CPC H04L 63/0884 (2013.01) [H04L 9/085 (2013.01)] | 20 Claims |
1. A method comprising:
broadcasting, by an initiator device, a witness request to a plurality of authentication devices, wherein the plurality of authentication devices determine one or more assurance levels with respect to the initiator device, respectively, from a range of assurance levels and determine a token share corresponding to the one or more assurance levels, respectively;
receiving, by the initiator device from the plurality of authentication devices, a plurality of witness responses comprising a set of token shares corresponding to an assurance level among the one or more assurance levels, wherein each of the token shares is a portion of an authentication token or determined using a key share that is a fraction of a cryptographic key;
generating, by the initiator device, the authentication token, by using the token shares of the set; and
transmitting, by the initiator device, the authentication token to an authentication server, wherein the authentication server verifies the authentication token.
|