[특허]System and method for end to end encryption

System and method for end to end encryption 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	H04L-009/32 H04L-029/06
출원번호	US-0168148 (2011-06-24)
등록번호	US-8775794 (2014-07-08)
발명자 / 주소	Benson, Glenn
출원인 / 주소	JPMorgan Chase Bank, N.A.
대리인 / 주소	Hunton & Williams LLP
인용정보	피인용 횟수 : 5 인용 특허 : 34

초록 ▼

Systems and methods for end-to-end encryption are disclosed. According to one embodiment, a method for device registration includes (1) an application executed by a computer processor receiving a user password from a user; (2) using the computer processor, the application combining the user password and a password extension; (3) using the computer processor, the application cryptographically processing the combined user password and password extension, resulting cryptographic public information; and (4) providing the cryptographic public information to a server. The user password is not provided to the server. In another embodiment, a method for user authentication includes (1) using a computer processor, receiving a login page from a server; (2) sending a Hash-based Message Authentication Code to the server; and (3) receiving an authentication from the server. In one embodiment, the login page may include a transkey and a value B.

대표청구항 ▼

1. A method for user authentication, comprising: at least one computer processor receiving a login page from a server, the login page including a value B, wherein the value B is defined as: B=gb mod p where b is an arbitrary number, g is a primitive root, and p is a prime number;sending a Hash-based Message Authentication Code to the server; andreceiving an authentication from the server;wherein the Hash-based Message Authentication Code comprises HMAC(K,(UserID, encrypted value b, OTP));wherein K is equal to Ba mod p, and a is a concatenation of a password and a password extension; andwherein the UserID is a user identifier; andwherein the OTP is a one-time password. 2. The method of claim 1, wherein the arbitrary number is a random number. 3. The method of claim 1, wherein the arbitrary number is a pseudo-random number. 4. A method for user authentication, comprising: at least one computer processor receiving a login page from a server, the login page including a value B, wherein the value B is defined as: B=gb mod p where b is an arbitrary number, g is a primitive root, and p is a prime number;sending a Hash-based Message Authentication Code to the server; andreceiving an authentication from the server;the at least one computer processor verifying the authenticity of the server, comprising: receiving a server value RESP from the server, the server value RESP equal to HMAC(K,(UserID, encrypted value b, OTP, timestamp+1));using the computer processor, calculating a client value RESP equal to HMAC(K,(UserID, encrypted value b, OTP, timestamp+1)); andverifying that the server value RESP against the client value RESP. 5. The method of claim 4, wherein the arbitrary number is a random number. 6. The method of claim 4, wherein the arbitrary number is a pseudo-random number. 7. A method for user authentication, comprising: a server comprising at least one computer processor generating a value B, wherein the value B is defined as: B=g1b mod p1where b is an arbitrary number, g1 is a first primitive root, and p1 is a first prime number;the server generating a login page containing the value B;the server providing the login page to a client device;the server receiving a Hash-based Message Authentication Code from the client device, the Hash-based Message Authentication Code comprising a UserID and a onetime password;retrieving a stored cryptographic public information and a stored one-time password associated with the UserID;using the computer processor, the server determining a client value K; andusing the computer processor, the server validating the client value K against a server value K;wherein the Hash-based Message Authentication Code comprises HMAC(K,(UserID, encrypted value b, one-time password));wherein K is equal to Ba mod p2, a is a concatenation of a password and a password extension, and p2 is a second prime number; andwherein the UserID is a user identifier. 8. The method of claim 7, wherein the server rejects the authentication request if the server does not validate the value K. 9. The method of claim 7, wherein the server does receive a user password. 10. The method of claim 7, further comprising: a second server receiving the Hash-based Message Authentication Code from the client device, the Hash-based Message Authentication Code comprising a UserID and a one-time password;the second server retrieving a second stored cryptographic public information and a stored one-time password associated with the UserID;using the computer processor, the second server determining a second client value K; andusing the computer processor, the second server validating the second client value K against a second server value K. 11. The method for user authentication of claim 7, wherein the value for p1 and p2 are equal. 12. The method of claim 7, wherein the arbitrary number is a random number. 13. The method of claim 7, wherein the arbitrary number is a pseudo-random number. 14. A method for user authentication, comprising: a server comprising at least one computer processor generating a value B, wherein the value B is defined as: B=g1b mod p1where b is an arbitrary number, g1 is a first primitive root, and p1 is a first prime number;the server generating a login page containing the value B;the server providing the login page to a client device;the server receiving a Hash-based Message Authentication Code from the client device, the Hash-based Message Authentication Code comprising a UserID and a one-time password;retrieving a stored cryptographic public information and a stored one-time password associated with the UserID;using the computer processor, the server determining a client value K; andusing the computer processor, the server validating the client value K against a server value K;wherein the server determines the client value K from using the equation K=Ba mod p2, a is a concatenation of a password and a password extension, and p2 is a second prime number. 15. The method for user authentication of claim 14, wherein the value for p1 and p2 are equal. 16. The method of claim 14, wherein the arbitrary number is a random number. 17. The method of claim 14, wherein the arbitrary number is a pseudo-random number. 18. A method for user authentication, comprising: a server comprising at least one computer processor generating a value B, wherein the value B is defined as: B=gb mod p where “b” is an arbitrary number, “g” is a primitive root, and “p” is a prime number;the server generating a login page containing the value “B”;the server providing the login page to a client device;the server receiving, from the client device, a UserID, a one-time password, and a Hash-based Message Authentication Code;the server retrieving a value “A” based on the UserID;the server calculating a server value K, the server value K equal to Ab mod p,the server calculating a client value K equal to Ba mod p, wherein “a” is a concatenation of a password and a password extension; andthe server validating the client value K against a server value K. 19. The method of claim 18, wherein a second UserID is associated with a second prime number “p2.” 20. The method of claim 18, wherein the arbitrary number is a random number. 21. The method of claim 18, wherein the arbitrary number is a pseudo-random number.

이 특허에 인용된 특허 (34)

Wheeler, Lynn Henry; Wheeler, Anne M., ABDS method utilizing security information in authenticating entity access.
상세보기
Wheeler, Henry Lynn; Wheeler, Anne M., ABDS system and verification status for authenticating entity access.
상세보기
Wheeler, Lynn Henry; Wheeler, Anne M., Account authority digital signature (AADS) system.
상세보기
Hellman Martin E. (Stanford CA) Diffie Bailey W. (Berkeley CA) Merkle Ralph C. (Palo Alto CA), Cryptographic apparatus and method.
상세보기
Rivest Ronald L. (Belmont MA) Shamir Adi (Cambridge MA) Adleman Leonard M. (Arlington MA), Cryptographic communications system and method.
상세보기
Maurer Ueli (Wil CHX), Cryptographic system based on information difference.
상세보기
Hartrick Thomas V. (Gaithersburg MD) Stevens Jeffrey N. (Gaithersburg MD) Sabia Nicholas J. (Silver Spring MD), Data processing system and method to enforce payment of royalties when copying softcopy books.
상세보기
Ginter,Karl L.; Shear,Victor H.; Spahn,Francis J.; Van Wie,David M.; Weber,Robert P., Digital certificate support system, methods and techniques for secure electronic commerce transaction and rights management.
상세보기
Mourad,Magda; Munson,Jonathan P.; Pacifici,Giovanni; Tantawy,Ahmed; Youssef,Alaa S., Digital content distribution using web broadcasting services.
상세보기
Kravitz David W. (Owings Mills MD), Digital signature algorithm.
상세보기
Cohen Joshua L. ; Dean Cecil A. ; du Breuil Thomas L. ; Heer Daniel Nelson ; Maher David P. ; Poteat Vance Eugene ; Rance Robert John, Electronic identifiers for network terminal devices.
상세보기
Leong,Cheah Wee; Ng,William, Electronic menu document creator in a virtual financial environment.
상세보기
Jansen Cornelis J. A. (Eindhoven NLX), Enciphering/deciphering method and arrangement for performing the method.
상세보기
Sutter Herbert P.,CAX, Independent distributed database system.
상세보기
Kumar, Suresh; Kumar, Vijay, Keyless encryption of messages using challenge response.
상세보기
Compiano,Craig M., Method and apparatus for preauthorizing electronic fund transfers without actual written authentication.
상세보기
Katz Ronald A., Multiple format telephonic interface control system.
상세보기
Matyas Stephen M. (Kingston NY), Offline PIN validation with DES.
상세보기
Wheeler, Lynn Henry; Wheeler, Anne M., Person-centric account-based digital signature system.
상세보기
Weinstein Stephen B. (Summit NJ), Protection system for intelligent cards.
상세보기
Ilnicki,Slawomir K.; Shahoumian,Troy, Secure data transfer method and system.
상세보기
Elgamal Taher (Palo Alto CA) Hickman Kipp E. B. (Los Altos CA), Secure socket layer application program apparatus and method.
상세보기
Elgamal Taher ; Hickman Kipp E.B., Secure socket layer application program apparatus and method.
상세보기
Peck,Adrian; Harvey,Ian, Secure transmission of data within a distributed computer system.
상세보기
Henry Paul S. (Holmdel NJ), Stream cipher operation using public key cryptosystem.
상세보기
Herz, Frederick; Ungar, Lyle; Zhang, Jian; Wachob, David; Salganicoff, Marcos, System and method for providing access to video programs and other data using customer profiles.
상세보기
Berson,Thomas A.; Dean,R. Drews; Franklin,Matthew K.; Smetters,Diana K., System, method and article of manufacture for providing cryptographic services utilizing a network.
상세보기
Shear Victor H. ; Van Wie David M. ; Weber Robert P., Systems and methods for matching, selecting, narrowcasting, and/or classifying based on rights management and/or other information.
상세보기
Ginter Karl L. ; Shear Victor H. ; Sibert W. Olin ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
상세보기
Ginter, Karl L.; Shear, Victor H.; Spahn, Francis J.; Van Wie, David M., Systems and methods for secure transaction management and electronic rights protection.
상세보기
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for the secure transaction management and electronic rights protection.
상세보기
Katz Ronald A., Telephonic-interface lottery system.
상세보기
Katz Ronald A., Telephonic-interface statistical analysis system.
상세보기
Davis Walter Lee ; Rasor Gregg Edward ; Macnak Philip Paul, Transaction authentication for 1-way wireless financial messaging units.
상세보기

이 특허를 인용한 특허 (5)

Satpathy, Ansuman; Wang, Haitang, Accessing a cloud-based service using a communication device linked to another communication device via a peer-to-peer ad hoc communication link.
상세보기
Satpathy, Ansuman; Wang, Haitang, Accessing a cloud-based service using a communication device linked to another communication device via a peer-to-peer ad hoc communication link.
상세보기
Bradbury, Jonathan D.; Buendgen, Reinhard T.; Greiner, Dan F.; Jacobi, Christian; Paprotski, Volodymyr; Puranik, Aditya N.; Slegel, Timothy J.; Visegrady, Tamas; Zoellin, Christian, Cipher message with authentication instruction.
상세보기
Ng, Li Huang; Chong, Chee Wah; Yip, Ngai Kain; Lau, Hon Tat; Chan, Wendy Siew Yen; Teo, Tse Chin, Method performed by at least one server for processing a data packet from a first computing device to a second computing device to permit end-to-end encryption communication.
상세보기
Juels, Ari, Self-refreshing distributed cryptography.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

System and method for end to end encryption 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (34)

이 특허를 인용한 특허 (5)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

System and method for end to end encryption 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (34)

이 특허를 인용한 특허 (5)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트