WO2005084293A3 - Methods and systems for secure transmission of identification information over public networks - Google Patents

Methods and systems for secure transmission of identification information over public networks Download PDF

Info

Publication number
WO2005084293A3
WO2005084293A3 PCT/US2005/006535 US2005006535W WO2005084293A3 WO 2005084293 A3 WO2005084293 A3 WO 2005084293A3 US 2005006535 W US2005006535 W US 2005006535W WO 2005084293 A3 WO2005084293 A3 WO 2005084293A3
Authority
WO
WIPO (PCT)
Prior art keywords
host
dynamic token
party
token
identification information
Prior art date
Application number
PCT/US2005/006535
Other languages
French (fr)
Other versions
WO2005084293A2 (en
Inventor
David Grace
Paul Turgeon
Original Assignee
Metavante Corp
David Grace
Paul Turgeon
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Metavante Corp, David Grace, Paul Turgeon filed Critical Metavante Corp
Priority to CA2557663A priority Critical patent/CA2557663C/en
Priority to EP05724139.0A priority patent/EP1730866B1/en
Priority to ES05724139T priority patent/ES2758706T3/en
Publication of WO2005084293A2 publication Critical patent/WO2005084293A2/en
Publication of WO2005084293A3 publication Critical patent/WO2005084293A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4012Verifying personal identification numbers [PIN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash

Abstract

Methods and systems are provided for generating a party static token to be used in combination with a party dynamic token for identifying a party to a host system. Identification information that identifies the party to the host system is received. Such identification information includes a host dynamic token and a host static token. A false host dynamic token that differs from the host dynamic token is generated. The host dynamic token and the false host dynamic token are encrypted. In addition, information that uniquely identifies the party dynamic token is encrypted. The party static token is produced from a combination of the encrypted host dynamic token, the encrypted false host dynamic token, and the encrypted information that uniquely identifies the party dynamic token.
PCT/US2005/006535 2004-02-27 2005-02-28 Methods and systems for secure transmission of identification information over public networks WO2005084293A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
CA2557663A CA2557663C (en) 2004-02-27 2005-02-28 Methods and systems for secure transmission of identification information over public networks
EP05724139.0A EP1730866B1 (en) 2004-02-27 2005-02-28 Methods and systems for secure transmission of identification information over public networks
ES05724139T ES2758706T3 (en) 2004-02-27 2005-02-28 Methods and systems for the secure transmission of identification information through public networks

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US54882404P 2004-02-27 2004-02-27
US60/548,824 2004-02-27
US11/067,306 US7669233B2 (en) 1999-09-10 2005-02-25 Methods and systems for secure transmission of identification information over public networks
US11/067,306 2005-02-25

Publications (2)

Publication Number Publication Date
WO2005084293A2 WO2005084293A2 (en) 2005-09-15
WO2005084293A3 true WO2005084293A3 (en) 2009-04-16

Family

ID=34922116

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/006535 WO2005084293A2 (en) 2004-02-27 2005-02-28 Methods and systems for secure transmission of identification information over public networks

Country Status (5)

Country Link
US (1) US7669233B2 (en)
EP (1) EP1730866B1 (en)
CA (1) CA2557663C (en)
ES (1) ES2758706T3 (en)
WO (1) WO2005084293A2 (en)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7228417B2 (en) * 2002-02-26 2007-06-05 America Online, Inc. Simple secure login with multiple-authentication providers
US20210133722A1 (en) * 2005-12-15 2021-05-06 Nexus Payments, LLC System And Method For On-Line Financial Transactions
US20070251999A1 (en) * 2006-03-21 2007-11-01 Bohlke Edward H Iii Optical data cards and transactions
US20100050197A1 (en) * 2008-07-25 2010-02-25 Disctekk, Llc Optical card
US9002997B2 (en) * 2013-01-22 2015-04-07 Amazon Technologies, Inc. Instance host configuration
US9978062B2 (en) * 2013-05-15 2018-05-22 Visa International Service Association Mobile tokenization hub
CN107453864B (en) * 2017-07-04 2020-08-04 奇瑞新能源汽车股份有限公司 Security verification method and system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020166048A1 (en) * 2001-05-01 2002-11-07 Frank Coulier Use and generation of a session key in a secure socket layer connection
US20030204732A1 (en) * 2002-04-30 2003-10-30 Yves Audebert System and method for storage and retrieval of a cryptographic secret from a plurality of network enabled clients
US20030208684A1 (en) * 2000-03-08 2003-11-06 Camacho Luz Maria Method and apparatus for reducing on-line fraud using personal digital identification
US20070180507A1 (en) * 2006-01-27 2007-08-02 Feitian Technologies, Co., Ltd. Information security device of universal serial bus human interface device class and data transmission method for same

Family Cites Families (48)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4259720A (en) 1978-01-09 1981-03-31 Interbank Card Association Security system for electronic funds transfer system
US4906828A (en) 1983-02-28 1990-03-06 Paperless Accounting, Inc. Electronic money purse and fund transfer system
US4827508A (en) 1986-10-14 1989-05-02 Personal Library Software, Inc. Database usage metering and protection system and method
US4908828A (en) * 1987-12-29 1990-03-13 Indesys, Inc. Method for error free message reception
US4933971A (en) 1989-03-14 1990-06-12 Tandem Computers Incorporated Method for encrypting transmitted data using a unique key
US5870724A (en) 1989-12-08 1999-02-09 Online Resources & Communications Corporation Targeting advertising in a home retail banking delivery service
US5220501A (en) 1989-12-08 1993-06-15 Online Resources, Ltd. Method and system for remote delivery of retail banking services
DE4008971A1 (en) * 1990-03-20 1991-09-26 Siemens Nixdorf Inf Syst METHOD FOR AUTHENTICATING A USER USING A DATA STATION
US5623547A (en) 1990-04-12 1997-04-22 Jonhig Limited Value transfer system
US5734823A (en) 1991-11-04 1998-03-31 Microtome, Inc. Systems and apparatus for electronic communication and storage of information
US5453601A (en) 1991-11-15 1995-09-26 Citibank, N.A. Electronic-monetary system
US5371797A (en) 1993-01-19 1994-12-06 Bellsouth Corporation Secure electronic funds transfer from telephone or unsecured terminal
US5677953A (en) 1993-09-14 1997-10-14 Spyrus, Inc. System and method for access control for portable data storage media
IL110891A (en) 1993-09-14 1999-03-12 Spyrus System and method for data access control
US5539828A (en) 1994-05-31 1996-07-23 Intel Corporation Apparatus and method for providing secured communications
US5892900A (en) 1996-08-30 1999-04-06 Intertrust Technologies Corp. Systems and methods for secure transaction management and electronic rights protection
US5590197A (en) 1995-04-04 1996-12-31 V-One Corporation Electronic payment system and method
US5877953A (en) * 1995-06-07 1999-03-02 Stratos Industries, Inc. Time tracking apparatus
US5872917A (en) * 1995-06-07 1999-02-16 America Online, Inc. Authentication using random challenges
US5771291A (en) 1995-12-11 1998-06-23 Newton; Farrell User identification and authentication system using ultra long identification keys and ultra large databases of identification keys for secure remote terminal access to a host computer
US6096053A (en) * 1996-05-03 2000-08-01 Scimed Life Systems, Inc. Medical retrieval basket
US5850446A (en) 1996-06-17 1998-12-15 Verifone, Inc. System, method and article of manufacture for virtual point of sale processing utilizing an extensible, flexible architecture
US5889863A (en) 1996-06-17 1999-03-30 Verifone, Inc. System, method and article of manufacture for remote virtual point of sale processing utilizing a multichannel, extensible, flexible architecture
US5956483A (en) 1996-06-28 1999-09-21 Microsoft Corporation System and method for making function calls from a web browser to a local application
JP2982702B2 (en) 1996-08-30 1999-11-29 日本電気株式会社 Disk unit
US6195357B1 (en) 1996-09-24 2001-02-27 Intervoice Limited Partnership Interactive information transaction processing system with universal telephony gateway capabilities
US6047376A (en) 1996-10-18 2000-04-04 Toshiba Information Systems (Japan) Corporation Client-server system, server access authentication method, memory medium stores server-access authentication programs, and issuance device which issues the memory medium contents
US5913202A (en) 1996-12-03 1999-06-15 Fujitsu Limited Financial information intermediary system
US6073160A (en) 1996-12-18 2000-06-06 Xerox Corporation Document communications controller
TW352473B (en) * 1997-02-25 1999-02-11 United Microelectronics Corp Method and process for making ROM
US5903881A (en) 1997-06-05 1999-05-11 Intuit, Inc. Personal online banking with integrated online statement and checkbook user interface
GB2319641B (en) 1997-11-28 1998-10-14 Ibm Secure variable storage for internet applications
US6098053A (en) 1998-01-28 2000-08-01 Citibank, N.A. System and method for performing an electronic financial transaction
US6182220B1 (en) * 1998-03-30 2001-01-30 International Business Machines Corporation System and method for building and exchanging encrypted passwords between a client and server
US6065073A (en) 1998-08-17 2000-05-16 Jato Technologies, Inc. Auto-polling unit for interrupt generation in a network interface device
US6173269B1 (en) 1998-12-16 2001-01-09 Zowi.Com, Inc Method and apparatus for executing electronic commercial transactions with minors
US7386516B2 (en) 1999-09-10 2008-06-10 Metavante Corporation System and method for providing secure services over public and private networks using a removable portable computer-readable storage
US20020152180A1 (en) 1999-09-10 2002-10-17 Paul Turgeon System and method for performing secure remote real-time financial transactions over a public communications infrastructure with strong authentication
CN1142653C (en) * 2000-04-28 2004-03-17 杨宏伟 Dynamic password authentication system and method
US7103912B2 (en) * 2001-06-29 2006-09-05 International Business Machines Corporation User authorization management system using a meta-password and method for same
US20030093680A1 (en) * 2001-11-13 2003-05-15 International Business Machines Corporation Methods, apparatus and computer programs performing a mutual challenge-response authentication protocol using operating system capabilities
US7228417B2 (en) * 2002-02-26 2007-06-05 America Online, Inc. Simple secure login with multiple-authentication providers
KR100450953B1 (en) * 2002-03-05 2004-10-02 삼성전자주식회사 User authentication method using password
EP1383265A1 (en) * 2002-07-16 2004-01-21 Nokia Corporation Method for generating proxy signatures
US7725730B2 (en) * 2002-08-09 2010-05-25 Emc Corporation Cryptographic methods and apparatus for secure authentication
US7309004B1 (en) * 2002-12-26 2007-12-18 Diebold Self-Service Systems, Division Of Diebold, Incorporated Cash dispensing automated banking machine firmware authentication system and method
US7788703B2 (en) * 2006-04-24 2010-08-31 Ruckus Wireless, Inc. Dynamic authentication in secured wireless networks
US20080034216A1 (en) * 2006-08-03 2008-02-07 Eric Chun Wah Law Mutual authentication and secure channel establishment between two parties using consecutive one-time passwords

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030208684A1 (en) * 2000-03-08 2003-11-06 Camacho Luz Maria Method and apparatus for reducing on-line fraud using personal digital identification
US20020166048A1 (en) * 2001-05-01 2002-11-07 Frank Coulier Use and generation of a session key in a secure socket layer connection
US20030204732A1 (en) * 2002-04-30 2003-10-30 Yves Audebert System and method for storage and retrieval of a cryptographic secret from a plurality of network enabled clients
US20070180507A1 (en) * 2006-01-27 2007-08-02 Feitian Technologies, Co., Ltd. Information security device of universal serial bus human interface device class and data transmission method for same

Also Published As

Publication number Publication date
ES2758706T3 (en) 2020-05-06
US20050228755A1 (en) 2005-10-13
WO2005084293A2 (en) 2005-09-15
CA2557663C (en) 2016-09-27
CA2557663A1 (en) 2005-09-15
EP1730866A4 (en) 2014-05-14
EP1730866B1 (en) 2019-11-13
EP1730866A2 (en) 2006-12-13
US7669233B2 (en) 2010-02-23

Similar Documents

Publication Publication Date Title
WO2005084293A3 (en) Methods and systems for secure transmission of identification information over public networks
WO2009158086A3 (en) Techniques for ensuring authentication and integrity of communications
WO2007096871A3 (en) Device, system and method of accessing a security token
WO2006086721A3 (en) Context limited shared secret
WO2013003493A3 (en) System and method for protocol fingerprinting and reputation correlation
WO2004031898A3 (en) Vulnerability management and tracking system (vmts)
WO2009038657A3 (en) Method and apparatus for preventing phishing attacks
WO2005119481A3 (en) A method and system for verifying identification of an electronic mail message
DE602005001613D1 (en) SET UP A SECURE CONTEXT FOR TRANSMITTING MESSAGES BETWEEN COMPUTER SYSTEMS
WO2010059675A3 (en) Methods and systems for image fingerprinting
WO2010015906A3 (en) Apparatus, systems and methods for authentication of objects having multiple components
WO2007123705A3 (en) Enhanced security for electronic communications
EP1278330A4 (en) Information processing apparatus
AU4099501A (en) A data transfer and management system
WO2007002089A3 (en) Identity information services, methods, devices, and systems
US8856900B2 (en) Method for authorising a connection between a computer terminal and a source server
WO2004081719A3 (en) Methods and systems for digital rights management of protected content
WO2004010258A3 (en) System and method for validating security access across a network layer and a local file layer
PL373366A1 (en) Receiving device for securely storing a content item, and playback device
AU2003291892A1 (en) System and method of secure authentication information distribution
ATE526762T1 (en) DEVICE AND METHOD FOR AUTENTIFYING A NETWORK USER
ATE291308T1 (en) INFORMATION PROTECTION IN A TRANSMISSION SYSTEM
CA3080822A1 (en) Systems and methods for providing access to wireless gaming devices
IS2078B (en) Automatic third-party authentication system
TW200732979A (en) Card capable of authentication

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

WWE Wipo information: entry into national phase

Ref document number: 2557663

Country of ref document: CA

WWE Wipo information: entry into national phase

Ref document number: 2005724139

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 2005724139

Country of ref document: EP