Agile OTP generation
First Claim
Patent Images
1. A method for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising:
- generating an OTP at the token generator according to a variance technique;
wherein the variance technique is selected from a set of variance techniques;
where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D;
wherein D is a unique value for the token generator;
wherein G is a function to determine a variance technique for OTP generation;
where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V);
wherein the InputSet2 is a set comprising K and C;
wherein H is a Hash;
wherein K is a key;
wherein C is a unique value for the generation of the OTP at the token generator;
SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;
receiving the OTP at a validator;
determining, at the validator, the variance technique from a plurality of possible variance techniques used by the token generator to generate the OTP; and
determining whether to validate the OTP based on the OTP and variance technique.
18 Assignments
0 Petitions
Accused Products
Abstract
A method, system, and apparatus for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising generating a OTP at the token generator according to a variance technique; wherein the variance technique is selected from a set of variance techniques, receiving the OTP at a validator, determining, at the validator, the variance technique used by the token generator to generate the OTP, and determining whether to validate the OTP based on the OTP and variance technique.
150 Citations
17 Claims
-
1. A method for agile generation of one time passcodes (OTPs) in a security environment, the security environment having a token generator comprising a token generator algorithm and a validator, the method comprising:
-
generating an OTP at the token generator according to a variance technique;
wherein the variance technique is selected from a set of variance techniques;
where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D;
wherein D is a unique value for the token generator;
wherein G is a function to determine a variance technique for OTP generation;
where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V);
wherein the InputSet2 is a set comprising K and C;
wherein H is a Hash;
wherein K is a key;
wherein C is a unique value for the generation of the OTP at the token generator;
SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;receiving the OTP at a validator; determining, at the validator, the variance technique from a plurality of possible variance techniques used by the token generator to generate the OTP; and determining whether to validate the OTP based on the OTP and variance technique. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for agile generation of one time passcodes (OTPs) in a security environment, the system comprising:
-
a token generator comprising a token generator algorithm;
wherein the token generator algorithm generates an OTP at the token generator according to a variance technique;
wherein the variance technique is selected from a set of variance techniques;
where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D;
wherein D is a unique value for the token generator;
wherein G is a function to determine a variance technique for OTP generation;
where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V);
wherein the InputSet2 is a set comprising K and C;
wherein H is a Hash;
wherein K is a key;
wherein C is a unique value for the generation of the OTP at the token generator;
SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate;a validator; and computer-executable program code operating in memory, wherein the computer-executable program code is configured to enable execution of; receiving the OTP at the validator; determining, at the validator, the variance technique used by the token generator to generate the OTP; and determining whether to validate the OTP based on the OTP and variance technique. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method for provisioning an OTP generator, the method comprising:
-
selecting one or more variance techniques from a set of variance techniques, where the variance technique is given by the function V=G(InputSet1) and wherein the InputSet1 is a set comprising D, wherein D is a unique value for the token generator, wherein G is a function to determine a variance technique for OTP generation, where the OTP is given by the function OTP=H(F(SKC, SKPC), InputSet2, V), wherein the InputSet2 is a set comprising K and C, wherein H is a Hash, wherein K is a key, and wherein C is a unique value for the generation of the OTP at the token generator, SKC is the Symmetric Key certificate, F is a function for use in a variance technique for OTP generation, SKPC is a Symmetric Key Policy Certificate; provisioning the OTP generator with the one or more variance techniques; and enabling a validator to determine which authentication technique is used by the OTP generator. - View Dependent Claims (16, 17)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeRSA Security LLC (Symphony Technology Group LLC)
-
Original AssigneeEMC Corporation (Dell Technologies Inc.)
-
InventorsVernon, Daniel Bailey, Brainard, John G, Duane, William M, O'Malley, Michael J, Philpott, Robert S
-
Primary Examiner(s)Perungavoor, Venkat
-
Assistant Examiner(s)Mehrmanesh, Amir
-
Application NumberUS14/058,389Time in Patent Office344 DaysField of Search726 5- 7, 726 9- 10, 726/20, 713/156, 713/168, 713184-185, 380/255, 380/259, 380/262US Class Current726/6CPC Class CodesH04L 63/0435 wherein the sending and rec...H04L 63/0823 using certificates cryptogr...H04L 63/0838 using one-time-passwordsH04L 9/003 for power analysis, e.g. di...H04L 9/3228 One-time or temporary data,...H04L 9/3234 involving additional secure...
