Method and system for establishing trusted communication using a security device

US 10,313,328 B2
Filed: 08/14/2017
Issued: 06/04/2019
Est. Priority Date: 02/03/2009
Status: Active Grant

First Claim

Patent Images

1. A method for providing a secure access from a security device at a local network location to a remote network location, the method comprising:

at the security device, having a unique identifier (UID), a processor, and a memory;

obtaining, from a remote network location, a security software, and causing the security software to obtain a personal identification number (PIN) of a user, and the UID of the security device;

forwarding the PIN, the UID and the security software to the remote network location for generating a credential code using the PIN, the UID and the security software, comprising encrypting the credential code;

at the security device, obtaining the credential code from the remote network location, and verifying an authenticity of the PIN and the UID, without communicating over a network, comprising decrypting the credential code;

retrieving access credentials to the remote network location upon verifying the authenticity of the PIN and the UID; and

communicating to the remote network location using the retrieved access credentials.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Method and system for secure access from a security device at a local network location to a remote network location are disclosed. At the security device having a unique identifier (UID), processor, and memory, a security software is obtained from a remote network location, the security software obtaining a personal identification number (PIN) of a user, and the UID of the security device. The PIN, the UID and the private security software are forwarded to the remote network location for generating a credential code, including encrypting the credential code. At the security device, the credential code is obtained from the remote network location, and authenticity of the PIN and the UID is verified, without communicating over a network, including decrypting the credential code. Upon verifying the authenticity of the PIN and the UID, access credentials to the remote network location are retrieved.

59 Citations

View as Search Results

20 Claims

1. A method for providing a secure access from a security device at a local network location to a remote network location, the method comprising:
- at the security device, having a unique identifier (UID), a processor, and a memory;
  
  obtaining, from a remote network location, a security software, and causing the security software to obtain a personal identification number (PIN) of a user, and the UID of the security device;
  
  forwarding the PIN, the UID and the security software to the remote network location for generating a credential code using the PIN, the UID and the security software, comprising encrypting the credential code;
  
  at the security device, obtaining the credential code from the remote network location, and verifying an authenticity of the PIN and the UID, without communicating over a network, comprising decrypting the credential code;
  
  retrieving access credentials to the remote network location upon verifying the authenticity of the PIN and the UID; and
  
  communicating to the remote network location using the retrieved access credentials.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1 wherein the communicating to the remote network location comprises:
    - obtaining a Quick Response, QR, code from the remote location; and
      
      scanning the QR code into the security device.
  - 3. The method of claim 1 wherein the communicating to the remote network application comprises authorizing access to a remote server.
  - 4. The method of claim 3 wherein the authorizing access comprises authorizing access to an email server.
  - 5. The method of claim 1, comprising choosing the security device as one of the following:
    - a computing device, comprising a processor, at the local network location;
      
      ora portable device having a memory, the portable device being different from the computing device, and being operably coupled to the computing device.
  - 6. The method of claim 1, comprising choosing a mobile wireless device as the security device.
  - 7. The method of claim 1, wherein the remote network location is a third party location.
  - 8. The method of claim 1, wherein the communicating comprises forwarding the access credentials to the remote network location for authenticating with the remote network location.

9. A system for providing a secure access from a local network location to a remote network location, the system comprising:
- a remote server computer at the remote network location; and
  
  a security device, having a unique identifier (UID), a processor, and a memory having computer readable instructions stored thereon, causing the processor to;
  
  obtain, from the remote network location, a security software, and causing the security software to obtain a personal identification number (PIN) of a user, and the UID of the security device;
  
  forward the PIN, the UID and the security software to the remote network location for generating a credential code using the PIN, the UID and the security software, comprising encrypting the credential code;
  
  at the security device, obtain the credential code from the remote network location, and verify an authenticity of the PIN and the UID, without communicating over a network, comprising decrypting the credential code;
  
  retrieve access credentials to the remote network location upon verifying the authenticity of the PIN and the UID; and
  
  communicate to the remote network location using the retrieved access credentials.
- View Dependent Claims (10, 11, 12, 13, 14, 15)
- - 10. The system of claim 9 wherein the computer readable instructions causing to communicate further comprise computer readable instructions causing the processor to:
    - obtain a Quick Response, QR, code from the remote location; and
      
      scan the QR code into the security device.
  - 11. The system of claim 9 wherein the computer readable instructions causing to communicate further comprise computer readable instructions to authorize access to a remote server.
  - 12. The system of claim 9 wherein the computer readable instructions to authorize comprise computer readable instructions to authorize access to an email server.
  - 13. The system of claim 9, wherein the security device is one of the following:
    - a computing device, comprising a processor, at the local network location;
      
      ora portable device having a memory, the portable device being different from the computing device, and being operably coupled to the computing device.
  - 14. The system of claim 9, wherein the security device is a mobile wireless device.
  - 15. The system of claim 9, wherein the computer readable instructions to communicate comprise computer readable instructions to forward the access credentials to the remote network location for authenticating with the remote network location.

16. An apparatus for providing a secure access from a local network location to a remote network location, the apparatus comprising:
- a security device, having a unique identifier (UID), a processor, and a memory having computer readable instructions stored thereon, causing the processor to;
  
  obtain, from the remote network location, a security software, and causing the security software to obtain a personal identification number (PIN) of a user, and the UID of the security device;
  
  forward the PIN, the UID and the security software to the remote network location for generating a credential code using the PIN, the UID and the security software, comprising encrypting the credential code;
  
  at the security device, obtain the credential code from the remote network location, and verify an authenticity of the PIN and the UID, without communicating over a network, comprising decrypting the credential code;
  
  retrieve access credentials to the remote network location upon verifying the authenticity of the PIN and the UID; and
  
  communicate to the remote network location using the retrieved access credentials.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The apparatus of claim 16 wherein the computer readable instructions causing to communicate further comprise computer readable instructions causing the processor to:
    - obtain a Quick Response, QR, code from the remote location; and
      
      scan the QR code into the security device.
  - 18. The apparatus of claim 16 wherein the computer readable instructions causing to communicate further comprise computer readable instructions to authorize access to a remote server.
  - 19. The apparatus of claim 16, wherein the security device is one of the following:
    - a computing device, comprising a processor, at the local network location;
      
      ora portable device having a memory, the portable device being different from the computing device, and being operably coupled to the computing device.
  - 20. The apparatus of claim 16, wherein the security device is a mobile wireless device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
inBay Technologies, Inc.
Original Assignee
inBay Technologies, Inc.
Inventors
Bettenburg, Nicolas Johannes Sebastian, Kuang, Randy
Primary Examiner(s)
Pearson, David J

Application Number

US15/676,872
Publication Number

US 20180183778A1
Time in Patent Office

659 Days
Field of Search

726 5
US Class Current
CPC Class Codes

G06F 16/9554   by using bar codes

G06F 21/34   involving the use of extern...

G06F 21/36   by graphic or iconic repres...

G06F 21/42   using separate channels for...

G06F 21/57   Certifying or maintaining t...

G06F 2221/2115   Third party

G06F 2221/2117   User registration

G06F 2221/2141   Access rights, e.g. capabil...

G06K 7/1417   2D bar codes

H04L 63/0281   Proxies

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/0838   using one-time-passwords

H04L 63/0853   using an additional device,...

H04L 63/0869   for achieving mutual authen...

H04L 63/105   Multiple levels of security

H04W 12/77   Graphical identity

Method and system for establishing trusted communication using a security device

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

59 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for establishing trusted communication using a security device

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

59 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links