WO2009057771A1 - Electronic authentication device, electronic authentication system, electronic authentication method and its program - Google Patents

Electronic authentication device, electronic authentication system, electronic authentication method and its program Download PDF

Info

Publication number
WO2009057771A1
WO2009057771A1 PCT/JP2008/069930 JP2008069930W WO2009057771A1 WO 2009057771 A1 WO2009057771 A1 WO 2009057771A1 JP 2008069930 W JP2008069930 W JP 2008069930W WO 2009057771 A1 WO2009057771 A1 WO 2009057771A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
electronic authentication
authentication device
server
client certificate
Prior art date
Application number
PCT/JP2008/069930
Other languages
French (fr)
Japanese (ja)
Inventor
Yoshiaki Inaba
Wataru Iijima
Taiichi Matsuo
Masahiro Sato
Yoshiharu Araki
Toshiyuki Maeda
Original Assignee
Meidensha Corporation
E Bank Systems Corporation
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Meidensha Corporation, E Bank Systems Corporation filed Critical Meidensha Corporation
Publication of WO2009057771A1 publication Critical patent/WO2009057771A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • H04L9/3273Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/166Implementing security features at a particular protocol layer at the transport layer

Abstract

[PROBLEM TO BE SOLVED] Electronic authentication can be carried out with the enhancement of a security for mutual authentication while its system construction is simplified. [MEANS FOR SOLVING THE PROBLEMS] An IC card (20) stores a secret key and a client certificate. An authentication device (10) receives a request in the form of HTTP from a user terminal device (30), reads in the client certificate from the IC card, and carries out mutual authentication in the form of HTTPS for a server (40) and SSL communication. The client certificate and encrypted authentication data are directly transmitted to a server without a detour through a user terminal device. A secret number is directly input to the authentication device. Any communication except that under a domain name described in a permission list of the authentication device is cut off. The authentication device does not have its own IP address. The justification of a server certificate is made to be automatically confirmable on the authentication device side.
PCT/JP2008/069930 2007-11-01 2008-10-31 Electronic authentication device, electronic authentication system, electronic authentication method and its program WO2009057771A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2007285105A JP2009117887A (en) 2007-11-01 2007-11-01 Electronic authentication device, electronic authentication system, electronic authentication method and program of the method
JP2007-285105 2007-11-01

Publications (1)

Publication Number Publication Date
WO2009057771A1 true WO2009057771A1 (en) 2009-05-07

Family

ID=40591151

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2008/069930 WO2009057771A1 (en) 2007-11-01 2008-10-31 Electronic authentication device, electronic authentication system, electronic authentication method and its program

Country Status (2)

Country Link
JP (1) JP2009117887A (en)
WO (1) WO2009057771A1 (en)

Cited By (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
USD640976S1 (en) 2008-08-28 2011-07-05 Hewlett-Packard Development Company, L.P. Support structure and/or cradle for a mobile computing device
US8234509B2 (en) 2008-09-26 2012-07-31 Hewlett-Packard Development Company, L.P. Portable power supply device for mobile computing devices
US8305741B2 (en) 2009-01-05 2012-11-06 Hewlett-Packard Development Company, L.P. Interior connector scheme for accessorizing a mobile computing device with a removeable housing segment
CN102867269A (en) * 2012-08-29 2013-01-09 福建联迪商用设备有限公司 Synchronous transmission system and method for financial service data
US8385822B2 (en) 2008-09-26 2013-02-26 Hewlett-Packard Development Company, L.P. Orientation and presence detection for use in configuring operations of computing devices in docked environments
US8395547B2 (en) 2009-08-27 2013-03-12 Hewlett-Packard Development Company, L.P. Location tracking for mobile computing device
US8401469B2 (en) 2008-09-26 2013-03-19 Hewlett-Packard Development Company, L.P. Shield for use with a computing device that receives an inductive signal transmission
US8437695B2 (en) 2009-07-21 2013-05-07 Hewlett-Packard Development Company, L.P. Power bridge circuit for bi-directional inductive signaling
USD687038S1 (en) 2009-11-17 2013-07-30 Palm, Inc. Docking station for a computing device
US8527688B2 (en) 2008-09-26 2013-09-03 Palm, Inc. Extending device functionality amongst inductively linked devices
US8688037B2 (en) 2008-09-26 2014-04-01 Hewlett-Packard Development Company, L.P. Magnetic latching mechanism for use in mating a mobile computing device to an accessory device
US8712324B2 (en) 2008-09-26 2014-04-29 Qualcomm Incorporated Inductive signal transfer system for computing devices
US8755815B2 (en) 2010-08-31 2014-06-17 Qualcomm Incorporated Use of wireless access point ID for position determination
US8850045B2 (en) 2008-09-26 2014-09-30 Qualcomm Incorporated System and method for linking and sharing resources amongst devices
US8868939B2 (en) 2008-09-26 2014-10-21 Qualcomm Incorporated Portable power supply device with outlet connector
US8954001B2 (en) 2009-07-21 2015-02-10 Qualcomm Incorporated Power bridge circuit for bi-directional wireless power transmission
US9083686B2 (en) 2008-11-12 2015-07-14 Qualcomm Incorporated Protocol for program during startup sequence
US9097544B2 (en) 2009-08-27 2015-08-04 Qualcomm Incorporated Location tracking for mobile computing device
US9201457B1 (en) 2001-05-18 2015-12-01 Qualcomm Incorporated Synchronizing and recharging a connector-less portable computer system
US9395827B2 (en) 2009-07-21 2016-07-19 Qualcomm Incorporated System for detecting orientation of magnetically coupled devices

Families Citing this family (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101115511B1 (en) * 2010-05-04 2012-02-27 에스케이씨앤씨 주식회사 Authentication system and method using smart card web server
WO2012111189A1 (en) 2011-02-16 2012-08-23 Necインフロンティア株式会社 Enable/disable method of additional-function unit, system for same, program for same, as well as additional-function unit
JP5953156B2 (en) * 2012-07-26 2016-07-20 株式会社ゼンリンデータコム Browser system
JP5222427B1 (en) * 2012-09-28 2013-06-26 株式会社 ディー・エヌ・エー Network system and program
JP6056462B2 (en) * 2012-12-26 2017-01-11 株式会社リコー Proxy device, remote management system, and address acquisition method
JP6464878B2 (en) * 2015-03-27 2019-02-06 株式会社バッファロー Content reproduction apparatus, content reproduction system, content reproduction method and program in content reproduction apparatus
JP6644037B2 (en) 2017-09-08 2020-02-12 株式会社東芝 Communication control system
JP7204388B2 (en) 2018-09-14 2023-01-16 株式会社東芝 Information processing device, information processing system and information processing method
JP7262964B2 (en) 2018-10-12 2023-04-24 株式会社東芝 Information processing device and information processing system
JP2020108070A (en) 2018-12-28 2020-07-09 株式会社東芝 Communication control device and communication control system
JP7273523B2 (en) 2019-01-25 2023-05-15 株式会社東芝 Communication control device and communication control system
JP7163206B2 (en) * 2019-01-29 2022-10-31 株式会社東芝 communication controller
JP7191726B2 (en) 2019-03-04 2022-12-19 株式会社東芝 Communication controller and communication system
JP7191727B2 (en) 2019-03-04 2022-12-19 株式会社東芝 Communication controller and communication system
JP7278806B2 (en) 2019-03-04 2023-05-22 株式会社東芝 Communication controller and communication system
JP7204534B2 (en) 2019-03-04 2023-01-16 株式会社東芝 Communications system
JP7278807B2 (en) 2019-03-04 2023-05-22 株式会社東芝 Communication controller and communication system

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002158650A (en) * 2000-11-21 2002-05-31 Fujitsu Ltd Proxy server for certification/ciphering processing, access card program recording medium and portable terminal
JP2005141333A (en) * 2003-11-04 2005-06-02 Matsushita Electric Ind Co Ltd Access relay unit and network access method

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002158650A (en) * 2000-11-21 2002-05-31 Fujitsu Ltd Proxy server for certification/ciphering processing, access card program recording medium and portable terminal
JP2005141333A (en) * 2003-11-04 2005-06-02 Matsushita Electric Ind Co Ltd Access relay unit and network access method

Cited By (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9201457B1 (en) 2001-05-18 2015-12-01 Qualcomm Incorporated Synchronizing and recharging a connector-less portable computer system
USD640976S1 (en) 2008-08-28 2011-07-05 Hewlett-Packard Development Company, L.P. Support structure and/or cradle for a mobile computing device
US8850045B2 (en) 2008-09-26 2014-09-30 Qualcomm Incorporated System and method for linking and sharing resources amongst devices
US8234509B2 (en) 2008-09-26 2012-07-31 Hewlett-Packard Development Company, L.P. Portable power supply device for mobile computing devices
US8385822B2 (en) 2008-09-26 2013-02-26 Hewlett-Packard Development Company, L.P. Orientation and presence detection for use in configuring operations of computing devices in docked environments
US8401469B2 (en) 2008-09-26 2013-03-19 Hewlett-Packard Development Company, L.P. Shield for use with a computing device that receives an inductive signal transmission
US8868939B2 (en) 2008-09-26 2014-10-21 Qualcomm Incorporated Portable power supply device with outlet connector
US8527688B2 (en) 2008-09-26 2013-09-03 Palm, Inc. Extending device functionality amongst inductively linked devices
US8688037B2 (en) 2008-09-26 2014-04-01 Hewlett-Packard Development Company, L.P. Magnetic latching mechanism for use in mating a mobile computing device to an accessory device
US8712324B2 (en) 2008-09-26 2014-04-29 Qualcomm Incorporated Inductive signal transfer system for computing devices
US9083686B2 (en) 2008-11-12 2015-07-14 Qualcomm Incorporated Protocol for program during startup sequence
US8305741B2 (en) 2009-01-05 2012-11-06 Hewlett-Packard Development Company, L.P. Interior connector scheme for accessorizing a mobile computing device with a removeable housing segment
US8954001B2 (en) 2009-07-21 2015-02-10 Qualcomm Incorporated Power bridge circuit for bi-directional wireless power transmission
US8437695B2 (en) 2009-07-21 2013-05-07 Hewlett-Packard Development Company, L.P. Power bridge circuit for bi-directional inductive signaling
US9395827B2 (en) 2009-07-21 2016-07-19 Qualcomm Incorporated System for detecting orientation of magnetically coupled devices
US8395547B2 (en) 2009-08-27 2013-03-12 Hewlett-Packard Development Company, L.P. Location tracking for mobile computing device
US9097544B2 (en) 2009-08-27 2015-08-04 Qualcomm Incorporated Location tracking for mobile computing device
USD687038S1 (en) 2009-11-17 2013-07-30 Palm, Inc. Docking station for a computing device
US8755815B2 (en) 2010-08-31 2014-06-17 Qualcomm Incorporated Use of wireless access point ID for position determination
US9191781B2 (en) 2010-08-31 2015-11-17 Qualcomm Incorporated Use of wireless access point ID for position determination
CN102867269A (en) * 2012-08-29 2013-01-09 福建联迪商用设备有限公司 Synchronous transmission system and method for financial service data

Also Published As

Publication number Publication date
JP2009117887A (en) 2009-05-28

Similar Documents

Publication Publication Date Title
WO2009057771A1 (en) Electronic authentication device, electronic authentication system, electronic authentication method and its program
CN103270718B (en) In guiding network in content, identification information is used for digital signature and encrypted content integrity and the method and apparatus of reliability
JP2019519827A (en) Two-channel authentication agent system and method capable of detecting false alteration of application
KR101708587B1 (en) Bidirectional authorization system, client and method
CN102377788B (en) Single sign-on (SSO) system and single sign-on (SSO) method
US20100268932A1 (en) System and method of verifying the origin of a client request
CN102823217B (en) Certificate agency
CN107493174B (en) SSL certificate intelligent binding and management method based on CDN
CN105072125B (en) A kind of http communication system and method
EP3031226B1 (en) Supporting the use of a secret key
US20170279807A1 (en) Safe method to share data and control the access to these in the cloud
RU2008142008A (en) WAYS OF AUTHENTICATION, ENCRYPTION AND DECODING OF CLIENT TERMINAL IDENTIFIER AND DEVICE FOR THEIR IMPLEMENTATION
MY166564A (en) A system and method for privacy management for internet of things services
WO2010011731A3 (en) Methods and systems for secure key entry via communication networks
TWI565286B (en) Machine certificate providing device, machine certificate providing system and machine certificate providing program product
CN108494811A (en) data transmission security authentication method and device
JP2009282561A (en) User authentication system, user authentication method and program
CN100514333C (en) Data base safety access method and system
Ouvrier et al. Characterizing the HTTPS trust landscape: a passive view from the edge
JP2015194879A (en) Authentication system, method, and provision device
US20070098175A1 (en) Security enabler device and method for securing data communications
US20090094456A1 (en) Method for protection against adulteration of web pages
DE102017006200A1 (en) Method, hardware and system for dynamic data transmission to a blockchain computer network for storing personal data around this part again block by block as the basis for end to end encryption used to dynamically update the data collection process via the data transmission module in real time from sensor units. The block modules on the blockchain database system are infinitely expandable.
WO2014153315A3 (en) Methods and apparatuses for reducing or eliminating unauthorized access to tethered data
JP2011113157A (en) Authentication system, authentication method, and program

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08846038

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 08846038

Country of ref document: EP

Kind code of ref document: A1