Multi-factor user authentication framework using asymmetric key
First Claim
1. An authentication system comprising:
- a gesture verification system, executing on one or more processor circuits, configured to receive a gesture detected by a gesture system, the gesture indicating that a user is present at a host device, and to verify the gesture; and
a digital signature generator, executing on the one or more processor circuits, configured to generate, in response to the gesture being verified, proof of knowledge of a private key of a public/private key pair, the proof of knowledge of the private key comprising a statement digitally signed using the private key, the digitally signed statement indicating both that the authentication system has knowledge of the private key and that the gesture has been verified by the authentication system, and communicate the proof of knowledge to a user agent of the host device.
1 Assignment
0 Petitions
Accused Products
Abstract
A multi-factor user authentication framework using asymmetric key includes a host device, a user agent, a gesture system, and an authentication system. The multiple factors include a user credential as well as a user gesture that indicates that the user is present. The user interacts with the user agent via the host device in order to obtain access to something for which user authentication is needed. The authentication system maintains the user credentials, which are provided to authenticate the user in response to the authentication system determining that the user is present (which can be determined in different manners, such as using a personal identification number (PIN), biometric information regarding the user, geographic location of the gesture system, etc.). The user agent, gesture system, and authentication system can be implemented on the same device (e.g., the host device), or alternatively implemented across one or more different devices.
-
Citations
20 Claims
-
1. An authentication system comprising:
-
a gesture verification system, executing on one or more processor circuits, configured to receive a gesture detected by a gesture system, the gesture indicating that a user is present at a host device, and to verify the gesture; and a digital signature generator, executing on the one or more processor circuits, configured to generate, in response to the gesture being verified, proof of knowledge of a private key of a public/private key pair, the proof of knowledge of the private key comprising a statement digitally signed using the private key, the digitally signed statement indicating both that the authentication system has knowledge of the private key and that the gesture has been verified by the authentication system, and communicate the proof of knowledge to a user agent of the host device. - View Dependent Claims (2, 3, 4)
-
-
5. A computing device comprising:
-
one or more processor circuits; and one or more computer-readable storage devices having stored thereon instructions that, responsive to execution by the one or more processor circuits, cause the one or more processors processor circuits to; receive, from an authentication system both proof of knowledge of a private key of a public/private key pair and an indication that a gesture of a user detected by a gesture system has been verified by the authentication system, the gesture indicating that the user is present at the computing device and the proof of knowledge comprising a statement digitally signed using the private key; and provide an authentication result of the user to a requester of the authentication result based at least on the proof of knowledge and the indication. - View Dependent Claims (6, 7, 8)
-
-
9. A method performed by a computing device, the method comprising:
-
receiving by the computing device, from an authentication system, both proof of knowledge of a private key of a public/private key pair and an indication that a gesture of a user detected by a gesture system has been verified by the authentication system, the gesture indicating that the user is present at the computing device and the proof of knowledge comprising a statement digitally signed using the private key; and providing by the computing device an authentication result of the user to a requester of the authentication result based at least on the proof of knowledge and the indication. - View Dependent Claims (10, 11, 12)
-
-
13. An authentication system comprising:
-
a gesture verification system, executing on one or more processor circuits, configured to receive a gesture of a user detected by a gesture system, the gesture indicating that the user is present at a computing device, and to verify the gesture; and a digital signature generator, executing on the one or more processor circuits, configured to generate both proof of knowledge of a private key of a public/private key pair and an indication that the gesture detected by the gesture system has been verified by the authentication system, the proof of knowledge comprising a statement digitally signed using the private key, and to provide to the computing device both the proof of knowledge of the private key and the indication that the gesture detected by the gesture system has been verified by the authentication system. - View Dependent Claims (14, 15, 16)
-
-
17. A method implemented by an authentication system executing on one or more processor circuits, the method comprising:
-
receiving, by a computing device, a gesture of a user detected by a gesture system the gesture indicating that the user is present at the device; verifying the gesture; generating both proof of knowledge of a private key of a public private key pair and an indication that the gesture detected by the gesture system has been verified by the authentication system, the proof of knowledge comprising a statement digitally signed using the private key; and providing to the computing device both the proof of knowledge of the private key and the indication that the gesture detected by the gesture system has been verified by the authentication system. - View Dependent Claims (18, 19, 20)
-
Specification