Agile OTP generation

US 8,566,916 B1
Filed: 10/30/2012
Issued: 10/22/2013
Est. Priority Date: 09/30/2010
Status: Active Grant

First Claim

Patent Images

1. A method for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising:

generating an OTP at the token generator according to a variance technique;

wherein the variance technique is selected from a set of variance techniques;

where the variance technique is given by the function OTP=H(F(SKC, SKPC), InputSet) and wherein the InputSet is a set comprising K and C;

wherein H is a Hash;

wherein K is a key;

wherein C is a unique value for the generation of the OTP at the token generator;

SKC is a Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;

receiving the OTP at a validator;

determining, at the validator, the variance technique from a plurality of possible variance techniques used by the token generator to generate the OTP; and

determining whether to validate the OTP based on the OTP and variance technique.

View all claims

18 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system, and apparatus for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising generating a OTP at the token generator according to a variance technique; wherein the variance technique is selected from a set of variance techniques, receiving the OTP at a validator, determining, at the validator, the variance technique used by the token generator to generate the OTP, and determining whether to validate the OTP based on the OTP and variance technique.

151 Citations

17 Claims

1. A method for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising:
- generating an OTP at the token generator according to a variance technique;
  
  wherein the variance technique is selected from a set of variance techniques;
  
  where the variance technique is given by the function OTP=H(F(SKC, SKPC), InputSet) and wherein the InputSet is a set comprising K and C;
  
  wherein H is a Hash;
  
  wherein K is a key;
  
  wherein C is a unique value for the generation of the OTP at the token generator;
  
  SKC is a Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;
  
  receiving the OTP at a validator;
  
  determining, at the validator, the variance technique from a plurality of possible variance techniques used by the token generator to generate the OTP; and
  
  determining whether to validate the OTP based on the OTP and variance technique.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 wherein the validator determines the variance technique of the set of variance techniques by using an information file containing information about the token.
  - 3. The method of claim 1 wherein information about one of the variance techniques of the set of variance techniques is encoded in the OTP.
  - 4. The method of claim 1 wherein the variance technique is switching among a plurality of OTP generation algorithms.
  - 5. The method of claim 1 wherein the variance technique is obtained from the environment of the OTP generator.
  - 6. The method of claim 1 wherein the variance technique is obtained from variances within the OTP generator.
  - 7. The method of claim 2 wherein the information file is a certificate.
  - 8. The method of claim 1 wherein C is a monotonic value.
  - 9. The method of claim 1 wherein C is a counter.

10. A system for agile generation of one time passcodes (OTPs) in a security environment, the system comprising:
- a token generator comprising a token generator algorithm;
  
  wherein the token generator algorithm generates an OTP at the token generator according to a variance technique;
  
  wherein the variance technique is selected from a set of variance techniques;
  
  where the variance technique is given by the function OTP=H(F(SKC, SKPC), InputSet) and wherein the InputSet is a set comprising K and C;
  
  wherein H is a Hash;
  
  wherein K is a key;
  
  wherein C is a unique value for the generation of the OTP at the token generator;
  
  SKC is a Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;
  
  a validator; and
  
  computer-executable program code operating in memory, wherein the computer-executable program code is configured to enable execution of;
  
  receiving the OTP at a validator;
  
  determining, at the validator, the variance technique from a plurality of possible variance techniques used by the token generator to generate the OTP; and
  
  determining whether to validate the OTP based on the OTP and variance technique.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
- - 11. The system of claim 10 wherein the validator determines the variance technique of the set of variance techniques by using an information file containing information about the token generator.
  - 12. The system of claim 10 wherein information about one of the variance techniques of the set of variance techniques is encoded in the OTP.
  - 13. The system of claim 10 wherein the variance technique is switching among a plurality of OTP generation algorithms.
  - 14. The system of claim 10 wherein the variance technique is obtained from the environment of the OTP generator.
  - 15. The system of claim 10 wherein the variance technique is obtained from variances within the OTP generator.
  - 16. The system of claim 10 wherein the information file is a certificate.
  - 17. The system of claim 10 wherein C is a monotonic value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
RSA Security LLC (Symphony Technology Group LLC)
Original Assignee
EMC Corporation (Dell Technologies Inc.)
Inventors
Duane, William M, Vernon, Daniel Bailey, Brainard, John G, O'Malley, Michael J, Philpott, Robert S
Primary Examiner(s)
Nalven, Andrew L
Assistant Examiner(s)
Mehrmanesh, Amir

Application Number

US13/663,535
Time in Patent Office

357 Days
Field of Search

726 5- 7, 726 9- 10, 726/20, 713/156, 713/168, 713184-185, 380/255, 380/259, 380/262
US Class Current

726/6
CPC Class Codes

H04L 63/0435   wherein the sending and rec...

H04L 63/0823   using certificates cryptogr...

H04L 63/0838   using one-time-passwords

H04L 9/003   for power analysis, e.g. di...

H04L 9/3228   One-time or temporary data,...

H04L 9/3234   involving additional secure...

Agile OTP generation

First Claim

18 Assignments

0 Petitions

Accused Products

Abstract

151 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Agile OTP generation

First Claim

18 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

151 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links