Applications login using a mechanism relating sub-tokens to the quality of a master token
First Claim
1. A user device comprising:
- a non-transitory memory; and
one or more hardware processors coupled with the non-transitory memory and configured to read instructions from the non-transitory memory to cause the user device to perform operations comprising;
receiving a notification indicating an authentication of a user based on an authentication input from the user received via a user interface of the user device;
determining a quality score of the authentication of the user based on at least one of a modality in which the authentication input is received, an accuracy of the authentication input, an identity of the user device, or a detected location of the user device;
generating by a first application executing on the user device, a master token corresponding with the determined quality score;
in response to receiving a request to access a second application executing on the user device, generating a sub-token for accessing the second application based on the master token and the corresponding quality score, wherein the sub-token indicates an access level for accessing the second application by the user; and
without receiving additional authentication input from the user and based on the sub-token, automatically authenticating the user for use of the second application according to the access level.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems allow a user to log in to a device so that a number of apps become accessible on the device without the user repeatedly logging in to each different app as the user launches multiple apps. A mechanism of providing a master token with a quality score and providing sub-tokens for each app that can use the sub-token and the score quality to evaluate the level of security provided by the initial login allows each app to skip its own login process and provides a level of enhanced efficiency and convenience for the user. A method includes authenticating a user; creating a master token on the user device; creating a sub-token of the master token for an app launched on the device; the app skipping the login process of the app in response to the sub-token so that the app proceeds directly to validating a transaction.
22 Citations
20 Claims
-
1. A user device comprising:
-
a non-transitory memory; and one or more hardware processors coupled with the non-transitory memory and configured to read instructions from the non-transitory memory to cause the user device to perform operations comprising; receiving a notification indicating an authentication of a user based on an authentication input from the user received via a user interface of the user device; determining a quality score of the authentication of the user based on at least one of a modality in which the authentication input is received, an accuracy of the authentication input, an identity of the user device, or a detected location of the user device; generating by a first application executing on the user device, a master token corresponding with the determined quality score; in response to receiving a request to access a second application executing on the user device, generating a sub-token for accessing the second application based on the master token and the corresponding quality score, wherein the sub-token indicates an access level for accessing the second application by the user; and without receiving additional authentication input from the user and based on the sub-token, automatically authenticating the user for use of the second application according to the access level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of authenticating a user, the method comprising:
-
receiving a notification indicating an authentication of a user based on an authentication input from the user received via a user interface of a user device; obtaining a quality score representing a quality of the authentication of the user, the quality score determined based on at least one of a modality in which the authentication input is received, an accuracy of the authentication input;
an identity of the user device, or a detected location of the user device;generating, by a first application executing on the user device, a master token corresponding with the determined quality score; in response to detecting a request to access a second application executing on the user device, generating a sub-token for accessing the second application based on the master token and the corresponding quality score; determining an authentication level for authenticating the user to access the second application based on the sub-token; and automatically authenticating the user for accessing the second application according to the determined authentication level. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A non-transitory computer-readable medium stored thereon machine-readable instructions executable to cause a user device to perform operations comprising:
-
receiving a notification indicating an authentication of a user based on an authentication input from the user received via a user interface of the user device; determining a quality score of the authentication of the user based on at least one of a modality in which the authentication input is received, an accuracy of the authentication input, an identity of the user device, or a detected location of the user device; generating, by a first application installed on the user device, a master token corresponding with the determined quality score; in response to receiving a request to access a second application installed on the user device, generating a sub-token for accessing the second application based on the master token and the associated quality score, wherein the sub-token indicates an access level for accessing the second application by the user; and providing the sub-token to the second application to cause the second application to automatically authenticate the user for accessing the second application according to the access level without receiving additional authentication input from the user.
-
Specification