Patents by Inventor Eric Malville
Eric Malville has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20220394029Abstract: A method for communication between an application implementing a service run on a user device and a main server. When an attempt is made to establish a first secure communication, the compliance of a public key certificate sent by the main server is checked against a reference certificate for the main server, the establishment of secure communication being conditional upon the compliance check. If the public key certificate sent by the main server is not compliant, a second secure communication is established with an update server, and a public key certificate sent by the update server is checked for compliance against a reference certificate for the update server. Once the second secure communication has been established, an updated reference certificate for the main server is received, the updated certificate being intended to be used by the client application the next time secure communication is established with the main server.Type: ApplicationFiled: October 13, 2020Publication date: December 8, 2022Inventors: Gilles Le Brun, Sébastien Brault, Julien Galhaut, Eric Malville
-
Patent number: 8689306Abstract: A method for unique authentication of a user including federating an identity of said user for said service provider and an identity of the user for an identity provider, the federating including the steps of generating a user alias for that service provider and sending said identity provider a masked alias deduced from said alias, the identity provider associating said masked alias for that service provider with the identity of the user for the identity provider and sending the user elements for calculation by the user of a signature of a message containing the non-masked alias calculating said signature and sending the service provider said message with said signature, and the service provider verifying said signature, authenticating the user, and associating said alias with the user's identity.Type: GrantFiled: February 25, 2008Date of Patent: April 1, 2014Assignee: OrangeInventors: Sébastien Canard, Eric Malville, Jacques Traore, Stéphane Guilloteau
-
Patent number: 8650403Abstract: The invention relates to cryptographic method for the anonymous authentication and the identification of a user entity (Ui) respectively by a checking entity (D) and an identifying entity (O). According to this method, the checking entity (D) receives (130) from the user entity (U1) at least one first signature (?) and a first message (m), and checks (140) the first signature (?) using the first message (m) in order to authenticate the user (U), and the identifying entity (O) receives (150) from the checking entity (D) a second signature (??) connected to the first signature (?) and identifies (160) the user using the second signature and a secret key particular thereto. The invention also relates to a cryptographic system for implementing said method.Type: GrantFiled: June 11, 2010Date of Patent: February 11, 2014Assignee: France TelecomInventors: Sébastien Canard, Amandine Jambert, Eric Malville
-
Publication number: 20120072732Abstract: The invention relates to cryptographic method for the anonymous authentication and the identification of a user entity (Ui) respectively by a checking entity (D) and an identifying entity (O). According to this method, the checking entity (D) receives (130) from the user entity (U1) at least one first signature (?) and a first message (m), and checks (140) the first signature (?) using the first message (m) in order to authenticate the user (U), and the identifying entity (O) receives (150) from the checking entity (D) a second signature (??) connected to the first signature (?) and identifies (160) the user using the second signature and a secret key particular thereto. The invention also relates to a cryptographic system for implementing said method.Type: ApplicationFiled: June 11, 2010Publication date: March 22, 2012Inventors: Sébastien Canard, Amandine Jambert, Eric Malville
-
Patent number: 7840813Abstract: The present invention relates to a method of access to a service consisting in i) identifying and registering a client (C), ii) authenticating the client to an anonymous certification authority, iii) authenticating the client by producing an anonymous signature and opening and maintaining an anonymous authentication session with a server (Se), and iv) selectively allowing contact between the server (Se) and the anonymous certification authority (ACA) to revoke the anonymity of the client (C) using the signature provided in step iii). The invention also relates to a system for opening and maintaining an authentication session guaranteeing non-repudiation.Type: GrantFiled: November 14, 2003Date of Patent: November 23, 2010Assignee: France TelecomInventors: Sébastien Canard, Stéphane Guilloteau, Eric Malville, Jacques Traore
-
Publication number: 20100275009Abstract: The invention relates to a method for unique authentication of a user (U) by at least one service provider (SP), said method including a preliminary identity federation stage of federating an identity (user@sp) of said user for said service provider and an identity (user@idp) of the user (U) for an identity provider (IdP).Type: ApplicationFiled: February 25, 2008Publication date: October 28, 2010Applicant: FRANCE TELECOMInventors: Sébastien Canard, Eric Malville, Jacques Traore, Stéphane Guilloteau
-
Patent number: 7793102Abstract: A method of mutually authenticating, firstly, a portable object (10) assigned a unique identifier (MSISDN) and including first wireless communications means and, secondly, a public access terminal (20) including second wireless communications means and telecommunications means for communicating via a telecommunications network (1). The portable object (10) is assigned a wireless communication key (Kme). An authentication server (30) is installed on the network (1) and adapted to determine the key Kme from the identifier (MSISDN). The identifier (MSISDN) of the portable object (10) is sent to the terminal (20) and then from the terminal (20) to the authentication server (30). The authentication server (30) determines the key Kme and allocates the wireless communication key Kme to a calculation unit (30). The calculation unit (30) calculates a session key (Ksession) from the key Kme of the portable object (10) and allocates the key Ksession to the public access terminal (20).Type: GrantFiled: June 3, 2002Date of Patent: September 7, 2010Assignee: France TelecomInventors: Eric Malville, Didier Guerin, Yves Thorigne
-
Patent number: 7630927Abstract: An anonymous and secure on-line payment system and method based on the partially blind signature cryptographic method with revocable anonymity. To this end, an Anonymity Server (SA) enables the Customer (C) to acquire on-line anonymous payment means on the basis of a protocol that does not enable the Anonymity Server to link the payment means to the Customer (C). The Payment Server (SdP) comprises means for opening an anonymous account using the anonymous payment means (50). A Customer (C) can make an on-line purchase from a Merchant Site (SM) without having to give a bank card number and remaining anonymous to the merchant and more generally to any entity present in the transaction or absent therefrom. However, this anonymity may be revoked by a trusted entity in the event of fraud on the Customer. Finally, a Customer can make payments when on the move.Type: GrantFiled: May 17, 2005Date of Patent: December 8, 2009Assignee: France TelecomInventors: Sébastien Canard, Eric Malville, Jacques Traore, Bruno Cosnefroy, Sidonie Caron
-
Publication number: 20080052227Abstract: An anonymous and secure on-line payment system and method based on the partially blind signature cryptographic method with revocable anonymity. To this end, an Anonymity Server (SA) enables the Customer (C) to acquire on-line anonymous payment means on the basis of a protocol that does not enable the Anonymity Server to link the payment means to the Customer (C). The Payment Server (SdP) comprises means for opening an anonymous account using the anonymous payment means (50). A Customer (C) can make an on-line purchase from a Merchant Site (SM) without having to give a bank card number and remaining anonymous to the merchant and more generally to any entity present in the transaction or absent therefrom. However, this anonymity may be revoked by a trusted entity in the event of fraud on the Customer. Finally, a Customer can make payments when on the move.Type: ApplicationFiled: May 17, 2005Publication date: February 28, 2008Inventors: Sebastien Canard, Eric Malville, Jacques Traore, Bruno Cosnefroy, Sidonie Caron
-
Publication number: 20060155985Abstract: The present invention relates to a method of access to a service consisting in i) identifying and registering a client (C), ii) authenticating the client to an anonymous certification authority, iii) authenticating the client by producing an anonymous signature and opening and maintaining an anonymous authentication session with a server (Se), and iv) selectively allowing contact between the server (Se) and the anonymous certification authority (ACA) to revoke the anonymity of the client (C) using the signature provided in step iii). The invention also relates to a system for opening and maintaining an authentication session guaranteeing non-repudiation.Type: ApplicationFiled: November 14, 2003Publication date: July 13, 2006Applicant: France TelecomInventors: Sebastien Canard, Stephane Guilloteau, Eric Malville, Jacques Traore
-
Publication number: 20040172536Abstract: A method of mutually authenticating, firstly, a portable object (10) assigned a unique identifier (MSISDN) and including first wireless communications means and, secondly, a public access terminal (20) including second wireless communications means and telecommunications means for communicating via a telecommunications network (1).Type: ApplicationFiled: December 8, 2003Publication date: September 2, 2004Inventors: Eric Malville, Didier Guerin, Yves Thorigne
-
Publication number: 20030236926Abstract: A method of propagating invocation contexts through a distributed object system that includes an application management API interface and wherein each object is associated with an interceptor and with a manager of the context of an incoming request received by the interceptor when the object is invoked. A thread manager is provided for the interceptor for the purpose, firstly, of establishing an association between a thread of an object directly consecutive to an incoming request invoking the object and the context of the incoming request as identified by the context manager and, secondly, of recovering the context from the thread manager and associating it with the outgoing request from the object. A method is added to the application management API interface enabling it to recover the current context from the thread manager and to associate it with any thread of the object indirectly consecutive to the incoming request.Type: ApplicationFiled: April 30, 2003Publication date: December 25, 2003Applicant: France TelecomInventors: Eric Malville, Michel Milhau