Portable security transaction protocol

US 8,190,893 B2
Filed: 07/01/2004
Issued: 05/29/2012
Est. Priority Date: 10/27/2003
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for providing message authenticity for a message by an originating user to a recipient'"'"'s computer, the method comprising the steps of:

accepting, through the recipient'"'"'s computer, from the originating user;

(i) an encrypted authenticator component comprising authentication data and a user authentication key, wherein the user authentication key is displayed on an external device of the user,(ii) a message integrity component, and(iii) an encrypted key management component;

decrypting the key management component, through the recipient'"'"'s computer, to yield (a) a key which decrypts the user authentication key and (b) a message integrity key, wherein the entropy of the user authentication key is less than the entropy of the message integrity key;

decrypting the authenticator component, through the recipient'"'"'s computer, using the key which decrypts the user authentication key;

authenticating the user, through the recipient'"'"'s computer, using the authentication data;

accepting, through the recipient'"'"'s computer, a message comprising message data from the originating user'"'"'s computer; and

validating the message integrity component through the recipient'"'"'s computer using the message integrity key and the message data, thereby validating the message.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A technique for providing message authenticity includes accepting transaction information, accepting a first data item used for authenticating an originating user, cryptographically processing the transaction information using only a second data item, wherein the entropy of the first data item is less than the entropy of the second data item, and authenticating the originating user using the first data item. The first data item can be a sequence of digits corresponding to those displayed on an external device, such as, for example, an RSA authorization token, credit card, etc. In general, the first data item will be a short alphanumeric string and the second data item will generally be much larger, e.g., a 128 bit sequence to be used principally for data authentication. According to another aspect of the present invention, consequential evidence of the transaction may be secured to provide after-the-fact evidence of the transaction. This evidence can include a message written to a tamper-resistant log record, the message including the transaction information, the first data item, the second item, and an identifier for the originating user, as well as other information. At a subsequent point, the transaction can be shown to have been sent by the originating user and received by the intended recipient, by consulting the log record. Preferably, the validity of the transaction would be ascertained by an independent, mutually trusted third party.

670 Citations

24 Claims

1. A computer-implemented method for providing message authenticity for a message by an originating user to a recipient'"'"'s computer, the method comprising the steps of:
- accepting, through the recipient'"'"'s computer, from the originating user;
  
  (i) an encrypted authenticator component comprising authentication data and a user authentication key, wherein the user authentication key is displayed on an external device of the user,(ii) a message integrity component, and(iii) an encrypted key management component;
  
  decrypting the key management component, through the recipient'"'"'s computer, to yield (a) a key which decrypts the user authentication key and (b) a message integrity key, wherein the entropy of the user authentication key is less than the entropy of the message integrity key;
  
  decrypting the authenticator component, through the recipient'"'"'s computer, using the key which decrypts the user authentication key;
  
  authenticating the user, through the recipient'"'"'s computer, using the authentication data;
  
  accepting, through the recipient'"'"'s computer, a message comprising message data from the originating user'"'"'s computer; and
  
  validating the message integrity component through the recipient'"'"'s computer using the message integrity key and the message data, thereby validating the message.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 2. The method of claim 1, wherein the message integrity key is not derivable from the user authentication key.
  - 3. The method of claim 1, wherein the external device is an authentication token.
  - 4. The method of claim 3, wherein information obtained from the authentication token contributes to the user authentication key exclusively.
  - 5. The method of claim 3, wherein the authentication token is a one-way authentication token.
  - 6. The method of claim 1, wherein the user authentication key includes one or more of a sequence of digits corresponding to those displayed on the external device.
  - 7. The method of claim 6, wherein the external device is not electronically connected to a computer system.
  - 8. The method of claim 6, wherein the number of digits of the sequence of digits is less than ten.
  - 9. The method of claim 8, wherein the entropy of the message integrity key is 80 bits or greater.
  - 10. The method of claim 6, wherein the number of digits of the sequence of digits is less than twenty-one.
  - 11. The method of claim 10, wherein the entropy of the message integrity key is 80 bits or greater.
  - 12. The method of claim 1, wherein the user authentication key is inaccessible to an entity authorized to process a transaction related to the message.
  - 13. The method of claim 1, further including the step of providing consequential evidence, wherein providing consequential evidence includes writing a message to a log record, the message including a transaction information, the authenticator component, the message integrity component, the key management component, and an identifier for the originating user.
  - 14. The method of claim 13, wherein the step of providing consequential evidence further includes consulting the log record for one or more of the transaction information, the authenticator component, the message integrity component, the key management component, and the identifier for the originating user.
  - 15. The method of claim 14, wherein the consulting of the log record is performed to validate the message authenticity of the message included in the log record.
  - 16. The method of claim 15, wherein the log record is sent to a trusted third party to validate the log record.
  - 17. The method of claim 1, further comprising:
    - providing anti-replay protection to the message.
  - 18. The method of claim 17, wherein the message integrity component comprises a unique nonce and the anti-replay protection is provided using the unique nonce.

19. A system for providing message authenticity for a message sent by an originating user to a recipient, comprising:
- a computer-readable memory that stores, from the originating user, a message and a user authentication key used for authentication credentials representing the originating user and a message integrity key used for providing message integrity, wherein the user authentication key and the message integrity key are encrypted; and
  
  a processor communicatively coupled to the computer-readable memory, the processor programmed to perform actions by the recipient, comprising;
  
  accepting from the originating user;
  
  (i) an encrypted authenticator component comprising authentication data and a user authentication key which is displayed on an external device of the user,(ii) a message integrity component, and(iii) an encrypted key management component;
  
  decrypting the key management component, through the recipient'"'"'s computer, to yield (a) a key which decrypts the user authentication key and (b) a message integrity key, wherein the entropy of the user authentication key is less than the entropy of the message integrity key;
  
  decrypting the authenticator component using the key which decrypts the user authentication key;
  
  authenticating the user using the authentication data;
  
  accepting a message comprising message data from the originating user'"'"'s computer; and
  
  validating the message integrity component through the recipient'"'"'s computer using the message integrity key and the message data, thereby validating the message.
- View Dependent Claims (20, 21)
- - 20. The system of claim 19, wherein the processor is further programmed to perform the action of providing anti-replay protection to the message.
  - 21. The system of claim 20, wherein the message integrity component comprises a unique nonce and the anti-replay protection is provided using the unique nonce.

22. A program storage device readable by a machine, tangibly embodying a program of instructions executable on the machine to perform method steps for providing end-to-end message authenticity for a message sent by an originating user to a recipient, the method steps, performed by the recipient, comprising:
- accepting from the originating user;
  
  (i) an encrypted authenticator component comprising authentication data and a user authentication key which is displayed on an external device of the user,(ii) a message integrity component, and(iii) an encrypted key management component;
  
  decrypting the key management component, through the recipient'"'"'s computer, to yield (a) a key which decrypts the user authentication key and (b) a message integrity key, wherein the entropy of the user authentication key is less than the entropy of the message integrity key;
  
  decrypting the authenticator component using the key which decrypts the user authentication key;
  
  authenticating the user using the authentication data;
  
  accepting a message comprising message data from the originating user'"'"'s computer; and
  
  validating the message integrity component through the recipient'"'"'s computer using the message integrity key and the message data, thereby validating the message.
- View Dependent Claims (23, 24)
- - 23. The program storage device of claim 22, wherein the program of instructions further comprise instructions for providing anti-replay protection to the message.
  - 24. The program storage device of claim 23, wherein the message integrity component comprises a unique nonce and the anti-replay protection is provided using the unique nonce.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
JP Morgan Chase Bank, N.A. (JP Morgan Chase & Co)
Original Assignee
JP Morgan Chase Bank, N.A. (JP Morgan Chase & Co)
Inventors
Benson, Glenn Stuart, Calaceto, Joseph R., Logar, Russell M.
Primary Examiner(s)
Colin, Carl
Assistant Examiner(s)
THIAW, CATHERINE B

Application Number

US10/882,527
Publication Number

US 20050091492A1
Time in Patent Office

2,889 Days
Field of Search

726/2, 726/9, 726/20, 726/21, 713/168, 713/170, 713/161
US Class Current

713/170
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06Q 20/02   involving a neutral party, ...

G06Q 20/04   Payment circuits

G06Q 20/4014   Identity check for transact...

G06Q 20/4016   involving fraud or risk lev...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

Portable security transaction protocol

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

670 Citations

24 Claims

Specification

Use Cases

Quick Links

Others

Portable security transaction protocol

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

670 Citations

24 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others