JP2004528624A - A device for pre-authenticating a user using a one-time password - Google Patents

Abstract

A computer program product of a client computing system that includes a processor receives a code that directs the processor to request a challenge from an authentication server and a challenge that includes an identification code from the authentication server via a first secure communication channel. A code for receiving user authentication data from a user, a code for determining a secret key and a digital certificate in response to the user authentication data, and a code for forming a digital signature in response to the identification code and the secret key. A code for transmitting a digital signature to an authentication server, a code for transmitting a digital certificate containing an encrypted form of a public key to the authentication server, and network user authentication data and an identification code to the authentication server via the security server. To be transmitted And a de authentication server activates the identification code digital signature is verified, the code resides on a tangible medium.
[Selection diagram] FIG.

Description

【Technical field】
[0001]
(Cross reference of related applications)
This disclosure claims priority to US Provisional Patent Application No. 60/262875, filed January 17, 2001, entitled "Method and Apparatus for Pre-Authentication of Users Using One-Time Passwords." . This application is incorporated herein by reference.
[Background Art]
[0002]
(Background of the Invention)
The present invention relates to secure computer network access. In particular, the invention relates to a method and apparatus for issuing and using a one-time password for a secure computer network.
[0003]
Secure remote access to a computer network requires that end users be authenticated before being allowed access to the network. In current secure remote access systems, end users are authenticated using various methods. In one method, when an end user accesses a remote server, the end user is prompted to combine a username or login name, a password, a personal identification number ("PIN"), and the like. Once the user's login name and PIN have been verified, access to the computer network is granted to the end user.
[0004]
A disadvantage of this scheme is that once the username and password have been breached or stolen, unauthorized access to the computer system can be facilitated. Another disadvantage includes that simple password guessing strategies can be used to guess passwords.
[0005]
Another way to limit a user's access to a computer system is by using electronic "key cards" or "tokens." In such a solution, the user is typically provided with a physical hardware device or software that allows the user to enter data. In response to such user data, these devices then output passwords and the like used for login attempts.
[0006]
A disadvantage of such devices is that such hardware devices are very misplaced or lost. Another disadvantage is that children, pets, etc. can tamp these "toys" and make them toy. Yet another disadvantage is that such a system requires a system administrator to manually pre-register the key card before the key card can operate. Yet another disadvantage is that in the event that a hardware device is stolen, etc., the thief will eventually have the necessary electronic credentials to gain access to the computer network.
[0007]
Another disadvantage is that such systems rely on precise time synchronization between the "key card" or "token" and the server equipment. This is often difficult to implement and maintain. Because the clocks are shifted in the various devices.
[0008]
Accordingly, in light of the above description, what is needed in the industry is an improved method and apparatus for issuing and using one-time passwords in computer networks, while reducing the aforementioned disadvantages. .
DISCLOSURE OF THE INVENTION
[Means for Solving the Problems]
[0009]
(Summary of the Invention)
The present invention relates to a method and apparatus for securely obtaining and using a one-time password. Embodiments of the present invention can be applied to firewalls, VPN gateways, email servers, web servers, database systems, application servers, wireless applications, securely distributed service access, embedded applications, and the like. Embodiments may be advantageously applied to currently employed computer systems, including firewalls, VPN gateways, etc., without modification.
[0010]
Embodiments include a method and apparatus in which a verification server (authentication server) sends a one-time password to a user via an external server as a challenge. Communication between the client system between the verification server, the external server, and the user uses a "strong" form of encryption itself, such as IPSec, SSL, S-HTTP. The verification server then receives the challenge response. In one embodiment, the challenge response includes a digital signature. In one embodiment, the challenge response further includes a digital certificate that includes the public key in an encrypted form. In other embodiments, other forms of encryption other than using a key pair may further be used.
[0011]
Once the verification (authentication) server verifies the user via the digital signature and digital certificate, the verification server pre-authenticates or activates the one-time password. The user can then sign on with password-based security using the user identification and one-time password. Now that the one-time password has been pre-authenticated or activated by the verification server, the password-based security system approves the connection. As described in the attached document, if no login attempt is made within the period after activating the one-time password, the one-time password will be de-authenticated, deleted, deactivated, etc. A time limit may be set in the verification server.
[0012]
According to one aspect of the present invention, a computer program product for a client computing system including a processor is disclosed. The computer program product includes a tangible medium. The tangible medium includes code for instructing the processor to request a challenge from the authentication server, code for instructing the processor to receive the challenge including the identification code from the authentication server via the first secure communication channel, And a code for instructing a processor to determine a secret key and a digital certificate in response to the user authentication data. In addition, the tangible memory includes a code for instructing the processor to form a digital signature in response to the identification code and the secret key, a code for instructing the processor to transmit the digital signature to the authentication server, and a code for instructing the processor. And a code for instructing the processor to transmit network user authentication data and an identification code to the authentication server via the security server. In one embodiment, the authentication server activates the identification code when the digital signature is verified.
[0013]
According to another aspect of the present invention, a client computing system for communicating with a private server is disclosed. The client computer system may include a tangible memory configured to store a key wallet. The key wallet includes a private key associated with the user and a digital certificate associated with the user, wherein the private key and the digital certificate are stored in an encrypted form, and the processor is coupled with the tangible memory. The processor is configured to receive a challenge from an authentication server via a first secure communication channel. This challenge includes an identification code. The processor is configured to receive user authentication data from the user, and is responsive to the authentication data from the user, configured to determine the secret key retrieved from the key wallet and the retrieved digital certificate. The processor is configured to form a digital signature in response to the identification code and the retrieved private key, configured to communicate the digital signature to the authentication server, and to communicate the digital certificate to the authentication server. And configured to communicate the network user authentication data and the identification code to the authentication server via the security server. In one client computing system, the authentication server activates the identification code when the digital signature is verified, and the security server causes the client computing system to communicate with the private server when the identification code is activated. enable.
[0014]
According to yet another aspect of the present invention, a client system for communicating with a remote server is disclosed. The client system includes a tangible memory configured to store a key wallet program configured to store a private key associated with the user and a digital certificate associated with the user in an encrypted form; Receiving from the verification server a challenge including at least one network password that is inactive via the secure communication channel, and means for receiving at least one PIN from the user. A further client system is responsive to the network password and the secret key, at least in response to the PIN from the user, means responsive to the tangible memory for determining the private key returned from the key wallet and the returned digital certificate. Means for forming a digital signature, means for transmitting the digital certificate and the digital signature to the authentication server, and means for transmitting at least the network password to the security server. In one client system, the network password is activated when the digital signature and digital certificate authenticate the user, and when the network password is activated, the security server allows the client system to communicate with the remote server. I do.
[0015]
A more complete understanding of the present invention and of many of the advantages associated with the invention will be readily obtained as it is better understood by reference to the following detailed description when considered in conjunction with the accompanying drawings. obtain.
[0016]
(Description of a specific embodiment)
The accompanying documents describe embodiments of the invention. More specifically, this document describes an embodiment in which a "strong" form of encryption, such as public key cryptography, is used to obtain a one-time password. Such passwords can be advantageously used by conventional password-based security systems and the like.
[0017]
FIG. 1 shows a block diagram according to an embodiment of the present invention. FIG. 1 shows an external server 100, a private computer network 110, a private server 120, and a plurality of client systems 130-150. As shown, such systems may be coupled to one another via a computer network 160.
[0018]
In the present embodiment, the computer network 160 is the Internet. In alternative embodiments of the invention, computer network 160 may be any computer network, such as an intranet, a wireless network, a local area network, the Internet, and so on. Computer network 160 provides data communication between client systems 130-150, external server 100 and private company network 110. Data communications can include the transfer of HTML-based data, text data, binary data, form submission, plug-in programs or viewers, applets, audio data, video data, encrypted data, and the like. Although computer network 160 is shown as a single entity, it should be understood that, as in the case of the Internet, computer network 160 may actually be a network of individual routers and computer servers.
[0019]
In this embodiment, the external server 100, the private computer network 110, and the client systems 130-150 are network connections that may have various bandwidth characteristics, such as T1 connection, 384 kilobits per second (kbps), 56 kbps connection, 14.4 kbps. May be included.
[0020]
In this embodiment, client systems 130, 140 and 150 may be embodied as ordinary desktop personal computers, such as those sold by companies such as HP, Compaq, and IBM. In alternative embodiments, other personal computers, such as those sold by Apple or Dell, may also be used. Alternatively, the client systems 130-150 may be a notebook computer, a television set-top box (eg, WebTV®), a game console (eg, PlayStation2®), a network computer, or a processor, microcontroller, ASIC, etc. May be embodied as other types of units that incorporate In another embodiment, the client systems 130-150 may be embodied as a PDA or other mobile computing platform running on PalmOS, Windows CE, etc., or may use cellular technology, CDMA, TDMA , And other technologies and as a wireless device using a wireless application protocol such as WAP. In yet another embodiment, the client systems 130-150 are embodied within a kiosk, a watch, a pocket-sized or portable display, a pocket-sized or portable terminal, a wearable computer, a retinal implant, a monitoring device, a kitchen appliance, etc. Can be done.
[0021]
In the present embodiment, communication between the external server 100, the private computer network 110, the private server 120, and the client systems 130 to 150 is performed using secure IPSec, HTTP (S-HTTP), TCP / IP, and Secure Socket Layer (SSL). It is implemented using application software that supports other protocols, such as a protocol, RTP / RTSP protocol, or UDP. These communication protocols are well known and therefore will not be described herein. Further, client systems 130-150 store and use an encrypted public / private key pair associated with the authenticated user, as described below.
[0022]
The diagram in FIG. 1 is merely exemplary and does not limit the scope of the claims herein. One skilled in the art will recognize that there are a number of other variations, modifications, and alternatives.
[0023]
FIG. 2 is a block diagram of an exemplary external server 200, according to an embodiment of the present invention. The external server 200 generally includes a monitor 210, a computer 220, a keyboard 230, a graphical input device 240, a network interface 250, and the like.
[0024]
In this embodiment, the graphical input device 240 is typically embodied as a computer mouse, trackball, trackpad, wireless remote, and the like. A graphical input device allows a user to graphically select objects, icons, text, etc., typically output on monitor 210, in combination with a cursor.
[0025]
Embodiments of the network interface 250 include Ethernet cards, modems (telephone, satellite, cable, ISDN), (asynchronous) digital subscriber line (DSL) units, and the like. Network interface 250 is coupled to a regular network as shown.
[0026]
Computer 220 includes common computer components such as processor 260, memory storage devices such as random access memory (RAM) 270, disk drives 280, and a system bus 290 that interconnects the components described above.
[0027]
In one embodiment, the computer 220 comprises an Advanced Micro Devices, Inc. running Windows NT® operating system from Microsoft Corporation. It is a PC compatible computer with an x86-based microprocessor, such as the Athlon® microprocessor manufactured by Philips.
[0028]
RAM 270 and disk drive 280 are examples of tangible media for storing data, voice message files, and computer programs, and embodiments herein describe binary files, encrypted data, applet interpreters, or the like. Compiler, virtual machine, etc. Other types of tangible media include floppy disks, removable hard disks, optical storage media such as CD-ROMs and barcodes, semiconductors such as flash memory, read only memory (ROMS) and non-volatile memory with battery backup. Including memory. In embodiments of the present invention, mass storage such as a disk drive 280, such as a set-top box, may be omitted.
[0029]
In the present embodiment, the external server 200 transmits data to the client systems 130 to 140 and the private computer by using a communication protocol including HTTP, S-HTTP, TCP / IP, IPSec, SSL, RTP / RTSP, and the like. It further includes software that allows it to transmit to and receive from the network 110. In alternative embodiments of the present invention, other software such as, for example, IPX, UDP, and transfer and communication protocols may also be used.
[0030]
FIG. 2 is a representative but one type of system embodying the present invention. It will be readily apparent to one skilled in the art that a number of other hardware and software configurations are suitable for use with the present invention. For example, the Pentium® class or Celeron® class, available from Intel Corporation, Motorola, Inc. PowerPC® G3 or G4 microprocessor from Transmeta, Inc. Other types of processors are conceivable, such as Crusoe (R) manufactured by Philips. Further, in alternative embodiments, other types of operating systems are contemplated, including Solaris, LINUX, UNIX, MAC OS X, BeOS, and the like from Apple Computer Corporation. Embodiments of the private server 120 and the client systems 130-150 may be configured similarly to that shown in FIG.
[0031]
FIG. 3 shows a more detailed embodiment of the present invention. In particular, FIG. 3 includes a client system 300, an external server 310, and a private network 320. Private network 320 includes a private server 360 coupled via a firewall (or VPN) server 340, an authentication server 350 and a router 330.
[0032]
In this embodiment, as will be described in greater detail below, the client system 300 is coupled to both the external server 310 and the private network 320, often at different times. As shown, firewall server 340 in private network 320 provides an interface with client system 300. In this embodiment, the firewall server 340 combined with the authentication server 350 is used to authenticate the user of the client system 300. Further, this combination is typically used to prevent unauthorized access to private server 360.
[0033]
4A-4D show block diagrams of flowcharts according to embodiments of the present invention, which reference the elements shown in FIG.
[0034]
Initially, the user receives or sets an asymmetric encryption key pair (step 400). For example, a user may be assigned or obtain a private key and a public key. The concept of a key pair is well known in the art. Next, the user obtains a digital certificate from a certificate authority (CA) or the like (step 410). In one embodiment, the digital certificate includes the user's public key, which is encrypted using the CA's "domain key" (typically, a symmetric key). The user's private key and digital certificate are then typically stored in a "key wallet" on the user's computer (step 420).
[0035]
In one embodiment of the present invention, a key wallet is a software application that securely stores private keys and digital certificates. In one embodiment, to retrieve the private key and digital certificate from the key wallet, the user must first enter one or more usernames, personal identification numbers (PINs), and the like. In some cases, if the username / PIN combination is correct, the key and digital certificate associated with the user are returned.
[0036]
In other embodiments, the key wallet may return keys and certificates that are not associated with the user. In such an example, the keys and digital certificates seem to be verified, but they have no function to authenticate the user. Such an embodiment is referred to as "Method and Apparatus for Cryptographically Camouflaged Cryptographic Key Storage, Certification and Use," commonly assigned U.S. patent application Ser. Includes the "Cryptographic Camouflage" key protection system of the Arcot Systems brand, described in US Pat. This application is incorporated herein by reference.
[0037]
In other embodiments, a key wallet may require a type of data other than a username / password, such as, for example, biometric data. Examples of biometric data include fingerprints, retinal scans, spoken texts, performing physical tasks, and the like.
[0038]
In this embodiment, the user's computer may include additional software that may provide for automatic use of private keys and digital certificates. One such embodiment of additional software is Arcot Systems, Inc. Called Arcot for Virtual Private Networks, currently sold by the Company. In an embodiment of the present invention, additional software is downloaded from a computer network or installed, such as via a physical medium (CD-ROM) (step 430).
[0039]
Referring to FIG. 3, the user using client system 300 next desires to access private server 360 (step 440). The user inputs his / her user name, PIN, biometric data and the like, and confirms them himself (step 450). Once such data is verified, ie, the user is authenticated (step 460), the key wallet decrypts the data and retrieves the private key and digital certificate associated with the user (step 470). If the data is invalid, a non-functioning key and certificate may be generated as described in the aforementioned US patent application (step 480).
[0040]
In this embodiment, the application software on the client system 300 contacts the external server 310 and requests a one-time password (or any other identification code) (step 490). The connection between client system 300 and external server 310 may be via the Internet, a direct dial-up connection, or any other means including wireless. This connection is typically a secure connection, such as IPSec, S-HTTP, SSL, that includes the encryption of data between the client system 300 and the external server 310.
[0041]
In response to the request, external server 310 contacts authentication server 350 and requests a one-time password (step 500). The connection between the external server 310 and the authentication server 350 may be via the Internet, a direct dial-up connection, or any other means including wireless. The connection is also a secure connection that typically includes a strong form of data encryption between the client system 300 and the external server 310, such as IPSec, S-HTTP, or SSL. In one embodiment, the communication between the external server 310 and the authentication server 350 may be direct or indirect, for example, via a firewall server 340.
[0042]
Authentication server 350 then generates a one-time password (also known as a pre-authenticated password) in response to the request (step 510). In this embodiment, the one-time password is not activated, ie, the authentication server 350 does not allow access to the private server 360 based on the one-time password.
[0043]
Thereafter, the one-time password is transmitted to the external server 310 (Step 520), and then the external server 310 transmits the one-time password to the client system 300 (Step 530). This one-time password can be considered a “challenge” from the authentication server 350 to the client server 300.
[0044]
In this embodiment, further software at client system 300 receives the one-time password and creates a digital signature (step 540). In one embodiment, a digital signature is a variant of a one-time password with a private key that is hardly forged. In another embodiment, other conventional methods of forming a digital signature may use hashing or the like.
[0045]
Next, the client system 300 sends the digital signature and the digital certificate to the external server 310 (Step 550). As mentioned above, the transfer of data is typically over a secure communication channel. The digital signature and digital certificate are then communicated to authentication server 350 (step 560). Again, a strong form of encryption can be used to secure the communication. This response from client system 300 may be considered a “challenge response” to authentication server 350.
[0046]
In this embodiment, the authentication server 350 receives the digital certificate and decrypts it using the certificate authority (CA) domain key (step 570). In one embodiment, the authentication server securely stores the domain key on the authentication server device. The domain key may be stored on the authentication server in the form of a password protected file, a hardware token, or the like. In an alternative embodiment, the authentication server 350 accesses the appropriate CA that issued the digital certificate of the domain key. In either embodiment, the authentication server 350 then uses the CA's domain key and uses the domain key to decrypt the digital certificate. In response to the decryption, the user's public key is restored.
[0047]
The public key verifies the digital signature to ensure that only users with the corresponding private key can generate the digital signature (step 580). This step is a standard operation supported by an algorithm such as RSA.
[0048]
In the present embodiment, the verification identifies the user that generated the signature (step 590). If the digital signature is verified, a challenge is activated for the particular user, which becomes a one-time password in the authentication server 350 (step 600). If they do not match, the one-time password remains inactive (step 610).
[0049]
Therefore, the method does not require the authentication server 350 or the external server 310 to pre-register the hardware “key” or “token” as described in the background of the invention. Furthermore, as also mentioned in the background of the invention, the method does not require exact synchronization between the devices.
[0050]
In one embodiment, a notification of a successful or failed match of the digital signature, such as an error message, is returned to the client system 300. Further, if the digital signature is not verified, the process may alternatively return to step 450.
[0051]
In one embodiment, the challenge provided by the authentication server 350 is not a one-time password; instead, the challenge may be any random or pseudo-random message, character, etc. The challenge is digitally signed and returned to the authentication server 350 as described above. If the user is authenticated, the authentication server 350 may then send the activated one-time password to the client system 300 via the external server 310 using the same secure communication channel.
[0052]
In either embodiment, after successful authentication, at this stage, the client system 300 has an activated one-time password in either embodiment. Next, client system 300 is coupled to network 320 (step 620). The communication channel is usually encrypted using IPSec, S-HTTP, SSL, or the like. As shown, private network 320 typically includes a firewall to prevent unauthorized access to private server 360.
[0053]
In the present embodiment, the client system 300 transfers the authentication data to the firewall server 340 (Step 630). In this embodiment, the authentication data may include another combination of a user name and a password, and a one-time password received from the authentication server 350.
[0054]
In response, firewall server 340 contacts authentication server 350 (step 640). In the present embodiment, communication between the firewall server 340 and the authentication server 350 may use a security technology such as Remote Authentication Dial In User Service (RADIUS), TACACS +, or the like. Firewall server 340 then communicates the authentication data and the one-time password to authentication server 350 (step 650). In the present embodiment, the authentication server 350 determines whether the one-time password is active and whether the authentication data is correct (step 660). If a match is found, the authentication server 350 notifies the firewall server that access has been approved (step 670). Otherwise, access is denied (step 680).
[0055]
If the access is approved, the client system 300 is provided with access to the private server 360 or the like (step 690). In one embodiment, after the one-time password is successfully used, the one-time password is deactivated. In other embodiments, the password remains activated even after it has been used by the authentication server 350. Such an embodiment is a method of providing and assigning a password to a "new" user, or giving the user a password at the "first" visit.
[0056]
In one embodiment of the invention, multiple steps may be hidden from the user and automatic. In one embodiment, the user performs step 450 and then simply waits until step 680 or 690 is performed. In this embodiment, steps 620 and 630 are performed automatically for the user. In another embodiment, after step 600, the secure communication between client system 300 and authentication server 350 is terminated. Thereafter, the user manually performs steps 620 and 630.
[0057]
5A and 5B show another embodiment of the present invention. In particular, FIGS. 5A and 5B illustrate another scheme for communication between a client system, an external server, and an authentication server.
[0058]
In one embodiment, as shown in FIG. 5A, client system 400 does not contact external server 310 directly. Instead, a filtering module 470 is installed on the firewall server 440, as shown. When filtering module 470 detects a request for a one-time password from client system 400, filtering module 470 forwards the request to external server 410.
[0059]
In the embodiment shown in FIG. 5B, the external server 310 does not contact the authentication server 350 directly. Instead, as shown, communication is carried through firewall server 440.
[0060]
Further embodiments can be envisioned by those skilled in the art. For example, in one embodiment, the password security system may be integrated with a firewall, VPN, etc. In another embodiment, the external server communicates with the verification server without passing through a firewall or the like. In another case, the external server and the validation server are both behind a firewall, VPN, etc. In yet another embodiment, the validation server and the firewall may be integrated into one server.
[0061]
In one embodiment of the invention, authentication server 350 may send a one-time password and a challenge. In such an embodiment, the challenge may be digitally signed and returned to the authentication server 350 with a digital certificate for verification purposes. If the user is verified, authentication server 350 activates the one-time password. Thus, in this embodiment, the one-time password does not need to be digitally signed as described in the above disclosure.
[0062]
In one embodiment of the present invention, activation of a one-time password may be timed. Thus, although the one-time password and authentication data may be accurate, authentication server 350 still denies access to the network. As an example, if the authentication server issues a one-time password, the server sets the maximum period during which the one-time password is active, for example, to 5 minutes. Thus, if a user using the client system 300 attempts to gain access to the private network 320 again the next day, the access will be denied.
[0063]
In yet another embodiment, a one-time password may be active only for a limited number of login attempts. Thus, the one-time password and authentication data may be accurate, but the authentication server 350 may still deny access to the network. As an example, if the authentication server issues a one-time password, the server sets the maximum number of attempts to, for example, three. Thus, if a user using client system 300 attempts to gain access to private network 320 using an incorrect username and password, but an accurate one-time password, after three attempts, the one-time password will be incorrect. Be activated. Providing such a one-time password with restricted use would reduce the risk of network access being breached.
[0064]
In view of the disclosure of this patent application, embodiments of the present invention may be applied to financial transactions, such as credit card transaction systems. For example, one-time credit card numbers, one-time debit card numbers, etc. may be enabled in much the same manner as described above for one-time passwords. Thus, the client may first make a request for a one-time credit card number. In response, the credit card authentication server may send the challenge via the external server in the form of a one-time credit card number. The client signs the one-time credit card number with the user's private key and sends the signed card number along with the user's digital certificate. If the authentication server verifies the signature and certificate, the one-time credit card number is activated. Thereafter, when the user decides to pay for a product, service, etc., the user sends out a one-time credit card number. If verified as described above, the financial transaction is completed using a one-time credit card number. In other embodiments, other financial transaction data may be provided by the authentication server, for example, a one-time bank account number, a broker account number, a telephone access card, and the like.
[0065]
In one embodiment of the present invention, the client system may include a level to check the key wallet password. In the above embodiment, if the user enters an incorrect key wallet password, the non-functional private key and digital certificate are retrieved from the key wallet in step 480. In this embodiment, for an incorrect key wallet password, the key wallet application may report that the password is incorrect, and the method returns to step 450. Such a comparison may be accomplished by using a hash or partial hash, such as the user's key wallet password. In different embodiments, the key wallet application may report incorrect passwords in half an hour, a quarter of an hour, or any other desired frequency. In addition, the key wallet application may report incorrect passwords or the like that contain only a derivative of a typographic error.
[0066]
In other embodiments of the invention, combinations or sub-combinations of the above disclosed inventions may be advantageously made. The block diagrams of the architecture and flowcharts are grouped together for easy understanding. However, it should be understood that combinations of blocks, addition of new blocks, reconstruction of blocks, etc., are considered in alternative embodiments of the invention.
[0067]
Accordingly, the specification and drawings are to be regarded in an illustrative, rather than a restrictive, sense. It is apparent, however, that various modifications and changes may be made without departing from the broader scope and scope of the invention, as set forth in the following claims.
[Brief description of the drawings]
[0068]
FIG. 1 shows a block diagram according to an embodiment of the present invention.
FIG. 2 is a block diagram of an exemplary external server, according to an embodiment of the present invention.
FIG. 3 shows a more detailed embodiment of the present invention.
FIG. 4A shows a block diagram of a flowchart, according to an embodiment of the present invention.
FIG. 4B shows a block diagram of a flowchart, according to an embodiment of the present invention.
FIG. 4C shows a block diagram of a flowchart, according to an embodiment of the present invention.
FIG. 4D shows a block diagram of a flowchart, according to an embodiment of the present invention.
FIG. 5A shows another embodiment of the present invention.
FIG. 5B shows another embodiment of the present invention.

Claims (39)

A computer program product for a client computing system including a processor, comprising:
A code for instructing the processor to request a challenge from the authentication server;
Code for instructing the processor to receive the challenge from the authentication server via a first secure communication channel, wherein the challenge includes an identification code;
A code for instructing the processor to receive user authentication data from a user;
Code for instructing the processor to determine a secret key and a digital certificate in response to the user authentication data;
Code instructing the processor to form a digital signature in response to the identification code and the secret key;
Code for instructing the processor to transmit the digital signature to the authentication server;
Code for instructing the processor to transmit the digital signature to the authentication server, wherein the digital certificate includes a public key in an encrypted form;
A code for instructing the processor to transmit network user authentication data and the identification code to the authentication server via a security server,
The authentication server activates the identification code when the digital signature is verified,
The code is resident on a tangible medium, a computer program product. The computer program product of claim 1, wherein the identification code remains inactive if the authentication server does not verify the digital signature. The computer program product of claim 1, wherein the security server comprises a server selected from a class of a firewall server and a VPN gateway server. Code directing the processor to determine the secret key and the digital certificate in response to the user authentication data includes a secret associated with the user if the user authentication data is accurate. The computer program product of claim 1, comprising code for determining a key. The code that instructs the processor to determine the secret key and the digital certificate in response to the user authentication data is not associated with the user if the user authentication data is incorrect. 5. The computer program product of claim 4, further comprising a code for determining a secret key. The computer program product of claim 1, further comprising code for instructing the processor to receive network user authentication data from the user. The computer program according to claim 1, wherein the code instructing the processor to receive the user authentication data from the user includes a code instructing the processor to receive the user authentication data and the network authentication data from the user. Product. A client computing system that communicates with a private server,
A tangible memory configured to store a key wallet, the key wallet including a private key associated with the user and a digital certificate associated with the user, wherein the private key and the digital certificate are encrypted. Tangible memory stored in the form
A processor coupled to the tangible memory and configured to receive a challenge from an authentication server via a first secure communication channel, wherein the challenge includes an identification code, the processor comprising: And configured to determine a secret key and a retrieved digital certificate from the key purse in response to the user authentication data from the user; Responsive to the code and the retrieved private key to form a digital signature, configured to communicate the digital signature to the authentication server, and configured to communicate the digital certificate to the authentication server. Configured to communicate network user authentication data and said identification code to said authentication server via a security server. The constituted, and a processor,
The authentication server activates the identification code when the digital signature is verified,
The security server enables the client computing system to communicate with the private server when the identification code is activated;
Client computing system. The client computing system of claim 8, wherein the retrieved secret key and the secret key associated with the user are the same. Wherein the retrieved secret key and the secret key associated with the user are different, and if the retrieved secret key and the secret key associated with the user are different, the identification code remains inactive. Item 10. A client computing system according to item 8. 9. The client computing system of claim 8, wherein the security server includes a server selected from a class of a firewall server, a VPN gateway server, an email server, a web server, a database server, a database system, and an application server. The client computing system of claim 8, wherein the tangible memory can be removed from the client computer. The client computing system of claim 8, wherein the processor is further configured to receive the network user authentication data from the user. A client system for communicating with a remote server,
A tangible memory configured to store a key wallet program, the key wallet program configured to store a private key associated with a user and a digital certificate associated with the user in a protected form. , Tangible memory,
Means for receiving a challenge from a verification server via a first secure communication channel, the challenge including at least one network password that is inactive;
Means for receiving at least one PIN from the user;
Means coupled to a tangible memory for determining a returned private key and a returned digital certificate from the key wallet at least in response to a PIN from the user;
Means for forming a digital signature in response to the network password and the secret key;
Means for transmitting the digital certificate and the digital signature to the authentication server;
Means for transmitting at least the network password to a security server,
The network password is activated when the digital signature and the digital certificate authenticate the user;
The security server allows the client system to communicate with the remote server when the network password is activated, the client system. 15. The client system of claim 14, wherein the returned secret key and the secret key associated with the user are the same. If the returned private key and the private key associated with the user are different, and if the returned private key and the private key associated with the user are different, then the digital signature and the digital certificate The client system according to claim 15, wherein the client system does not authenticate the client. Further comprising means for receiving from the user at least one network password associated with the user,
15. The client system of claim 14, wherein the means for communicating the digital certificate and the digital signature to the authentication server also includes means for communicating the network password associated with the user to the authentication server. The means for communicating the digital certificate and the digital signature to the authentication server further comprises means for communicating a network password associated with the user to the authentication server;
15. The client system of claim 14, wherein the client system further comprises means for determining the network password associated with the user at least in response to the PIN from the user. 15. The client computing system of claim 14, wherein the client computing system is selected from a class of a desktop computer, a portable computer, a PDA, and a wireless device. A method of transmitting a password,
Receiving at the server a challenge from an authentication server via a first secure communication channel, the challenge including at least one random password that is inactive;
Communicating the challenge from the server to a client computer via a second secure communication channel;
Receiving at the server a challenge response from the client computer over the first secure channel, the challenge response including a digital certificate and a digital signature, wherein the digital certificate comprises: Including a public key in encrypted form, wherein the digital signature is determined in response to the challenge response and at least a portion of the private key;
Communicating said challenge from said server to said authentication server via said second secure communication channel;
The method, wherein the random password is activated when the authentication server verifies the challenge response. 21. The method of claim 20, wherein the client computer communicates the random password to a password-based security system, wherein the password-based security system is coupled with the authentication server. 22. The method of claim 21, wherein the password-based security system includes a firewall. 21. The method of claim 20, wherein the public key and the private key are associated with an authenticated user. 21. The method of claim 20, wherein the secret key is not associated with an authenticated user and the authentication server does not authenticate the challenge response. 21. The method of claim 20, wherein the first secure communication channel is selected from a group of a secure socket layer and a secure HTTP. The method of a client computer,
Receiving challenge data from an authentication server via a first secure communication channel, the challenge data including a challenge and a password that is inactive;
Receiving a user PIN;
Restoring the private key and the digital certificate in response to the user PIN;
Transmitting the digital certificate to the authentication server via an external server, the digital certificate including a public key in an encrypted form;
Sending a digital signature to the authentication server via the external server, wherein the digital signature is determined in response to the challenge and the secret key; and
Sending the user login and the password to a password-based security system coupled to the authentication server;
The method wherein the password is activated if the authentication server verifies the digital signature. 27. The method of claim 26, wherein the password remains inactive if the authentication server does not verify the digital signature. The method of claim 26, wherein the password-based security system includes a server selected from a group of a firewall and a VPN gateway. Restoring the private key and the digital certificate in response to the user PIN,
If the user PIN is correct, reverting the private key associated with the user;
Generating a secret key not associated with the user if the user PIN is incorrect. 30. The method of claim 29, further comprising manually entering the user login and the password into the client computer. The method of claim 26, wherein the password is activated for a predetermined period. 32. The method of claim 31, wherein after the predetermined period, the password is deactivated. A verification server method,
Receiving a request for a one-time password from a client computer;
Determining a one-time password, wherein the one-time password is inactive;
Communicating data including the one-time password to the client computer;
Receiving at the client computer user identification data from a user;
Verifying the user in response to the user identification data;
Activating the one-time password if the user is authenticated. 35. The method of claim 33, wherein communicating the data including the one-time password to the client computer comprises communicating via an external server via a secure communication channel. The method of claim 33, wherein the one-time password is selected from a group of random, predetermined, and pseudo-random. The method of claim 33, wherein the user identification data comprises a digital signature. 37. The method of claim 36, wherein the digital signature includes a secret key associated with the user and selected from a group not associated with the user. 38. The method of claim 37, wherein verifying the user comprises verifying the user if the private key is associated with the user. Receiving a verification request from a password-based security system, the verification request including a user login and the one-time password;
Determining whether the one-time password is activated;
Approving the verification request if the one-time password is determined to be active.

Images