SYSTEM AND METHOD FOR DYNAMIC INTEGRATION OF USER-PROVIDED DATA WITH ONE-TIME-PASSWORD AUTHENTICATION CRYPTOGRAM

SYSTEM AND METHOD FOR DYNAMIC INTEGRATION OF USER-PROVIDED DATA WITH ONE-TIME-PASSWORD AUTHENTICATION CRYPTOGRAM

The disclosed system and method is directed to improving operational security associated with One-Time Password (OTP) authentication card. The proposed solution involves incorporating a user-provided data value, such as a Personal Identification Number (PIN) and/or a password, into the cryptographic...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
1. Verfasser: OSBORN, Kevin
Format: Patent
Sprache:eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The disclosed system and method is directed to improving operational security associated with One-Time Password (OTP) authentication card. The proposed solution involves incorporating a user-provided data value, such as a Personal Identification Number (PIN) and/or a password, into the cryptographic process flow for the generation of the Message Authentication Code (MAC) associated with a OTP authentication cryptogram. A key operational aspect corresponds to the scrambling of a unique card-stored data such as a shared secret value, with run-time data externally provided by the user. In this way, the proposed system and method incorporates two factors of identification, associated with card-stored and user-known data elements, into an OTP card authentication cryptogram.