IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
US-0369668
(2006-03-06)
|
등록번호 |
US-8813181
(2014-08-19)
|
발명자
/ 주소 |
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 |
피인용 횟수 :
0 인용 특허 :
3 |
초록
▼
A verification system which can be used over electronic networks, such as the Internet, to help prevent phishing, electronic identity theft, and similar illicit activities, by verifying the authenticity of electronic entities (for example, websites). Users and electronic entities register with an au
A verification system which can be used over electronic networks, such as the Internet, to help prevent phishing, electronic identity theft, and similar illicit activities, by verifying the authenticity of electronic entities (for example, websites). Users and electronic entities register with an authenticating entity. The authenticating entity shares an encryption method with registered electronic entities and establishes a secret code for each registered electronic entity. The secret code is combined with other information and encrypted before being transmitted over the network to ensure that the secret code cannot be compromised. Also disclosed are systems for virtual token devices, which provided object-based authentication without a physical device. Also disclosed are dynamic media credentials, which display nearly-unique behavior, previously specified and known to a user, to assist in verifying the authenticity of the presenter.
대표청구항
▼
1. A verification method, related to assisting at least one user using at least one web-browser on at least one computer to verify authenticity with at least one website, comprising the steps of: storing by at least one authenticating entity, during at least one first registration period, first iden
1. A verification method, related to assisting at least one user using at least one web-browser on at least one computer to verify authenticity with at least one website, comprising the steps of: storing by at least one authenticating entity, during at least one first registration period, first identification information about the at least one website,wherein the first identification information is shared among the at least one website and the at least one authenticating entity, the first identification information comprising at least one first public portion associated with at least one first secret portion;b. storing by the at least one authenticating entity, during at least one second registration period, second identification information about the at least one computer of the at least one user, identification information is shared among the at least one computer and the at least one authenticating entity, the second identification information comprising at least one hardware identifier of the computer of the user and at least one second public portion associated with at least one second secret portion; andc. providing via the at least one authenticating entity, during the at least one second registration period, a cookie to the at least one web-browser of the at least one computer;verifying authenticity of the at least one website using at least one shared, among the at least one website and the at least one authenticating entity, cryptographic algorithm, wherein the step of verifying authenticity further comprises the step of i) the at least one computer electronically transmitting the at least one second public portion through the at least one public computer network to the at least one website,ii) the at least one website creating at least one first message digest by encrypting, using the cryptographic algorithm, data comprising the at least one first secret portion and the at least one second public portion, andiii) the at least one website transmitting the at least one first message digest through the at least one public computer network to the at least one authenticating entity;authenticating entity, cryptographic algorithm;e. wherein the at least one computer, the at least one website and the at least one authenticating entity communicate across the at least one public computer network. 2. The verification method according to claim 1 wherein the step of verifying authenticity further comprises the steps of: a. the at least one website transmitting the at least one first public portion and the at least one second public portion through the at least one public computer network to the at least one authenticating entity;b. the at least one authenticating entity identifying the at least one first secret portion associated with the at least one first public portion;c. the at least one authenticating entity creating at least one second message digest by encrypting, using the cryptographic algorithm, the data comprising the at least one first secret portion and the at least one second public portion. 3. The verification method according to claim 2 wherein the step of verifying authenticity further comprises the step of the at least one authenticating entity comparing the at least one first message digest to the at least one second message digest. 4. The verification method according to claim 3 wherein the step of verifying authenticity further comprises the step of notifying the at least one user of a result of the authenticity verification of the at least one website. 5. The verification method according to claim 4 wherein the step of notifying further comprises the steps of: a. creating at least one dynamic media using at least one aspect; andb. transmitting the at least one dynamic media through the at least one public computer network to the at least one computer;c. wherein the at least one second secret portion further comprises the at least one aspect. 6. The verification method according to claim 4 further comprising the steps of: a. verify authenticity of the at least one user by the at least one authenticating entity using at least one portion of the at least one second identification information and the at least one hardware identifier and the cookie;generating at least one token using the at least one shared cryptographic algorithm for the at least one authenticating entity;c. electronically transmitting the at least one token through the at least one public computer network to the at least one computer; andd. verify authenticity of the at least one user using the at least one token and the at least one shared cryptographic algorithm for the at least one website. 7. The verification method according to claim 6 wherein the step of assisting to store the at least one second identification information about the at least one computer further comprises the steps of: a. prohibiting the at least one website from storing any information that identifies the at least one user as the at least one second identification information; andb. preventing the at least one authenticating entity from storing any information that identifies the at least one user as the at least one second identification information. 8. The verification method according to claim 1 wherein the step of verifying authenticity further comprises the step of the at least one authenticating entity transmitting the at least one second secret portion to the at least one computer. 9. The verification method according to claim 1 wherein the step of verifying authenticity comprises the steps of: a. creating at least one dynamic media using at least one aspect; andb. transmitting the at least one dynamic media to the at least one computer;c. wherein the at least one second secret portion further comprises the at least one aspect. 10. The verification method according to claim 1 wherein the step of verifying authenticity comprises the steps of: a. verifying authenticity of the at least one user using the at least one second identification information, the hardware-identifier, and the cookie stored in the at least one web-browser;b. generating at least one token using the at least one shared cryptographic algorithm for the at least one authenticating entity;c. electronically transmitting the at least one token through the at least one public computer network to the at least one computer; andd. verify authenticity of the at least one user using the at least one token and the at least one shared cryptographic algorithm for the at least one website.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.