| CPC H04L 9/3242 (2013.01) [H04L 9/3231 (2013.01)] | 14 Claims |
|
1. An electronic device, comprising:
a communication device;
a memory configured to store an encryption key and a decryption key for performing homomorphic encryption; and
a processor configured to be connected to the memory to control the electronic device,
wherein the processor is configured to:
based on user's identification information and a first password being input to register the user's identification information and the first password, acquire a hash value using the first password,
encrypt the hash value using the encryption key,
transmit the identification information and the encrypted hash value to a server through the communication device,
based on the identification information and a second password being input to log in to the server, load the encryption key and the decryption key and transmit the identification information to the server through the communication device,
based on a first nonce being received from the server, acquire a first authentication value using the decryption key, the second password, and the first nonce and transmit the first authentication value to the server through the communication device,
based on a second authentication value being received from the server, decrypt the second authentication value, which is generated using the first authentication value and a second nonce, using the decryption key to acquire a third authentication value and transmit the third authentication value to the server through the communication device, and
the server authenticates the user using the third authentication value.
|