以分持為基礎之參因子認證身份認證系統及其方法A three-factor Biometric-Based Authentication Scheme based on Secret Splitting

專利類型

發明

專利國別 (專利申請國家)

中華民國

專利申請案號

097103439

專利證號

I 356349

專利獲證名稱

以分持為基礎之參因子認證身份認證系統及其方法A three-factor Biometric-Based Authentication Scheme based on Secret Splitting

專利所屬機關 (申請機關)

崑山科技大學

獲證日期

2012/01/11

技術說明

身份認證機制的設計，除需考量機制本身嚴謹、安全性準則外，也需考量智慧卡遺失或密碼遭竊而身份被冒用的情況。基於上述理由，本研究提出以分持為基礎的參因子認證身份認證方法，其具備以下三種資安特色: (1) 以機密分持的觀念，支援組織建立不信任的身份認證政策; (2)結合密碼、智慧卡(smart card)及生物特徵(biometrics)生物等三個身份資訊以產生強固的身份認證值; (3)當認證要件遺失或遭竊，可防止身份遭冒用。透過根據身份認證機制安全性分析，證明所研發的身份認證機置，可有效避免內部員工竊取及冒用客戶認證資訊，抵擋網路常見的四種攻擊行為，提供更安全、可靠的網路服務。 When designing the authentication mechanism, engineer not only has to take into consideration with rigid, security criteria, but also can deal with the situation of that smart card being lost or password being stolen. Therefore, we proposed a three-factor biometric-based authentication scheme to devise a robust authentication mechanism that possesses the following three significant features: (i) performing non-trust authentication policy based on secret splitting concept, (ii) it generates a high secure identity token by integrating biometric information with password and smart card, (iii) when smart card is lost or stolen, it has to keep identity from misusing. Our approach, verified by security analysis, can effectively prevent misuse of authentication information stolen by interior employees and resist four kinds of network attacks on the Internet, to provide a more secure and reliable mechanism for web services.

備註

106-4研發成果審查會同意終止維護專利

連絡單位 (專責單位/部門名稱)

研究發展處

連絡電話

06-2059715

網址