06985583 is referenced by 286 patents and cites 73 patents.

In one embodiment of a user authentication system and method according to the invention, a device shares a secret, referred to as a master seed, with a server. The device and the server both derive one or more secrets, referred to as verifier seeds, from the master seed, using a key derivation function. The server shares a verifier seed with one or more verifiers. The device, or an entity using the device, can authenticate with one of the verifiers using the appropriate verifier seed. In this way, the device and the verifier can share a secret, the verifier seed for that verifier, without that verifier knowing the master seed, or any other verifier seeds. Thus, the device need only store the one master seed, have access to the information necessary to correctly derive the appropriate seed, and have seed derivation capability. A verifier cannot compromise the master seed, because the verifier does not have access to the master seed.

Title
System and method for authentication seed distribution
Application Number
9/304775
Publication Number
6985583 (B1)
Application Date
May 4, 1999
Publication Date
January 10, 2006
Inventor
Ronald L Rivest
Arlington
MA, US
Magnus Nyström
Concord
MA, US
Burton S Kaliski Jr
Wellesley
MA, US
John G Brainard
Sudbury
MA, US
Agent
Wilmer Cutler Pickering Hale and Dorr
Assignee
RSA Security
MA, US
IPC
H04L 9/32
H04L 9/00
View Original Source