×

Controlling user access to protected resource based on outcome of one-time passcode authentication token and predefined access policy

  • US 10,091,204 B1
  • Filed: 04/30/2014
  • Issued: 10/02/2018
  • Est. Priority Date: 12/31/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method, comprising:

  • providing an authentication passcode derived from a secret seed and generated by a token associated with a user to at least one authentication processing device, wherein said user is attempting to access a protected resource;

    receiving an authentication outcome from said at least one authentication processing device, said authentication outcome comprising an acceptance outcome of the received authentication passcode and at least one of an acceptance outcome with respect to one or more of two different signals, wherein said at least one authentication processing device detects a loss of privacy of said secret seed by extracting and processing a silent alarm signal embedded in said received authentication passcode from said received authentication passcode, and wherein said silent alarm signal indicates an anomalous event detected by said token; and

    controlling access of said user to said protected resource based on said authentication outcome and a predefined access policy invoked when said silent alarm signal has a predefined state indicating said detection of said anomalous event.

View all claims
  • 13 Assignments
Timeline View
Assignment View
    ×
    ×