Search

EP-4742590-A1 - INFORMATION PROCESSING SYSTEM, INFORMATION PROCESSING METHOD, INFORMATION PROCESSING PROGRAM, CLIENT, AND SERVER

EP4742590A1EP 4742590 A1EP4742590 A1EP 4742590A1EP-4742590-A1

Abstract

A server generates challenge data by generating falsification verification data of first data, using a server key, based on a predetermined algorithm, and transmits the first data and the challenge data to a client. The client receives the first data and the challenge data, generates response data from the received challenge data using a response key in the client, and transmits the received first data and the response data to the server. The server receives the transmitted first data and response data and reproduces challenge data by generating the falsification verification data using the server key, based on the predetermined algorithm. Then, the server verifies the received response data using the reproduced challenge data and a response key set in the server, and if a verification result is positive, the server notifies a positive authentication result.

Inventors

  • SHIRAI TATSUHIRO
  • GANESAN Vijay
  • LE MAITRE Theowen
  • GAEREMYNCK SYLVAIN
  • OHNISHI TAKAYUKI
  • KOZAWA NORIHIRO
  • FUSHII YOHEI
  • OTA SHOYA
  • SAKAI HITOSHI
  • IDO YUSUKE
  • UMANO YASUNARI
  • BORISOV EUGENE

Assignees

  • Nintendo Co., Ltd.

Dates

Publication Date
20260513
Application Date
20240913

Claims (20)

  1. An information processing system comprising a client and a server connected to a network, the information processing system performing an authentication process on the client according to a challenge & response method, between the client and the server, wherein the server comprises challenge data generation means for generating challenge data by generating falsification verification data of at least first data, using a predetermined server key, based on a predetermined algorithm, and first transmission means for transmitting the first data and the challenge data to the client, the client comprises first reception means for receiving the first data and the challenge data transmitted by the first transmission means, response data generation means for generating response data from the challenge data received by the first reception means, using a response key in the client, and second transmission means for transmitting the first data received by the first reception means and the response data to the server, the server further comprises second reception means for receiving the first data and the response data transmitted by the second transmission means, challenge data reproduction means for reproducing challenge data by generating falsification verification data of at least the first data received by the second reception means, using the server key, based on the predetermined algorithm, first verification means for verifying the response data received by the second reception means, using the challenge data reproduced by the challenge data reproduction means and a response key in the server, and authentication result notification means for notifying the client of a positive authentication result if a result of the verification by the first verification means is positive, and the client further comprises authentication result reception means for receiving the authentication result.
  2. The information processing system according to claim 1, wherein the predetermined algorithm is configured to perform MAC calculation or a signature operation using the server key.
  3. The information processing system according to claim 1, wherein the response data generation means is configured to generate the response data by performing MAC calculation or block encryption calculation using the response key in the client, and the first verification means is configured to verify the response data received by the second reception means, by performing the MAC calculation or the block encryption calculation using the challenge data reproduced by the challenge data reproduction means and the response key in the server.
  4. The information processing system according to claim 1, wherein the predetermined algorithm is configured to perform first MAC calculation using the server key, the response data generation means is configured to generate the response data by performing second MAC calculation using the response key in the client, and the first verification means is configured to verify the response data received by the second reception means, by performing the second MAC calculation using the challenge data reproduced by the challenge data reproduction means and the response key in the server.
  5. The information processing system according to claim 1, wherein the server further comprises second verification means for performing verification using the first data received by the second reception means, separately from verification performed by the first verification means, and the authentication result notification means is configured to notify the client of a positive authentication result if the result of the verification by the first verification means and a result of the verification by the second verification means are positive.
  6. The information processing system according to claim 5, wherein the first data includes issuance time data of the challenge data, and the second verification means is configured to determine an elapsed time from an issuance time of the challenge data, using the issuance time data received by the second reception means.
  7. The information processing system according to claim 1, wherein the challenge data generation means and the challenge data reproduction means are configured to change a generation method for the challenge data, based on the first data.
  8. The information processing system according to claim 1, wherein the challenge data generation means and the challenge data reproduction means are configured to change the server key, based on the first data.
  9. The information processing system according to claim 7, wherein the first data includes data indicating a version of a challenge, and the challenge data generation means and the challenge data reproduction means are configured to change the generation method for the challenge data, based on the data indicating the version.
  10. The information processing system according to any one of claims 1 to 9, wherein a communication session for the authentication process between the server and the client includes a first communication session in which transmission and reception of the challenge data are performed, and a second communication session that is a communication session different from the first communication session and in which transmission and reception of the response data, verification of the response data, and transmission and reception of a result thereof are performed.
  11. The information processing system according to claim 8, wherein the client further comprises third transmission means for transmitting second data that is data different from the first data, and transmitting a request for the challenge data, to the server, the server further comprises third reception means for receiving the data transmitted from the third transmission means, the challenge data generation means is configured to generate falsification verification data of at least the first data and the second data received by the third reception means, the second transmission means is further configured to transmit the second data, and the challenge data reproduction means is configured to generate falsification verification data targeting at least the first data received by the second reception means and the second data.
  12. The information processing system according to claim 11, wherein the second data is a client ID.
  13. The information processing system according to claim 12, wherein the client further comprises certification storage means for storing a client certification including the client ID, the second transmission means and the third transmission means are further configured to transmit the client ID by transmitting the client certification, the challenge data generation means is further configured to verify a signature of the client certification received by the third reception means and generate the challenge data using the client ID included in the client certification, and the challenge data reproduction means is further configured to verify a signature of the client certification received by the second reception means and reproduce the challenge data using the client ID included in the client certification.
  14. The information processing system according to claim 13, wherein the client certification includes third data for setting a response key in the server, and the first verification means is further configured to set the response key in the server, based on the third data included in the client certification received by the second reception means.
  15. The information processing system according to claim 14, wherein the third data is data obtained by performing a part of calculation for setting a response key in advance.
  16. The information processing system according to claim 14 or 15, wherein the third data included in the client certification is data encrypted with a predetermined server key.
  17. The information processing system according to claim 14, wherein the second transmission means is further configured to transmit fourth data, different from the third data, for setting the response key in the server, without the fourth data being included in the client certification, and the first verification means is further configured to set the response key in the server, based on the fourth data received by the second reception means.
  18. The information processing system according to claim 17, wherein the first verification means is further configured to set the response key in the server, based on a combination of the third data included in the client certification and the fourth data received by the second reception means.
  19. The information processing system according to claim 1, wherein the client further comprises delivery means for delivering predetermined information to an application if the positive authentication result is received by the authentication result reception means.
  20. The information processing system according to claim 1, wherein the authentication result notification means is further configured to transmit data for using a predetermined online service, to the client, the authentication result reception means is further configured to receive the data for using the online service, and the client further comprises online service use data delivery means for delivering the data for using the online service, to an application.

Description

TECHNICAL FIELD The present disclosure relates to a device authentication method that uses a challenge & response method. BACKGROUND ART Conventionally, an authentication method using a challenge & response method has been known as a method for authenticating a client device (for example, NON PATENT LITERATURE 1). CITATION LIST [NON PATENT LITERATURE] [NPL 1] RFC Editor, "RFC7616", [online], [retrieved on August 29, 2024], Internet (URL: https://www.rfc-editor.org/info/rfc7616) SUMMARY OF THE INVENTION PROBLEMS TO BE SOLVED BY THE INVENTION As for the device authentication method that uses a challenge & response method, there is room for providing a new method. SOLUTION TO THE PROBLEMS In view of the above, the following configuration examples can be exemplified, for example. (Configuration 1) Configuration 1 is directed to an information processing system including a client and a server connected to a network, the information processing system performing an authentication process on the client according to a challenge & response method, between the client and the server. The server includes challenge data generation means for generating challenge data by generating falsification verification data of at least first data, using a predetermined server key, based on a predetermined algorithm, and first transmission means for transmitting the first data and the challenge data to the client. The client includes first reception means for receiving the first data and the challenge data transmitted by the first transmission means, response data generation means for generating response data from the challenge data received by the first reception means, using a response key in the client, and second transmission means for transmitting the first data received by the first reception means and the response data to the server. The server further includes second reception means for receiving the first data and the response data transmitted by the second transmission means, challenge data reproduction means for reproducing challenge data by generating falsification verification data of at least the first data received by the second reception means, using the server key, based on the predetermined algorithm, first verification means for verifying the response data received by the second reception means, using the challenge data reproduced by the challenge data reproduction means and a response key in the server, and authentication result notification means for notifying the client of a positive authentication result if a result of the verification by the first verification means is positive. The client further includes authentication result reception means for receiving the authentication result. Here, the above server key may be a common key or may be a secret key/public key. The first data may be, for example, a challenge issuance time, a challenge version, a response data version, a server ID, the P address of the server, a random value generated by the server, etc. The first data can be said to be data on which the challenge data is based. In addition, the falsification verification data may be generated by performing calculation, including data other than the first data (for example, in an embodiment described later, a client ID does not correspond to the first data but is used as a target for improvement verification data). In addition, the above challenge data may include data other than the falsification verification data. According to the above configuration, verification of falsification of the challenge data (to be precise, falsification of the data on which the challenge data is based) and verification of the response key can be performed by verification of the response data. (Configuration 2) In Configuration 2 based on Configuration 1, the predetermined algorithm may be configured to perform MAC (Message Authentication Code) calculation or a signature operation using the server key. According to the above configuration, the challenge data can have a fixed length. (Configuration 3) In Configuration 3 based on Configuration 1, the response data generation means may be configured to generate the response data by performing MAC calculation or block encryption calculation using the response key in the client, and the first verification means may be configured to verify the response data received by the second reception means, by performing the MAC calculation or the block encryption calculation using the challenge data reproduced by the challenge data reproduction means and the response key in the server. (Configuration 4) In Configuration 4 based on Configuration 1, the predetermined algorithm may be configured to perform first MAC calculation using the server key, the response data generation means may be configured to generate the response data by performing second MAC calculation using the response key in the client, and the first verification means may be configured to verify the response data received by the