Preventing unauthorized access to secured information systems using multi-device authentication techniques
First Claim
1. A computing platform, comprising:
- at least one processor;
a communication interface communicatively coupled to the at least one processor; and
memory storing computer-readable instructions that, when executed by the at least one processor, cause the computing platform to;
receive, via the communication interface, and from a client portal server, a request to authenticate a first user to a first user account corresponding to a client portal provided by the client portal server;
identify a requested activity corresponding to the request to authenticate the first user to the first user account as a first activity;
based on identifying the requested activity corresponding to the request to authenticate the first user to the first user account as the first activity, select a multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server;
based on selecting the multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server, generate a first one-time passcode for a first registered device and a second one-time passcode for a second registered device different from the first registered device, wherein the first one-time passcode is different from the second one-time passcode;
send, via the communication interface, the first one-time passcode to the first registered device and the second one-time passcode to the second registered device;
receive, via the communication interface, and from the client portal server, first one-time passcode input;
validate the first one-time passcode input received from the client portal server;
based on validating the first one-time passcode input received from the client portal server, generate a first validation message directing the client portal server to provide the first user with access to the first user account; and
send, via the communication interface, to the client portal server, the first validation message directing the client portal server to provide the first user with access to the first user account.
1 Assignment
0 Petitions
Accused Products
Abstract
A computing platform may receive, from a client portal server, a request to authenticate a user to a user account a client portal. Based on identifying an activity the request, the computing platform may select a multi-device authentication method for authenticating the user. The computing platform may generate a first one-time passcode for a first registered device and a second one-time passcode for a second registered device, and may send the one-time passcodes to the registered devices. Thereafter, the computing platform may receive and validate one-time passcode input from the client portal server. Based on validating the one-time passcode input, the computing platform may generate a validation message directing the client portal server to provide the user with access to the user account, and may send the validation message to the client portal server. In some instances, different authentication methods may be selected for different activities.
100 Citations
20 Claims
-
1. A computing platform, comprising:
-
at least one processor; a communication interface communicatively coupled to the at least one processor; and memory storing computer-readable instructions that, when executed by the at least one processor, cause the computing platform to; receive, via the communication interface, and from a client portal server, a request to authenticate a first user to a first user account corresponding to a client portal provided by the client portal server; identify a requested activity corresponding to the request to authenticate the first user to the first user account as a first activity; based on identifying the requested activity corresponding to the request to authenticate the first user to the first user account as the first activity, select a multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server; based on selecting the multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server, generate a first one-time passcode for a first registered device and a second one-time passcode for a second registered device different from the first registered device, wherein the first one-time passcode is different from the second one-time passcode; send, via the communication interface, the first one-time passcode to the first registered device and the second one-time passcode to the second registered device; receive, via the communication interface, and from the client portal server, first one-time passcode input; validate the first one-time passcode input received from the client portal server; based on validating the first one-time passcode input received from the client portal server, generate a first validation message directing the client portal server to provide the first user with access to the first user account; and send, via the communication interface, to the client portal server, the first validation message directing the client portal server to provide the first user with access to the first user account. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method, comprising:
at a computing platform comprising at least one processor, memory, and a communication interface; receiving, by the at least one processor, via the communication interface, and from a client portal server, a request to authenticate a first user to a first user account corresponding to a client portal provided by the client portal server; identifying, by the at least one processor, a requested activity corresponding to the request to authenticate the first user to the first user account as a first activity; based on identifying the requested activity corresponding to the request to authenticate the first user to the first user account as the first activity, selecting, by the at least one processor, a multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server; based on selecting the multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server, generating, by the at least one processor, a first one-time passcode for a first registered device and a second one-time passcode for a second registered device different from the first registered device, wherein the first one-time passcode is different from the second one-time passcode; sending, by the at least one processor, via the communication interface, the first one-time passcode to the first registered device and the second one-time passcode to the second registered device; receiving, by the at least one processor, via the communication interface, and from the client portal server, first one-time passcode input; validating, by the at least one processor, the first one-time passcode input received from the client portal server; based on validating the first one-time passcode input received from the client portal server, generating, by the at least one processor, a first validation message directing the client portal server to provide the first user with access to the first user account; and sending, by the at least one processor, via the communication interface, to the client portal server, the first validation message directing the client portal server to provide the first user with access to the first user account. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
20. One or more non-transitory computer-readable media storing instructions that, when executed by a computing platform comprising at least one processor, memory, and a communication interface, cause the computing platform to:
-
receive, via the communication interface, and from a client portal server, a request to authenticate a first user to a first user account corresponding to a client portal provided by the client portal server; identify a requested activity corresponding to the request to authenticate the first user to the first user account as a first activity; based on identifying the requested activity corresponding to the request to authenticate the first user to the first user account as the first activity, select a multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server; based on selecting the multi-device authentication method for authenticating the first user to the first user account corresponding to the client portal provided by the client portal server, generate a first one-time passcode for a first registered device and a second one-time passcode for a second registered device different from the first registered device, wherein the first one-time passcode is different from the second one-time passcode; send, via the communication interface, the first one-time passcode to the first registered device and the second one-time passcode to the second registered device; receive, via the communication interface, and from the client portal server, first one-time passcode input; validate the first one-time passcode input received from the client portal server; based on validating the first one-time passcode input received from the client portal server, generate a first validation message directing the client portal server to provide the first user with access to the first user account; and send, via the communication interface, to the client portal server, the first validation message directing the client portal server to provide the first user with access to the first user account.
-
Specification