首页>
外国专利>
METHOD FOR PROVIDING AN ENHANCED LEVEL OF AUTHENTICATION RELATED TO A SECURE SOFTWARE CLIENT APPLICATION THAT IS PROVIDED, BY AN APPLICATION DISTRIBUTION ENTITY, IN ORDER TO BE TRANSMITTED TO A CLIENT COMPUTING DEVICE; SYSTEM, SOFTWARE CLIENT APPLICATION INSTANCE OR CLIENT COMPUTING DEVICE, THIRD PARTY SERVER ENTITY, AND PROGRAM AND COMPUTER PROGRAM PRODUCT
METHOD FOR PROVIDING AN ENHANCED LEVEL OF AUTHENTICATION RELATED TO A SECURE SOFTWARE CLIENT APPLICATION THAT IS PROVIDED, BY AN APPLICATION DISTRIBUTION ENTITY, IN ORDER TO BE TRANSMITTED TO A CLIENT COMPUTING DEVICE; SYSTEM, SOFTWARE CLIENT APPLICATION INSTANCE OR CLIENT COMPUTING DEVICE, THIRD PARTY SERVER ENTITY, AND PROGRAM AND COMPUTER PROGRAM PRODUCT
The invention relates to a method for providing an enhanced level of authentication related to a secure software client application that is provided, by an application distribution entity, in order to be transmitted, using a telecommunications network, to a client computing device in view of software code of the software client application being executed by the client computing device,wherein a first secure communication channel is established - in view of transmitting an instance of the software client application to the client computing device - between the client computing device and the application distribution entity, and wherein a second secure communication channel is established between the application distribution entity and a third party server entity,wherein the method comprises the following steps:-- in a first step, an asymmetric pair of cryptographic keys and/or a security token information is generated as a protected information in view of subsequently allowing for an authenticated transmission of data - provided by the software client application instance upon it being executed by the client computing device - to the third party server entity,wherein the protected information is generated by the third party server entity and/or by a trusted entity, and wherein a first partial information and at least a second partial information is derived from the protected information,-- wherein in a second step, subsequent to the first step, the first partial information and the at least second partial information is transmitted to the client computing device, the first partial information being transmitted - besides the software client application instance - using at least the first secure communication channel, and the at least second partial information being transmitted using a third communication channel, different from the first secure communication channel, wherein at least the first partial information and the second partial information are required to obtain the protected information.
展开▼
