专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08689306B2 Method for the unique authentication of a user by service providers 有权
标题翻译：服务提供商对用户进行唯一身份验证的方法
公开(公告)号：US08689306B2
公开(公告)日：2014-04-01
申请号：US12528470
申请日：2008-02-25
申请人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
发明人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
IPC分类号： H04L29/06
CPC分类号： H04L63/0421 , H04L9/3013 , H04L9/3257 , H04L63/0815 , H04L63/0823 , H04L63/126 , H04L2209/04
摘要： A method for unique authentication of a user including federating an identity of said user for said service provider and an identity of the user for an identity provider, the federating including the steps of generating a user alias for that service provider and sending said identity provider a masked alias deduced from said alias, the identity provider associating said masked alias for that service provider with the identity of the user for the identity provider and sending the user elements for calculation by the user of a signature of a message containing the non-masked alias calculating said signature and sending the service provider said message with said signature, and the service provider verifying said signature, authenticating the user, and associating said alias with the user's identity.
摘要翻译：一种用于用户的唯一认证的方法，包括联合用于所述服务提供商的所述用户的身份以及用于身份提供者的身份的身份，所述联合包括以下步骤：为所述服务提供商生成用户别名并发送所述身份提供者所述身份提供者将所述服务提供商的所述被屏蔽的别名与身份提供者的用户的身份相关联，并且发送用户元素以由用户计算包含非掩蔽别名的消息的签名计算所述签名并且发送具有所述签名的服务提供商所述消息，以及验证所述签名的服务提供者，认证用户，以及将所述别名与用户身份相关联。

2. 发明授权

US08650403B2 Crytographic method for anonymous authentication and separate identification of a user 有权
标题翻译：用于匿名认证和用户单独识别的沉默方法
公开(公告)号：US08650403B2
公开(公告)日：2014-02-11
申请号：US13375736
申请日：2010-06-11
申请人： Sébastien Canard , Amandine Jambert , Eric Malville
发明人： Sébastien Canard , Amandine Jambert , Eric Malville
IPC分类号： H04L9/32
CPC分类号： H04L9/3247 , H04L2209/42 , H04L2209/56
摘要： The invention relates to cryptographic method for the anonymous authentication and the identification of a user entity (Ui) respectively by a checking entity (D) and an identifying entity (O). According to this method, the checking entity (D) receives (130) from the user entity (U1) at least one first signature (σ) and a first message (m), and checks (140) the first signature (σ) using the first message (m) in order to authenticate the user (U), and the identifying entity (O) receives (150) from the checking entity (D) a second signature (σ′) connected to the first signature (σ) and identifies (160) the user using the second signature and a secret key particular thereto. The invention also relates to a cryptographic system for implementing said method.
摘要翻译：本发明涉及用于匿名认证的密码方法和分别由检查实体（D）和识别实体（O）识别用户实体（Ui）的密码方法。根据该方法，检查实体（D）从用户实体（U1）接收（130）至少一个第一签名（sigma）和第一消息（m），并使用以下方式检查（140）第一签名（sigma）所述第一消息（m）用于认证所述用户（U），并且所述识别实体（O）从所述检查实体（D）接收（150）连接到所述第一签名（sigma）的第二签名（sigma）使用第二签名识别（160）用户，以及特定于其的秘密密钥。本发明还涉及一种用于实现所述方法的密码系统。

3. 发明授权

US07793102B2 Method for authentication between a portable telecommunication object and a public access terminal 失效
标题翻译：便携式电信对象与公共接入终端之间的认证方法
公开(公告)号：US07793102B2
公开(公告)日：2010-09-07
申请号：US10480148
申请日：2002-06-03
申请人： Eric Malville , Didier Guerin , Yves Thorigne
发明人： Eric Malville , Didier Guerin , Yves Thorigne
IPC分类号： H04L29/06
CPC分类号： H04L63/0428 , H04L63/0861 , H04L63/0869 , H04L63/166 , H04M3/382 , H04M2203/609 , H04M2207/18 , H04W12/04 , H04W12/06
摘要： A method of mutually authenticating, firstly, a portable object (10) assigned a unique identifier (MSISDN) and including first wireless communications means and, secondly, a public access terminal (20) including second wireless communications means and telecommunications means for communicating via a telecommunications network (1). The portable object (10) is assigned a wireless communication key (Kme). An authentication server (30) is installed on the network (1) and adapted to determine the key Kme from the identifier (MSISDN). The identifier (MSISDN) of the portable object (10) is sent to the terminal (20) and then from the terminal (20) to the authentication server (30). The authentication server (30) determines the key Kme and allocates the wireless communication key Kme to a calculation unit (30). The calculation unit (30) calculates a session key (Ksession) from the key Kme of the portable object (10) and allocates the key Ksession to the public access terminal (20). The terminal (20) sends the portable object (10) a first message signed using the key Ksession, the portable object (10) acquires the key Ksession from the first message and the key Kme, and authenticates the terminal (20) by verifying the signature of the first signed message. The portable object (10) sends the terminal (20) a second message signed with the key Ksession, and the terminal (20) authenticates the portable object (10) by verifying the signature of the second signed message.
摘要翻译：一种相互认证的方法，首先是分配唯一标识符（MSISDN）并包括第一无线通信装置的便携式对象（10），其次包括第二无线通信装置和电信装置的公共接入终端（20），用于经由电信网（1）。便携式对象（10）被分配无线通信密钥（Kme）。认证服务器（30）安装在网络（1）上并且适于从标识符（MSISDN）确定密钥Kme。便携式对象（10）的标识符（MSISDN）被发送到终端（20），然后从终端（20）发送到认证服务器（30）。认证服务器（30）确定密钥Kme并将无线通信密钥Kme分配给计算单元（30）。计算单元（30）从便携式对象（10）的密钥Kme计算会话密钥（Ksession），并将密钥Ksession分配给公共接入终端（20）。终端（20）使用密钥Ksession发送便携式对象（10）第一消息，便携式对象（10）从第一消息和密钥Kme获取密钥Ksession，并通过验证终端（20）来验证终端第一个签名信息的签名。便携式对象（10）向终端（20）发送用密钥Ksession签名的第二消息，并且终端（20）通过验证第二签名消息的签名来认证便携式对象（10）。

4. 发明申请

US20120072732A1 CRYPTOGRAPHIC METHOD FOR ANONYMOUS AUTHENTICATION AND SEPARATE IDENTIFICATION OF A USER 有权
标题翻译：用户的匿名认证和单独标识的CRYPTOGRAPHIC方法
公开(公告)号：US20120072732A1
公开(公告)日：2012-03-22
申请号：US13375736
申请日：2010-06-11
申请人： Sébastien Canard , Amandine Jambert , Eric Malville
发明人： Sébastien Canard , Amandine Jambert , Eric Malville
IPC分类号： H04L9/32
CPC分类号： H04L9/3247 , H04L2209/42 , H04L2209/56
摘要： The invention relates to cryptographic method for the anonymous authentication and the identification of a user entity (Ui) respectively by a checking entity (D) and an identifying entity (O). According to this method, the checking entity (D) receives (130) from the user entity (U1) at least one first signature (σ) and a first message (m), and checks (140) the first signature (σ) using the first message (m) in order to authenticate the user (U), and the identifying entity (O) receives (150) from the checking entity (D) a second signature (σ′) connected to the first signature (σ) and identifies (160) the user using the second signature and a secret key particular thereto. The invention also relates to a cryptographic system for implementing said method.
摘要翻译：本发明涉及用于匿名认证的密码方法和分别由检查实体（D）和识别实体（O）识别用户实体（Ui）的密码方法。根据该方法，检查实体（D）从用户实体（U1）接收（130）至少一个第一签名（＆sgr）和第一消息（m），并检查（140）第一签名（＆sgr; ）使用第一消息（m）来认证用户（U），并且识别实体（O）从检查实体（D）接收（150）连接到第一签名的第二签名（＆sgr;'）＆sgr;）并且使用第二签名识别（160）用户以及特定于其的秘密密钥。本发明还涉及一种用于实现所述方法的密码系统。

5. 发明授权

US07630927B2 Anonymous and secure internet payment method and mobile devices 失效
标题翻译：匿名和安全的互联网支付方式和移动设备
公开(公告)号：US07630927B2
公开(公告)日：2009-12-08
申请号：US11596778
申请日：2005-05-17
申请人： Sébastien Canard , Eric Malville , Jacques Traore , Bruno Cosnefroy , Sidonie Caron
发明人： Sébastien Canard , Eric Malville , Jacques Traore , Bruno Cosnefroy , Sidonie Caron
IPC分类号： G06Q40/00
CPC分类号： G06Q20/342 , G06Q20/04 , G06Q20/10 , G06Q40/00 , G06Q40/025 , G07F7/025 , H04L9/3257 , H04L2209/42 , H04L2209/56
摘要： An anonymous and secure on-line payment system and method based on the partially blind signature cryptographic method with revocable anonymity. To this end, an Anonymity Server (SA) enables the Customer (C) to acquire on-line anonymous payment means on the basis of a protocol that does not enable the Anonymity Server to link the payment means to the Customer (C). The Payment Server (SdP) comprises means for opening an anonymous account using the anonymous payment means (50). A Customer (C) can make an on-line purchase from a Merchant Site (SM) without having to give a bank card number and remaining anonymous to the merchant and more generally to any entity present in the transaction or absent therefrom. However, this anonymity may be revoked by a trusted entity in the event of fraud on the Customer. Finally, a Customer can make payments when on the move.
摘要翻译：一种匿名安全的在线支付系统和方法，基于部分盲签名密码方法，具有可撤销的匿名性。为此，匿名服务器（SA）使得客户（C）能够基于不使匿名服务器将付款方式链接到客户（C）的协议来获取在线匿名支付手段。支付服务器（SdP）包括使用匿名支付装置（50）打开匿名帐户的装置。客户（C）可以从商户网站（SM）进行在线购买，而无需给予银行卡号码，并且对于商户而言更为普遍地存在于交易中存在的任何实体或不在其中的实体。然而，在客户发生欺诈的情况下，这个匿名可能被信任的实体撤销。最后，客户可以在搬家时付款。

6. 发明申请

US20080052227A1 Anonymous and Secure Internet Payment Method and Mobile Devices 失效
标题翻译：匿名和安全的互联网支付方式和移动设备
公开(公告)号：US20080052227A1
公开(公告)日：2008-02-28
申请号：US11596778
申请日：2005-05-17
申请人： Sebastien Canard , Eric Malville , Jacques Traore , Bruno Cosnefroy , Sidonie Caron
发明人： Sebastien Canard , Eric Malville , Jacques Traore , Bruno Cosnefroy , Sidonie Caron
IPC分类号： G06Q40/00
CPC分类号： G06Q20/342 , G06Q20/04 , G06Q20/10 , G06Q40/00 , G06Q40/025 , G07F7/025 , H04L9/3257 , H04L2209/42 , H04L2209/56
摘要： An anonymous and secure on-line payment system and method based on the partially blind signature cryptographic method with revocable anonymity. To this end, an Anonymity Server (SA) enables the Customer (C) to acquire on-line anonymous payment means on the basis of a protocol that does not enable the Anonymity Server to link the payment means to the Customer (C). The Payment Server (SdP) comprises means for opening an anonymous account using the anonymous payment means (50). A Customer (C) can make an on-line purchase from a Merchant Site (SM) without having to give a bank card number and remaining anonymous to the merchant and more generally to any entity present in the transaction or absent therefrom. However, this anonymity may be revoked by a trusted entity in the event of fraud on the Customer. Finally, a Customer can make payments when on the move.
摘要翻译：一种匿名安全的在线支付系统和方法，基于部分盲签名密码方法，具有可撤销的匿名性。为此，匿名服务器（SA）使得客户（C）能够基于不使匿名服务器将付款方式链接到客户（C）的协议获取在线匿名支付方式。支付服务器（SdP）包括使用匿名支付装置（50）打开匿名帐户的装置。客户（C）可以从商户网站（SM）进行在线购买，而无需给予银行卡号码，并且对于商户而言更为普遍地存在于交易中存在的任何实体或不在其中的实体。然而，在客户发生欺诈的情况下，这个匿名可能被信任的实体撤销。最后，客户可以在搬家时付款。

7. 发明授权

US07840813B2 Method and system with authentication, revocable anonymity and non-repudiation 有权
标题翻译：方法和系统具有认证，可撤销匿名和不可否认性
公开(公告)号：US07840813B2
公开(公告)日：2010-11-23
申请号：US10534857
申请日：2003-11-14
申请人： Sébastien Canard , Stéphane Guilloteau , Eric Malville , Jacques Traore
发明人： Sébastien Canard , Stéphane Guilloteau , Eric Malville , Jacques Traore
IPC分类号： H04L9/32
CPC分类号： H04L63/0823 , G06F21/33 , G06Q20/383 , G06Q40/04 , H04L9/3234 , H04L9/3255 , H04L63/08 , H04L2209/42
摘要： The present invention relates to a method of access to a service consisting in i) identifying and registering a client (C), ii) authenticating the client to an anonymous certification authority, iii) authenticating the client by producing an anonymous signature and opening and maintaining an anonymous authentication session with a server (Se), and iv) selectively allowing contact between the server (Se) and the anonymous certification authority (ACA) to revoke the anonymity of the client (C) using the signature provided in step iii). The invention also relates to a system for opening and maintaining an authentication session guaranteeing non-repudiation.
摘要翻译：本发明涉及一种访问服务的方法，该方法包括：i）识别和注册客户端（C），ii）向匿名证书颁发机构认证客户端，iii）通过产生匿名签名和开放和维护来认证客户端与服务器（Se）的匿名认证会话，以及iv）使用在步骤iii）中提供的签名，选择性地允许服务器（Se）和匿名认证机构（ACA）之间的联系来撤销客户端（C）的匿名。本发明还涉及一种用于打开和维护保证不可否认性的认证会话的系统。

8. 发明申请

US20100275009A1 METHOD FOR THE UNIQUE AUTHENTICATION OF A USER BY SERVICE PROVIDERS 有权
标题翻译：服务提供者对用户进行单一认证的方法
公开(公告)号：US20100275009A1
公开(公告)日：2010-10-28
申请号：US12528470
申请日：2008-02-25
申请人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
发明人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
IPC分类号： H04L29/06 , H04L9/32
CPC分类号： H04L63/0421 , H04L9/3013 , H04L9/3257 , H04L63/0815 , H04L63/0823 , H04L63/126 , H04L2209/04
摘要： The invention relates to a method for unique authentication of a user (U) by at least one service provider (SP), said method including a preliminary identity federation stage of federating an identity (user@sp) of said user for said service provider and an identity (user@idp) of the user (U) for an identity provider (IdP). According to the invention, said preliminary identity federation stage includes the steps of: the user (U) generating a user alias ([alias]) for that service provider (SP) and sending said identity provider (IdP) a masked alias ([alias]masked) deduced from said alias, the identity provider (IdP) associating said masked alias ([alias]masked) for that service provider (SP) with the identity (user@idp) of the user for the identity provider (IdP) and sending the user (U) elements for calculation by the user of a signature (σ) of a message (msg) containing the non-masked alias ([alias]), the user (U) calculating said signature (σ) and sending the service provider (SP) said message (msg) with said signature (σ), and the service provider (SP) verifying said signature (σ), authenticating the user (U), and associating said alias ([alias]) with the user's identity (user@sp) for the service provider (SP).
摘要翻译：本发明涉及一种用于由至少一个服务提供商（SP）对用户（U）进行唯一认证的方法，所述方法包括联合用于所述服务提供商的所述用户的身份（user @ sp）的初步身份联合级，以及身份提供者（IdP）的用户（U）的身份（user @ idp）。根据本发明，所述初步身份联合阶段包括以下步骤：用户（U）为该服务提供商（SP）生成用户别名（[别名]），并且发送所述身份提供者（IdP）被掩蔽的别名（[别名所述身份提供者（IdP）将用于该服务提供商（SP）的所述被屏蔽的别名（[alias] masked））与身份提供者（IdP）的用户的身份（user @ idp）相关联，并且发送用户（U）元素以供用户计算包含非掩蔽别名（[别名]）的消息（msg）的签名（＆sgr），计算所述签名（＆sgr）的用户（U）和使用所述签名（＆sgr）向所述服务提供商（SP）发送所述消息（msg）以及验证所述签名（＆sgr）的服务提供商（SP），认证所述用户（U），以及将所述别名（[alias] ）与服务提供商（SP）的用户身份（user @ sp）。

9. 发明申请

US20060155985A1 Method and system with authentication, revocable anonymity and non-repudiation 有权
标题翻译：方法和系统具有认证，可撤销匿名和不可否认性
公开(公告)号：US20060155985A1
公开(公告)日：2006-07-13
申请号：US10534857
申请日：2003-11-14
申请人： Sebastien Canard , Stephane Guilloteau , Eric Malville , Jacques Traore
发明人： Sebastien Canard , Stephane Guilloteau , Eric Malville , Jacques Traore
IPC分类号： H04L9/00
CPC分类号： H04L63/0823 , G06F21/33 , G06Q20/383 , G06Q40/04 , H04L9/3234 , H04L9/3255 , H04L63/08 , H04L2209/42
摘要： The present invention relates to a method of access to a service consisting in i) identifying and registering a client (C), ii) authenticating the client to an anonymous certification authority, iii) authenticating the client by producing an anonymous signature and opening and maintaining an anonymous authentication session with a server (Se), and iv) selectively allowing contact between the server (Se) and the anonymous certification authority (ACA) to revoke the anonymity of the client (C) using the signature provided in step iii). The invention also relates to a system for opening and maintaining an authentication session guaranteeing non-repudiation.
摘要翻译：本发明涉及一种访问服务的方法，该方法包括：i）识别和注册客户端（C），ii）向匿名证书颁发机构认证客户端，iii）通过产生匿名签名和开放和维护来认证客户端与服务器（Se）的匿名认证会话，以及iv）使用在步骤iii）中提供的签名，选择性地允许服务器（Se）和匿名认证机构（ACA）之间的联系来撤销客户端（C）的匿名。本发明还涉及一种用于打开和维护保证不可否认性的认证会话的系统。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式