Systems and methods for providing credentialless login using a random one-time passcode

US 10,218,695 B1
Filed: 03/27/2018
Issued: 02/26/2019
Est. Priority Date: 03/27/2018
Status: Active Grant

First Claim

Patent Images

1. A system for providing a credentialless login, comprising:

one or more processors of an authentication device; and

a memory in communication with the one or more processors and storing instructions that, when executed by the one or more processors, are configured to cause the system to;

receive, from a software application running on a first user-device, a request for credentialless login;

responsive to receiving an authentication of a user accessing the software application running on the first user-device, generate an access code for a credentialless login for an account of the user;

transmit, to the software application running on the first user-device, data representing the generated access code;

receive, from a second user-device, data representing a credentialless login attempt, the data representing the credentialless login attempt comprising an attempted access code; and

authorize, based on a determination that the attempted access code matches the generated access code, the second user device to access the account of the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system includes one or more memory devices storing instructions, and one or more processors configured to execute the instructions to perform the steps of a method for providing a credentialless login for a user. The system may receive a request for credentialless login from a user of a mobile computing device. The system may then receive an authentication of a user accessing a software application running on a mobile computing device. Responsive to the receipt of the authentication, the system may generate a random one-time passcode associated with an account of the authenticated user and transmit the passcode to the mobile computing device for display to the user. The system may then receive the passcode from a second computing device and responsive to verifying the validity of the access code, grant the second computing device access to the account of the user.

Citations

20 Claims

1. A system for providing a credentialless login, comprising:
- one or more processors of an authentication device; and
  
  a memory in communication with the one or more processors and storing instructions that, when executed by the one or more processors, are configured to cause the system to;
  
  receive, from a software application running on a first user-device, a request for credentialless login;
  
  responsive to receiving an authentication of a user accessing the software application running on the first user-device, generate an access code for a credentialless login for an account of the user;
  
  transmit, to the software application running on the first user-device, data representing the generated access code;
  
  receive, from a second user-device, data representing a credentialless login attempt, the data representing the credentialless login attempt comprising an attempted access code; and
  
  authorize, based on a determination that the attempted access code matches the generated access code, the second user device to access the account of the user.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 20)
- - 2. The system of claim 1, wherein authorizing the second user device to access the account of the user is further based on at least a determination that the attempted access code is valid.
  - 3. The system of claim 2, wherein determining that the attempted access code is valid further comprises:
    - receiving, from the first user-device, first user-device location data representative of a location of the first user-device; and
      
      receiving, from the second user device, second user device location data representative of a location of the second user device;
      
      determining that the first user-device location data matches the second user device location data within a predetermined confidence level.
  - 4. The system of claim 2, wherein the generated access code associated with an account of the user is only valid for a predetermined period of time and only for a single use.
  - 5. The system of claim 4, wherein determining that the attempted access code is valid further comprises determining whether the predetermined period of time has passed.
  - 6. The system of claim 4, wherein determining that the attempted access code is valid further comprises determining whether the attempted access code has been previously received by the authentication device.
  - 7. The system of claim 1, wherein a first communication channel between the authentication device and the first user device is encrypted and a second communication channel between the authentication device and the second user is encrypted.
  - 8. The system of claim 1, wherein receiving an authentication of a user running a software application on the first user device comprises:
    - receiving, from the first user device, data representing an indication that biometric data associated with the user that is obtained by the first user device matches, within a predetermined confidence level, to known biometric data stored on the first user device, wherein the known biometric data is associated with the user.
  - 9. The system of claim 8, wherein biometric data associated with the user that is obtained by the first user device and the known biometric data stored on the first user device are fingerprint data obtained by a fingerprint scanner of the first user device.
  - 10. The system of claim 8, wherein biometric data associated with the user that is obtained by the first user device and the known biometric data stored on the first user device are voice recordings obtained from a microphone of the first user device.
  - 11. The system of claim 8, wherein biometric data associated with the user that is obtained by the first user device and the known biometric data stored on the first user device are image data obtained from an image capture device associated with the first user device.
  - 12. The system of claim 1, wherein receiving an authentication of a user accessing the software application running on the first user device comprises:
    - receiving, from the first user device, data representing biometric data associated with the user that is obtained by the first user device;
      
      comparing data representing biometric data associated with the user that is obtained by the first user device with known biometric data stored on the authentication device;
      
      responsive to verifying that the data representing biometric data associated with the user that is obtained by the first user device matches the known biometric data stored on the authentication device, transmitting data representing an indication that the user'"'"'s identity has been verified.
  - 13. The system of claim 12, wherein biometric data associated with the user that is obtained by the first user device is one of fingerprint data obtained by a fingerprint scanner of the first user device, voice recordings obtained from a microphone of the first user device, or image data obtained from an image capture device associated with the first user device.
  - 20. The system of claim 1, wherein receiving an authentication of a user accessing a software application running on the first user device comprises:
    - receiving, from the first user device, data representing an indication that an authenticating motion associated with the user that is obtained by a gyroscope of the first user device matches, within a predetermined confidence level, to a known authenticating motion stored on the first user device, wherein the known authentication motion is associated with the user.

14. A system for providing a credentialless login, comprising:
- one or more processors of a first user device; and
  
  a memory in communication with the one or more processors and storing instructions that, when executed by the one or more processors, are configured to cause the system to;
  
  receive, by a sensor associated with the first user device, known biometric data associated with a user;
  
  store the known biometric data associated with the user;
  
  receive, by a software application running on the first user device, login credentials associated with a user of the software application running on the first user device;
  
  receive, by a software application running on the first user device, data representing a request for credentialless login;
  
  obtain, by a sensor associated with the first user device, user identification data, wherein user identification data comprises data representing biometric data associated with the user;
  
  compare the user identification data with the known biometric data associated with the user and stored by the first user device;
  
  responsive to determining that the user identification data matches the known biometric data, within a predetermined confidence level, transmit, to an authentication-device, user verification data, wherein user verification data comprises data representing an indication that the user'"'"'s identity has been verified;
  
  transmit, to the authentication device, a user verification communication, wherein the user verification communication comprises data representing a request for credentialless login;
  
  receive, from the authentication device, data representing an access code for a credentialless login associated with an account of the user; and
  
  output for display, by an application running on the first user device, the access code associated with an account of the user for use in association with a credentialless login attempt at a, user device.
- View Dependent Claims (15, 16)
- - 15. The system of claim 14, wherein the user identification data is one of fingerprint data obtained by a fingerprint scanner of the first user device, voice recordings obtained from a microphone of the first user device, or image data obtained from an image capture device associated with the first user device.
  - 16. The system of claim 14, wherein the login credentials comprise a username and a password.

17. A system for providing a passwordless login, comprising:
- one or more processors of a first computing device; and
  
  a memory in communication with the one or more processors and storing instructions that, when executed by the one or more processors, are configured to cause the system to;
  
  receive, from a software application running on a first user device, a first inbound communication comprising data representing a request for passwordless login, the first inbound communication being an SMS message;
  
  determine, using natural language processing or machine learning, the content of the first inbound communication;
  
  generate a first outbound communication comprising a request for verification of the identification of a user of the first user device;
  
  transmit, to the application running on the first user device, the first outbound communication;
  
  receive, from the application running on the first user device, a second inbound communication comprising user verification data, wherein user verification data comprises data representing an indication that the user'"'"'s identity has been verified by the first user device, wherein the second inbound communication is an SMS message;
  
  determine, using natural language processing or machine learning, the content of the second inbound communication;
  
  generate an access code for a passwordless login associated with an account of the user;
  
  generate a second outbound communication comprising data representing the access code;
  
  transmit, to the application running on the first user device, the second outbound communication;
  
  receive, from a second user device, data representing a passwordless login attempt comprising a username associated with an account of the user and an attempted access code; and
  
  authorize, based on a determination that the attempted access code matches the access code associated with the account associated with the entered username, the second user device to access the account of the user.
- View Dependent Claims (18, 19)
- - 18. The system of claim 17, wherein the first inbound communication, the second inbound communication, the first outbound communication, and the second outbound communication are SMS messages.
  - 19. The system of claim 17, wherein receiving a second inbound communication comprising user verification data further comprises:
    - receiving, from the first user device, a second inbound communication comprising an indication that biometric data associated with the user running a software application on the first user device that is obtained by a sensor associated with the first user device matches, within a predetermined confidence level, to known biometric data stored on the first user device, wherein the known biometric data is associated with the user; and
      
      determining, using natural language processing or machine learning, the content of the second inbound communication.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Capital One Services LLC (Capital One Financial Corporation)
Original Assignee
Capital One Services LLC (Capital One Financial Corporation)
Inventors
Jain, Chintan
Primary Examiner(s)
Revak, Christopher A

Application Number

US15/936,620
Time in Patent Office

336 Days
Field of Search

None
US Class Current
CPC Class Codes

H04L 63/0838   using one-time-passwords

H04L 63/0846   using time-dependent-passwo...

H04L 63/0861   using biometrical features,...

H04L 63/102   Entity profiles

H04L 63/108   when the policy decisions a...

Systems and methods for providing credentialless login using a random one-time passcode

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for providing credentialless login using a random one-time passcode

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links