Claims
- 1. A method of authenticating pair of correspondents (C,S) in an information exchange session to permit exchange of information therebetween, the method characterized in that:
a) the first correspondent (C) transmitting to the second correspondent (S) a first unique information, b) the second correspondent (S) verifying the identity of the first correspondent (C) and generating a second unique information; c) transmitting to the first correspondent (C) the first and second unique information; d) the first correspondent (C) verifying the first unique information to thereby establish currency of the session; e) the first correspondent (C) then generating a third unique information and transmitting the third unique information to the second correspondent (S) along with an information request; f) the second correspondent (S) transmitting to the first correspondent (C) the requested information along with said second and third unique information; g) said first correspondent (C) verifying said third unique information to thereby establish currency of the request and verifying the second unique information to thereby establish currency of the session; h) said first correspondent (C) repeating steps e) to g) for each additional information requested by the first correspondent (C).
- 2. A method as defined in claim 1, said unique information being a random number x.
- 3. A method as defined in claim 2, said first correspondent (C) including a hardware token for generating said random number.
- 4. A data communication system for providing exchange of authenticated information between a pair of correspondents (C,S) in an information exchange session, said system comprising:
a) said first correspondent (C) including a hardware token having a public key, a private key and ECDSA program; said program for
i) transmitting to the second correspondent (S) a first unique information, ii) the second correspondent (S) verifying the identity of the first correspondent (C) and generating a second unique information; iii) transmitting to the first correspondent (C) the first and second unique information; iv) the first correspondent (C) verifying the first unique information to thereby establish currency of the session; v) the first correspondent (C) then generating a third unique information and transmitting the third unique information to the second correspondent (S) along with an information request; vi) the second correspondent (S) transmitting to of the first correspondent (C) the requested information along with said second and third unique information; vii) said first correspondent (C) verifying said third unique information to thereby establish currency of the request and verifying the second unique information to thereby establish currency of the session; viii said first correspondent (C) repeating steps v) to vii) for each additional information requested by of the first correspondent (C).
- 5. A system for authenticating pair of correspondents (C,S) in an information exchange session, to permit exchange of information therebetween, the system characterized in that:
a) means for transmitting by the first correspondent (C) to the second correspondent (S) a first unique information, b) means for verifying the identity of the first correspondent (C) by the second correspondent (S) and generating a second unique information; c) means for transmitting to the first correspondent (C) the first and second unique information; d) means for verifying the first unique information by the first correspondent (C) to thereby establish currency of the session; e) means for generating a third unique information and transmitting the third unique information to the second correspondent (S) along with an information request; f) means for transmitting to the first correspondent (C) the requested information along with said second and third unique information; g) means for verifying said third unique information to thereby establish currency of the request and verifying the second unique information to thereby establish currency of the session; h) means for successively requesting additional information by said correspondent the first correspondent (C).
Priority Claims (1)
Number |
Date |
Country |
Kind |
9709136.7 |
May 1997 |
GB |
|
Parent Case Info
[0001] This is a continuation of PCT/CA98/00417, which was filed on May 4, 1998.
Continuations (1)
|
Number |
Date |
Country |
Parent |
PCT/CA98/00417 |
May 1998 |
US |
Child |
09432189 |
Nov 1999 |
US |