Processing

Please wait...

Settings

Settings

Goto Application

1. EP3586258 - SEGMENTED KEY AUTHENTICATION SYSTEM

Office
European Patent Office
Application Number 18709706
Application Date 26.02.2018
Publication Number 3586258
Publication Date 01.01.2020
Publication Kind A1
IPC
G06F 21/35
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
34involving the use of external additional devices, e.g. dongles or smart cards
35communicating wirelessly
H04L 9/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
08Key distribution
H04W 12/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
06Authentication
CPC
G06F 21/35
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
34involving the use of external additional devices, e.g. dongles or smart cards
35communicating wirelessly
H04L 9/085
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
085Secret sharing or secret splitting, e.g. threshold schemes
H04W 12/068
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements; Authentication; Protecting privacy or anonymity
06Authentication
068using credential vaults, e.g. password manager applications or one time password [OTP] applications
G06F 21/335
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
33using certificates
335for accessing specific resources, e.g. using Kerberos tickets
G06F 21/46
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
45Structures or tools for the administration of authentication
46by designing passwords or checking the strength of passwords
H04W 12/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements; Authentication; Protecting privacy or anonymity
06Authentication
Applicants GASCUEL JACQUES
Inventors GASCUEL JACQUES
Designated States
Priority Data 1751535 27.02.2017 FR
Title
(DE) SEGMENTIERTES SCHLÜSSELAUTHENTIFIKATIONSSYSTEM
(EN) SEGMENTED KEY AUTHENTICATION SYSTEM
(FR) SYSTÈME D'AUTHENTIFICATION À CLÉ SEGMENTÉE
Abstract
(EN) The invention concerns an authentication system with at least one application accessible by a user via a computer and for which the access is controlled by an authentication datum, comprising a main mobile device and a main token in which at least one authentication datum is recorded, the main mobile device being configured to recover the authentication datum of the main token using a pairing key, characterised in that the pairing key is segmented into a plurality of segments, a first segment being recorded on the main mobile device and at least one other additional segment being recorded on a secondary mobile device and/or a secondary token, the main mobile device being configured to recover the additional segment or segments in order to reconstitute the pairing key and to present the reconstituted pairing key to the main token.
(FR) L'invention concerne un système d'authentification à au moins un applicatif accessible par un utilisateur via un ordinateur et dont l'accès est contrôlé par une donnée d'authentification, comprenant un dispositif mobile principal et un jeton principal, dans laquelle est enregistrée au moins une donnée d'authentification, le dispositif mobile principal étant configuré pour récupérer la donnée d'authentification du jeton principal grâce à une clé d'appairage, caractérisé en ce que la clé d'appairage est segmentée en plusieurs segments, un premier segment étant enregistré sur le dispositif mobile principal et au moins un autre segment supplémentaire étant enregistré sur un dispositif mobile secondaire et/ou un jeton secondaire, le dispositif mobile principale étant configuré pour récupérer le ou les segments supplémentaires pour reconstituer la clé d'appairage et pour présenter la clé d'appairage reconstituée au jeton principal.