-
公开(公告)号:US12003493B2
公开(公告)日:2024-06-04
申请号:US17197616
申请日:2021-03-10
IPC分类号: H04L9/40 , G06F21/45 , H04L9/08 , H04W12/062
CPC分类号: H04L63/08 , G06F21/45 , H04L9/0866 , H04L63/166 , H04W12/062
摘要: A method, a device, and a non-transitory storage medium are described in which an pre-authentication service is provided. The service may support a transport layer security handshake and determine authentication based on the initial message. The service may provide for the generation of a message that initiates a handshake between devices in which the message includes an authentication string used for authentication. The service may provide for the generation of another authentication string for comparison. The service may also support authorization of a device. The service may minimize potential malicious attacks and activities between the devices.
-
公开(公告)号:US11714914B2
公开(公告)日:2023-08-01
申请号:US17679459
申请日:2022-02-24
发明人: Brent R. Bilger , Rajesh M. Patel , Shailesh K. Venugopal , William F. Copeland , Michel J. Basmaji
CPC分类号: G06F21/6209 , H04L9/006 , H04L9/0877 , H04L9/302 , H04L9/3242
摘要: A device includes a memory and a processor. The processor is to execute the instruction to: receive, from a user device, a username of a user and a string; retrieve a first Message Authentication Code (MAC) and a salt from a database in response to receiving the username and the string; send the first MAC, the salt, and one or more parameters to a Hardware Security Module (HSM); receive, from the HSM, a message indicating whether the first MAC matches a second MAC that the HSM generates based on the one or more parameters and the salt. In addition, the processor to perform one of: authenticate the user when the message indicates that the first MAC matches the second MAC; or not authenticate the user when the message indicates that the first MAC does not match the second MAC.
-
公开(公告)号:US10805799B1
公开(公告)日:2020-10-13
申请号:US16574208
申请日:2019-09-18
发明人: Brent R. Bilger , William F. Copeland , Shailesh K. Venugopal , Junaid Islam , Michel J. Basmaji
摘要: Systems and methods validate that a subscriber identity module (SIM) number of an end device connected to a network is the same number that was activated for that device. A network device obtains a SIM number and a device universal identifier (UID) during an activation procedure. The network device generates a unique SIM authentication code based on the SIM number, the UID, and a master key. The network device sends the SIM authentication code to the end device during activation. After activation, the network device receives, from the end device, an authentication message that includes a first one-time password (OTP), the UID, a time value, the SIM number, and the SIM authentication code. The network device generates a second OTP based on the UID, the time value, the SIM number, and the master key and validates pairing of the end device and the SIM number when the two OTPs match.
-
公开(公告)号:US20220294773A1
公开(公告)日:2022-09-15
申请号:US17197616
申请日:2021-03-10
摘要: A method, a device, and a non-transitory storage medium are described in which an pre-authentication service is provided. The service may support a transport layer security handshake and determine authentication based on the initial message. The service may provide for the generation of a message that initiates a handshake between devices in which the message includes an authentication string used for authentication. The service may provide for the generation of another authentication string for comparison. The service may also support authorization of a device. The service may minimize potential malicious attacks and activities between the devices.
-
公开(公告)号:US20220179984A1
公开(公告)日:2022-06-09
申请号:US17679459
申请日:2022-02-24
发明人: Brent R. Bilger , Rajesh M. Patel , Shailesh K. Venugopal , William F. Copeland , Michel J. Basmaji
摘要: A device includes a memory and a processor. The processor is to execute the instruction to: receive, from a user device, a username of a user and a string; retrieve a first Message Authentication Code (MAC) and a salt from a database in response to receiving the username and the string; send the first MAC, the salt, and one or more parameters to a Hardware Security Module (HSM); receive, from the HSM, a message indicating whether the first MAC matches a second MAC that the HSM generates based on the one or more parameters and the salt. In addition, the processor to perform one of: authenticate the user when the message indicates that the first MAC matches the second MAC; or not authenticate the user when the message indicates that the first MAC does not match the second MAC.
-
公开(公告)号:US11281789B2
公开(公告)日:2022-03-22
申请号:US16691157
申请日:2019-11-21
发明人: Brent R. Bilger , Rajesh M. Patel , Shailesh K. Venugopal , William F. Copeland , Michel J. Basmaji
摘要: A device includes a memory and a processor. The processor is to execute the instruction to: receive, from a user device, a username of a user and a string; retrieve a first Message Authentication Code (MAC) and a salt from a database in response to receiving the username and the string; send the first MAC, the salt, and one or more parameters to a Hardware Security Module (HSM); receive, from the HSM, a message indicating whether the first MAC matches a second MAC that the HSM generates based on the one or more parameters and the salt. In addition, the processor to perform one of: authenticate the user when the message indicates that the first MAC matches the second MAC; or not authenticate the user when the message indicates that the first MAC does not match the second MAC.
-
公开(公告)号:US20210157939A1
公开(公告)日:2021-05-27
申请号:US16691157
申请日:2019-11-21
发明人: Brent R. Bilger , Rajesh M. Patel , Shailesh K. Venugopal , William F. Copeland , Michel J. Basmaji
摘要: A device includes a memory and a processor. The processor is to execute the instruction to: receive, from a user device, a username of a user and a string; retrieve a first Message Authentication Code (MAC) and a salt from a database in response to receiving the username and the string; send the first MAC, the salt, and one or more parameters to a Hardware Security Module (HSM); receive, from the HSM, a message indicating whether the first MAC matches a second MAC that the HSM generates based on the one or more parameters and the salt. In addition, the processor to perform one of: authenticate the user when the message indicates that the first MAC matches the second MAC; or not authenticate the user when the message indicates that the first MAC does not match the second MAC.
-
公开(公告)号:US10924928B1
公开(公告)日:2021-02-16
申请号:US17019559
申请日:2020-09-14
发明人: Brent R. Bilger , William F. Copeland , Shailesh K. Venugopal , Junaid Islam , Michel J. Basmaji
摘要: Systems and methods validate that subscriber identity module (SIM) number of an end device connected to a network is the same number that was activated for that device. A network device in a network obtains a SIM number and a universal identifier (UID) for the end device during an activation procedure. The network device generates a unique SIM authentication code based on the SIM number, the UID, and a master key. The network device sends the unique SIM authentication code to the end device as part of the activation procedure. After activation, the network device receives, from the end device, an authentication message that includes a first one-time password (OTP), the UID, a time value, the SIM number, and the SIM authentication code. The network device generates a second OTP based on the UID, the time value, the SIM number, and the master key and validates a pairing of the end device and the SIM number when the two OTPs match.
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.02 秒)
