymmetric cryptography. For example, a method in accordance with one embodiment comprises: generating a challenge at a server; encrypting the challenge at the server using a public encryption key; transmitting the encrypted challenge to a connected device having a first connection over a network with the server; providing the encrypted challenge from the connected device to a user device; decrypting the encrypted challenge using a private encryption key corresponding to the public encryption key to determine the challenge; converting the challenge to a converted challenge, the converted challenge having a different format than the original challenge; receiving the converted challenge at the connected device and providing the converted challenge from the connected device to the server; and validating the converted challenge at the server to authenticate the user.
282 Citations
25 Claims
-
1. A method comprising:
-
generating a challenge at a server; encrypting the challenge at the server using a public encryption key; transmitting the encrypted challenge to a connected device having a first connection over a network with the server; providing the encrypted challenge from the connected device to a user device; decrypting the encrypted challenge at the user device using a private encryption key corresponding to the public encryption key to determine the challenge; converting the challenge to a converted challenge, the converted challenge having a different format than the original challenge; receiving the converted challenge at the connected device and providing the converted challenge from the connected device to the server, wherein receiving the converted challenge at the connected device comprises receiving manual user entry of the converted challenge via a user input device coupled to the connected device; and validating the converted challenge at the server to authenticate the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system comprising:
-
a server generating a challenge, the server encrypting the challenge using a public encryption key; the server transmitting the encrypted challenge to a connected device having a first connection over a network with the server; the connected device providing the encrypted challenge to a user device; the user device decrypting the encrypted challenge using a private encryption key corresponding to the public encryption key to determine the challenge; the user device converting the challenge to a converted challenge, the converted challenge having a different format than the original challenge; the connected device receiving the converted challenge and providing the converted challenge from the connected device to the server, wherein receiving the converted challenge at the connected device comprises receiving manual user entry of the converted challenge via a user input device coupled to the connected device; and the server validating the converted challenge to authenticate the user. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A non-transitory machine-readable medium having program code stored thereon which, when executed by a machine, causes the machine to perform the operations of:
-
generating a challenge at a server; encrypting the challenge at the server using a public encryption key; transmitting the encrypted challenge to a connected device having a first connection over a network with the server; providing the encrypted challenge from the connected device to a user device; decrypting the encrypted challenge at the user device using a private encryption key corresponding to the public encryption key to determine the challenge; converting the challenge to a converted challenge, the converted challenge having a different format than the original challenge; receiving the converted challenge at the connected device and providing the converted challenge from the connected device to the server, wherein receiving the converted challenge at the connected device comprises receiving manual user entry of the converted challenge via a user input device coupled to the connected device; and validating the converted challenge at the server to authenticate the user. - View Dependent Claims (24, 25)
-
Specification