TERMINAL AUTHENTICATION SYSTEM, SERVER DEVICE, AND TERMINAL AUTHENTICATION METHOD
First Claim
1. A terminal authentication system comprising:
- a client terminal; and
a server device,wherein the client terminal and the server device are connected to each other through a network,wherein the client terminal includesa storage unit that stores secret information different for each client terminal and a client certificate including a hash value of the secret information which is derived from the secret information, anda first communication unit that transmits first information based on the secret information and the client certificate to the server device, andwherein the server device includesa second communication unit that receives the first information and the client certificate from the client terminal,a unidirectional function processing unit that derives a hash value from the secret information based on the first information, using a unidirectional function, andan authentication processing unit that authenticates the client terminal on the basis of the derived hash value and the hash value of the secret information which is included in the client certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided is a terminal authentication system including a client terminal and a server device. The client terminal transmits first information based on secret information different for each client terminal and a client certificate including a hash value of the secret information which is derived from the secret information, to a server device. The server device receives the first information and the client certificate, derives a hash value from the secret information based on the first information using a unidirectional function, and authenticates the client terminal on the basis of the derived hash value and the hash value of the secret information which is included in the client certificate.
-
Citations
8 Claims
-
1. A terminal authentication system comprising:
-
a client terminal; and a server device, wherein the client terminal and the server device are connected to each other through a network, wherein the client terminal includes a storage unit that stores secret information different for each client terminal and a client certificate including a hash value of the secret information which is derived from the secret information, and a first communication unit that transmits first information based on the secret information and the client certificate to the server device, and wherein the server device includes a second communication unit that receives the first information and the client certificate from the client terminal, a unidirectional function processing unit that derives a hash value from the secret information based on the first information, using a unidirectional function, and an authentication processing unit that authenticates the client terminal on the basis of the derived hash value and the hash value of the secret information which is included in the client certificate. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A server device which is connected to a client terminal through a network, the server device comprising:
-
a communication unit that receives first information based on secret information different for each client terminal and a client certificate including a hash value of the secret information which is derived from the secret information, from the client terminal; a unidirectional function processing unit that derives a hash value from the secret information based on the first information, using a unidirectional function; and an authentication processing unit that authenticates the client terminal on the basis of the derived hash value and the hash value of the secret information which is included in the client certificate.
-
-
8. A terminal authentication method in a server device which is connected to a client terminal through a network, the terminal authentication method comprising:
-
a step of receiving first information based on secret information different for each client terminal and a client certificate including a hash value of the secret information which is derived from the secret information, from the client terminal; a step of deriving a hash value from the secret information based on the first information, using a unidirectional function; and a step of authenticating the client terminal on the basis of the derived hash value and the hash value of the secret information which is included in the client certificate.
-
Specification