System, process and article for conducting authenticated transactions
First Claim
Patent Images
1. A system for authentication of a party comprising:
- an authentication server associating a unique set of information with said party, said unique set including at least a unique ordered set of information randomly generated;
responsive to receipt of identifying information of said party to determine by random generation values of one or more prescribed parameters to define an ordered subset of said ordered set, to transmit said values, to generate a first token from said ordered subset, to compare said first token to a second token received in response to said transmission, and upon a match, to authenticate said party; and
a separate processor operated by said party adapted to read locally a storage medium containing a copy of said unique set of information associated by said server with said party, to transmit to said server said identifying information, to receive said values from said server, to apply said values to define an ordered subset of said copy, and to transmit said second token generated from said ordered subset of said copy.
1 Assignment
0 Petitions
Accused Products
Abstract
A system, process and articles for authentication of a party in transaction using authentication information embedded in a physical medium in the possession of the party plus a password or other personal code of party that are compared against corresponding information in a data base by an authentication server through comparison of one-use tokens generated in parallel from said embedded and personal codes.
83 Citations
29 Claims
-
1. A system for authentication of a party comprising:
-
an authentication server associating a unique set of information with said party, said unique set including at least a unique ordered set of information randomly generated;
responsive to receipt of identifying information of said party to determine by random generation values of one or more prescribed parameters to define an ordered subset of said ordered set, to transmit said values, to generate a first token from said ordered subset, to compare said first token to a second token received in response to said transmission, and upon a match, to authenticate said party; and
a separate processor operated by said party adapted to read locally a storage medium containing a copy of said unique set of information associated by said server with said party, to transmit to said server said identifying information, to receive said values from said server, to apply said values to define an ordered subset of said copy, and to transmit said second token generated from said ordered subset of said copy. - View Dependent Claims (2, 3, 4)
-
-
5. An authentication server associating a unique set of information with a party to be authenticated, said unique set including at least a unique ordered set of information randomly generated;
- said server responsive to receipt of identifying information of said party to determine by random generation values of one or more prescribed parameters to define an ordered subset of said ordered set, to transmit said values, to generate a first token from said ordered subset, to compare said first token to a second token received in response to said transmission, and upon a match, to authenticate said party.
- View Dependent Claims (6)
- 7. A processor operated by a party to be authenticated, said processor adapted to read locally a storage medium containing a copy of a unique set of information associated by a separate authentication server with said party, to transmit to said server information identifying said party, to receive from said server values of one or more prescribed parameters to define an ordered subset of said copy, and to transmit to said server a token generated from said ordered subset of said copy.
-
9. A computer program product for server-side authentication of a party, said computer program product residing on a computer-readable medium comprising instructions for causing a computer:
- to associate a unique set of information with a party to be authenticated, said unique set including at least a unique ordered set of information randomly generated;
to receive identifying information of said party;
to determine in response to such receipt by random generation values of one or more prescribed parameters to define an ordered subset of said ordered set;
to transmit said values;
to generate a first token from said ordered subset;
to receive a second token;
to compare said first token to a second token received in response to said transmission; and
, upon a match, to authenticate said party. - View Dependent Claims (10)
- to associate a unique set of information with a party to be authenticated, said unique set including at least a unique ordered set of information randomly generated;
-
11. A computer program product for client-side authentication of a party, said computer program product residing on a computer-readable medium comprising instructions for causing a computer:
- to read locally a storage medium containing a copy of a unique set of information associated by a separate authentication server with said party;
to transmit to said server information identifying said party;
to receive from said server values of one or more prescribed parameters to define an ordered subset of said copy;
to generate a token from said ordered subset of said copy; and
to transmit to said server said token. - View Dependent Claims (12)
- to read locally a storage medium containing a copy of a unique set of information associated by a separate authentication server with said party;
- 13. A process for authenticating a party comprising selection at a central location of a randomly selected portion of random information uniquely associated with said party, parallel selection at a party location separate from said central location an identical portion of a putatively identical copy of said information issued to and possessed by said party, and comparison at said central location of a first token uniquely generated from said randomly selected portion with a second token uniquely generated from said identically selected portion.
-
15. A process for authenticating a party comprising the steps of:
-
(a) accessing by said party through a client computer of an authentication server that has stored random information uniquely associated with said party, a copy of which was previously provided to said party and accessible at the client side;
(b) generating by said server or said client at least one random value for an authentication session of a parameter for selecting an ordered subset of said stored random information;
(c) transmitting by said server or client respectively to said client or server said generated value;
(d) applying by said client said generated value or values to select an ordered subset of said copy information;
(e) generating by said client from said ordered subset of copy information a client-side party-authenticating token;
(f) applying by said server of said generated value or values to select an ordered subset of said stored information;
(g) generating by said server from said ordered subset of stored information a server-side party-authenticating token;
(h) transmitting by said client to said server said client-side token or by said server to said client said server-side token; and
(i) comparing by said server said client-side token with said server-side token or by said client said server-side token with said client-side token. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29)
-
Specification