US 12,081,673 B2
User authentication system, user authentication server, and user authentication method
Takashi Kojima, Tokyo (JP)
Assigned to CSE CO., LTD., Tokyo (JP)
Appl. No. 17/288,236
Filed by CSE Co., Ltd., Tokyo (JP)
PCT Filed Oct. 22, 2020, PCT No. PCT/JP2020/039694
§ 371(c)(1), (2) Date Sep. 9, 2022,
PCT Pub. No. WO2021/106445, PCT Pub. Date Jun. 3, 2021.
Claims priority of application No. 2019-215185 (JP), filed on Nov. 28, 2019.
Prior Publication US 2023/0216686 A1, Jul. 6, 2023
Int. Cl. H04L 9/32 (2006.01); G06F 21/36 (2013.01)
CPC H04L 9/3228 (2013.01) [G06F 21/36 (2013.01); H04L 9/3236 (2013.01)] 12 Claims
OG exemplary drawing
 
1. A user authentication system including at least one CPU programed to implement:
as a password of a user who is to be authenticated, using a one-time password deriving rule for generating a one-time password by being applied to pattern elements at specific positions, wherein a plurality of pattern elements arranged in a predetermined pattern are presented to the user as a presentation pattern, and authenticate the user on a basis of a character string for authentication in which a user ID is embedded at a predetermined embedding position within the one-time password, wherein the user authentication system comprises an authentication server and an authentication request client;
in advance in association with one another for each said user ID, storing, by the authentication server, the user ID of the user, the one-time password deriving rule of the user, and a user ID embedding position which identifies an embedding position at which the user ID is to be embedded within the one-time password;
generating, by the authentication server, presentation pattern determination information which determines the presentation pattern using a predetermined generation rule;
generating, by the authentication server, a verification code in which the user ID is embedded on a basis of the user ID embedding position, in a result of applying the one-time password deriving rule associated with the user ID to the pattern elements constituting the presentation pattern determined on a basis of the presentation pattern determination information for each said user ID;
transmitting, by the authentication server, the generated presentation pattern determination information to the authentication request client of the user who is to be authenticated;
receiving, by the authentication request client, the presentation pattern determination information transmitted from the authentication server;
determining, by the authentication request client, pattern elements constituting the presentation pattern on a basis of the presentation pattern determination information;
arranging, by the authentication request client, the determined pattern elements in the predetermined pattern to generate a presentation pattern and displaying the presentation pattern on a screen;
accepting, by the authentication request client, input of a character string for authentication in which the user ID is embedded at the user ID embedding position in a one-time password which is a result of applying the one-time password deriving rule to the pattern elements included in the presentation pattern, from the user who is to be authenticated;
transmitting, by the authentication request client, the input character string for authentication to the authentication server;
receiving, by authentication server, the character string for authentication from the authentication request client; and
comparing, by the authentication server, the received character string for authentication with the verification code generated for each said user ID and making authentication of the user ID corresponding to the verification code successful when the verification code which matches the received character string for authentication exists.