05592553 is referenced by 175 patents and cites 6 patents.

A system for authenticating a user located at a requesting node to a resource such as a host application located at an authenticating node using one-time passwords that change pseudorandomly with each request for authentication. At the requesting node a non-time-dependent value is generated from nonsecret information identifying the user and the host application, using a secret encryption key shared with the authenticating node. The non-time-dependent value is combined with a time-dependent value to generate a composite value that is encrypted to produce an authentication parameter. The authentication parameter is reversibly transformed into an alphanumeric character string that is transmitted as a one-time password to the authenticating node. At the authenticating node the received password is transformed back into the corresponding authentication parameter, which is decrypted to regenerate the composite value. The non-time-dependent value is replicated at the authenticating node using the same nonsecret information and encryption key shared with the requesting node. The locally generated non-time-dependent value is combined with the regenerated composite value to regenerate the time-dependent value. The user is authenticated if the regenerated time-dependent value is within a predetermined range of a time-dependent value that is locally generated at the authenticating node.

Title
Authentication system using one-time passwords
Application Number
99784
Publication Number
5592553
Application Date
February 8, 1996
Publication Date
January 7, 1997
Inventor
Don Coppersmith
Ossining
NY, US
Donald B Johnson
Masassas
VA, US
Stephen M Matyas Jr
Masassas
VA, US
Raymond C Larson
Rhinebeck
NY, US
Richard H Guski
Red Hook
NY, US
Agent
William A Kinnaman Jr
Assignee
International Business Machines Corporation
NY, US
IPC
H04L 9/32
View Original Source