US2020394657A1PendingUtilityA1

Method and system for authenticating iot device using mobile device

57
Assignee: ESTORM CO LTDPriority: Apr 6, 2016Filed: Aug 28, 2020Published: Dec 17, 2020
Est. expiryApr 6, 2036(~9.7 yrs left)· nominal 20-yr term from priority
Inventors:Jong Hyun Woo
G06Q 20/206H04W 12/068H04W 12/06H04L 63/08G06Q 20/3278G06Q 20/3223H04L 63/0838H04L 67/12G06Q 20/4014G06Q 20/308G06Q 20/3224H04W 4/80H04W 12/0608
57
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

Provided is an authentication system including: a device authentication agent installed in an Internet of things (IoT) device with a communication module and generating first device authentication information for authenticating the corresponding IoT device; an authentication server connected with the IoT device through wired or wireless communication and generating second device authentication information for authenticating the IoT device; and a mobile agent installed in a mobile device of a user, connected with the IoT device and the authentication server through the wireless communication, and verifying whether the IoT device or a message determined to be received from the IoT device is authentic according to whether the first device authentication information transmitted from the IoT device and the second device authentication information transmitted from the authentication server coincide with each other.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
         1 . An authentication system comprising:
 a device authentication agent installed in an Internet of things (IoT) device with a communication module and acquiring first device authentication information for authenticating the corresponding IoT device;   a mobile agent installed on a mobile device of a user, acquiring user authentication information for authenticating the user, and generating an authentication request message including the device authentication information received from the device authentication agent and the user authentication information; and   an authentication server generating authentication information for verification corresponding to each of the device authentication information and the user authentication information included in the authentication request message to compare coincidence of the authentication information for verification and determining whether the IoT device and the user are authentic.   
     
     
         2 . The authentication system of  claim 1 , wherein the communication module is a beacon communication module, and the device authentication agent inserts identification information usable for identifying the corresponding IoT device and the device authentication information into a beacon message and wirelessly broadcasts the beacon message. 
     
     
         3 . The authentication system of  claim 2 , wherein the device authentication information is inserted into at least one of a major field and a minor field which follow a data field area in which a UUID as a beacon unique value is inserted into the beacon message. 
     
     
         4 . The authentication system of  claim 3 , wherein when the device authentication information exceeds the size of the field area to be inserted, the device authentication information is converted into a value which does not exceed the size of the field area to be inserted and inserted into the beacon message. 
     
     
         5 . The authentication system of  claim 2 , wherein the mobile agent performs authentication for an application user by driving an application executing a specific application service, and transmits to the authentication server the authentication request message which includes at least the device authentication information and further includes at least one of the user authentication information, the user identification information, and the device identification information, when the device identification information and the device authentication information are received through the beacon message. 
     
     
         6 . The authentication system of  claim 5 , wherein the mobile agent transmits to the authentication server the authentication request message only when it is determined that a distance between the IoT device and the mobile device is within a predetermined distance based on reception intensity or sensitivity of the beacon message. 
     
     
         7 . The authentication system of  claim 5 , wherein the mobile agent replaces and uses a user token acquired when the application user authentication is completed as the user authentication information or uses a user authentication value generated newly according to the reception of the device authentication information as the user authentication information. 
     
     
         8 . The authentication system of  claim 5 , wherein the mobile agent transmits to the authentication server an execution command selected by the application user included in the authentication request message in relation to the application service executed through the application. 
     
     
         9 . The authentication system of  claim 8 , wherein the authentication server generates the authentication information for verification corresponding to each of the device authentication information and the user authentication information when the authentication request message is received and generates a command message for processing the execution command included in the authentication request message to be executed when the authentication information for verification, the device authentication information and the user authentication information coincide with each other. 
     
     
         10 . The authentication system of  claim 9 , wherein the authentication server checks whether authority corresponding to the execution command is granted to the authenticated user when the authentication information is completed through the authentication information for verification and determines generation of the command message according to the authority checked result.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.