Processing

Please wait...

Settings

Settings

Goto Application

1. EP3937036 - METHOD, USER DEVICE, VERIFIER DEVICE, SERVER AND SYSTEM FOR AUTHENTICATING USER DATA WHILE PRESERVING USER PRIVACY

Office
European Patent Office
Application Number 20315347
Application Date 09.07.2020
Publication Number 3937036
Publication Date 12.01.2022
Publication Kind A1
IPC
G06F 21/31
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
H04L 9/32
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
H04W 12/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
06Authentication
CPC
H04L 63/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
H04W 12/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements; Authentication; Protecting privacy or anonymity
06Authentication
G06F 21/31
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
H04L 9/3231
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3226using a predetermined code, e.g. password, passphrase or PIN
3231Biological data, e.g. fingerprint, voice or retina
H04L 2209/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
2209Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
08Randomization, e.g. dummy operations or using noise
H04L 9/3247
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3247involving digital signatures
Applicants THALES DIS FRANCE SA
Inventors FAHER MOURAD
WEBSTER MICHAEL
MAUNIER GÉRALD
PARIZEK KAMIL
Designated States
Priority Data 20315347 09.07.2020 EP
Title
(DE) VERFAHREN, BENUTZERGERÄT, VERIFIKATIONSVORRICHTUNG, SERVER UND SYSTEM ZUR AUTHENTIFIZIERUNG VON BENUTZERDATEN UNTER WAHRUNG DER PRIVATSPHÄRE DES BENUTZERS
(EN) METHOD, USER DEVICE, VERIFIER DEVICE, SERVER AND SYSTEM FOR AUTHENTICATING USER DATA WHILE PRESERVING USER PRIVACY
(FR) PROCÉDÉ, DISPOSITIF UTILISATEUR, DISPOSITIF DE VÉRIFICATION, SERVEUR ET SYSTÈME POUR AUTHENTIFIER DES DONNÉES D'UTILISATEUR TOUT EN PRÉSERVANT LA CONFIDENTIALITÉ DE L'UTILISATEUR
Abstract
(EN) A method comprises:- receiving 22, by a user device 14, from a verifier device 12, a request for user data;- retrieving 24 a first cryptogram and a decryption key;- sending 26 and 28, to a server 110, the first cryptogram;-retrieving 210 a random and a second cryptogram generated using reference user authentication data concatenated with the random;- sending 212, to the verifier device, the second cryptogram and the random;- storing 214 the reference random;- sending 216, to the user device, the second cryptogram;- decrypting 218 the second cryptogram using the decryption key;- extracting 220 the reference user authentication data and the random;- providing 224, the user device, with user authentication data;- verifying 226 that it matches the reference user authentication data;- providing 228, the verifier device, with the random;- verifying 230 that it matches the reference random; and- authenticating 234 the user data.
Related patent documents