Method and apparatus for the secure identification of the owner of a portable device
First Claim
Patent Images
1. A method for authenticating a web site, comprising the steps of:
- distributing, between potential web site visitors, a device to compute a dynamic code and a one-time password;
providing the web site with a certification service server to receive the computed dynamic code and to compute the one-time password;
computing, by the device, the dynamic code;
computing by the device the one-time password corresponding to the computed dynamic code;
transmitting the computed dynamic code to the certification service server;
receiving the computed dynamic code by the certification service server;
computing the one-time password by the certification service server; and
comparing, the device computed one-time password to the received certification service server computed one-time password, in order to authenticate the web site.
6 Assignments
0 Petitions
Accused Products
Abstract
Methods for the authentication of a web site by a visitor to the web site. The visitor uses a device, such as a portable device like a cell phone to compute a dynamic identification string and a one-time password. The dynamic identification string is sent to a service provider, such as a certification service server associated with the web site. In response, the server computes a one-time password that is transmitted to the visitor'"'"'s device. The device computed one-time password can then be compared to the server computed one-time password in order to authenticate the web site.
61 Citations
16 Claims
-
1. A method for authenticating a web site, comprising the steps of:
-
distributing, between potential web site visitors, a device to compute a dynamic code and a one-time password; providing the web site with a certification service server to receive the computed dynamic code and to compute the one-time password; computing, by the device, the dynamic code; computing by the device the one-time password corresponding to the computed dynamic code; transmitting the computed dynamic code to the certification service server; receiving the computed dynamic code by the certification service server; computing the one-time password by the certification service server; and comparing, the device computed one-time password to the received certification service server computed one-time password, in order to authenticate the web site. - View Dependent Claims (2, 3, 4)
-
-
5. A method for authenticating a service provider, comprising the steps of:
-
distributing, between potential service provider visitors, a device to compute a dynamic code and a one-time password; providing the service provider with a certification service server to receive the computed dynamic code and to compute the one-time password; computing, by the device, the dynamic code; computing by the device the one-time password corresponding to the computed dynamic code; transmitting the computed dynamic code to the certification service server; receiving the computed dynamic code by the certification service server; computing the one-time password by the certification service server; and comparing the device computed one-time password to the received certification service server computed one-time password, in order to authenticate the service provider. - View Dependent Claims (6, 7, 8)
-
-
9. A method for authenticating a web site, comprising the steps of:
-
providing a software module to compute a dynamic code and a one-time password; providing the web site with a certification service server to receive the computed dynamic code and to compute the one-time password; computing, by the software module, the dynamic code; computing, by the software module, the one-time password corresponding to the computed dynamic code; transmitting the computed dynamic code to the certification service server; receiving the computed dynamic code by the certification service server; computing the one-time password by the certification service server; and comparing the software module computed one-time password to the received certification service server computed one-time password, in order to authenticate the web site. - View Dependent Claims (10, 11, 12)
-
-
13. A method for authenticating a service provider, comprising the steps of:
-
providing a software module to compute a dynamic code and a one-time password; providing the service provider with a certification service server to receive the computed dynamic code and to compute the one-time password; computing, by the software module, the dynamic code; computing, by the software module, the one-time password corresponding to the computed dynamic code; transmitting the computed dynamic code to the certification service server; receiving the computed dynamic code by the certification service server; computing the one-time password by the certification service server; and comparing the software module computed one-time password to the received certification service server computed one-time password, in order to authenticate the service provider. - View Dependent Claims (14, 15, 16)
-
Specification