Systems and methods for challengeless coauthentication

US 10,367,817 B2
Filed: 07/07/2017
Issued: 07/30/2019
Est. Priority Date: 12/22/2014
Status: Expired due to Fees

First Claim

Patent Images

1. A method of authentication, the method comprising:

receiving, at an authenticator, an authentication request to access a resource, wherein the authentication request is generated by a requestor;

receiving, at a collaborator, a verification request to access the resource,wherein the verification request is generated by the requestor and received from the requestor;

generating, at the collaborator, a participation message, wherein the participation message is generated in response to the verification request to access the resource received from the requestor and wherein the participation message is not generated in response to a challenge generated by the authenticator;

receiving, at the authenticator, the participation message generated by the collaborator in response to the verification request to access the resource generated by the requestor;

analyzing, at the authenticator computing device, the authentication request to access a resource and the participation message to determine whether the requestor should be granted access to the resource; and

granting the requesting user access to the resource when it is determined that the requesting user should be granted access to the resource based upon the analysis of the authentication request to access a resource and the participation message.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method of authentication that avoids authentication challenges is described. In operation, an authenticator receives a first request to access a resource generated by a requestor and a participation message generated by a collaborator. The authenticator computing device then analyzes the first request and the participation message to determine whether the requestor requesting access to the resource should be granted access and grants the requestor access to the resource based upon the analysis of the first request to access a resource and the participation message.

Citations

22 Claims

1. A method of authentication, the method comprising:
- receiving, at an authenticator, an authentication request to access a resource, wherein the authentication request is generated by a requestor;
  
  receiving, at a collaborator, a verification request to access the resource,wherein the verification request is generated by the requestor and received from the requestor;
  
  generating, at the collaborator, a participation message, wherein the participation message is generated in response to the verification request to access the resource received from the requestor and wherein the participation message is not generated in response to a challenge generated by the authenticator;
  
  receiving, at the authenticator, the participation message generated by the collaborator in response to the verification request to access the resource generated by the requestor;
  
  analyzing, at the authenticator computing device, the authentication request to access a resource and the participation message to determine whether the requestor should be granted access to the resource; and
  
  granting the requesting user access to the resource when it is determined that the requesting user should be granted access to the resource based upon the analysis of the authentication request to access a resource and the participation message.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein the authentication request to access a resource generated by the requestor is transmitted from the requestor to the authenticator and wherein the participation message generated by the collaborator is transmitted from the collaborator to the authenticator.
  - 3. The method of claim 1, further comprising:
    - transmitting the participation message generated by the collaborator to the requestor; and
      
      transmitting the participation message generated by the collaborator and the authentication request to access a resource generated by the requestor from the requestor to the authenticator in response to receiving the participation message at the requestor.
  - 4. The method of claim 1, further comprising:
    - transmitting the authentication request to access a resource generated by the requestor to the collaborator; and
      
      transmitting the authentication request to access a resource generated by the requestor and the participation message generated by the collaborator from the collaborator to the authenticator.
  - 5. The method of claim 1, wherein the authenticator and the requestor share a secret authentication key, the requestor and the collaborator share a secret authentication key, or the authenticator and the collaborator share a secret authentication key.
  - 6. The method of claim 1, wherein at least one of the authenticator, requestor, and collaborator has access to its own private key, in a system with public key communication.
  - 7. The method of claim 1, wherein at least one of the keys accessible to the authenticator, requestor, or collaborator is updated as part of the sequence of communications.
  - 8. The method of claim 1, wherein the authentication request to access a resource, the verification request to access a resource, or the participation message are encoded.
  - 9. The method of claim 1, further comprising, an additional method of authentication including password authentication or biometric authentication of the requestor.

10. One or more non-transitory computer-readable media having computer-executable instructions for performing a method of running a software program on a computing device, the method including issuing instructions from the software program, the instructions comprising:
- receiving, at an authenticator, a authentication request to access a resource generated by a requestor;
  
  receiving, at a collaborator, a verification request to access a resource from the requestor;
  
  generating, at a collaborator, a participation message, wherein the participation message is generated in response to the verification request to access the resource received from the requestor and wherein the participation message is not generated in response to a challenge generated by the authenticatorreceiving, at the authenticator, the participation message generated by the collaborator in response to the verification request to access a resource generated by the requestor;
  
  analyzing, at the authenticator computing device, the authentication request to access a resource and the participation message to determine whether the requestor should be granted access to the resource; and
  
  granting the requesting user access to the resource when it is determined that the requesting user should be granted access to the resource based upon the analysis of the authentication request to access a resource and the participation message.
- View Dependent Claims (11, 12, 13)
- - 11. The one or more non-transitory computer-readable media of claim 10, wherein the authentication request to access a resource generated by the requestor is transmitted from the requestor to the authenticator and wherein the participation message generated by the collaborator is transmitted from the collaborator to the authenticator.
  - 12. The one or more non-transitory computer-readable media of claim 10, further comprising instructions for:
    - transmitting the participation message generated by the collaborator to the requestor; and
      
      transmitting the participation message generated by the collaborator and the authentication request to access a resource generated by the requestor from the requestor to the authenticator in response to receiving the participation message at the requestor.
  - 13. The one or more non-transitory computer-readable media of claim 10, further comprising instructions for:
    - transmitting the authentication request to access a resource generated by the requester to the collaborator; and
      
      transmitting the authentication request to access a resource generated by the requestor and the participation message generated by the collaborator from the collaborator to the authenticator.

14. An authentication system comprising:
- an authenticator computing device configured to;
  
  receive a authentication request to access a resource, wherein the authentication request is generated by a requestor;
  
  receiving a participation message generated by a collaborator in response to a verification request to access a resource, wherein the verification request is generated by the requestor and received from the requestor and wherein the participation message is not generated in response to a challenge generated by the authenticator;
  
  analyzing, at the authenticator computing device, the authentication request to access a resource and the participation message to determine whether the requestor should be granted access to the resource; and
  
  grant the requesting user access to the resource when it is determined that the requesting user should be granted access to the resource based upon the analysis of the authentication request to access a resource and the participation message.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
- - 15. The authentication system of claim 14, wherein the authentication request to access a resource generated by the requestor is transmitted from the requestor to the authenticator and wherein the participation message generated by the collaborator is transmitted from the collaborator to the authenticator.
  - 16. The authentication system of claim 14, wherein the participation message generated by the collaborator is transmitted from the collaborator to the requestor and wherein the participation message generated by the collaborator and the authentication request to access a resource generated by the requestor is transmitted from the requestor to the authenticator computing device.
  - 17. The authentication system of claim 14, wherein the authentication request to access a resource generated by the requestor is transmitted from the requestor to the collaborator and wherein the authentication request to access a resource generated by the requestor and the participation message generated by the collaborator are transmitted from the collaborator to the authenticator computing device.
  - 18. The authentication system of claim 14, wherein the authenticator and the requestor share a secret authentication key, the requestor and the collaborator share a secret authentication key, or the authenticator and the collaborator share a secret authentication key.
  - 19. The authentication system of claim 14, wherein at least one of the authenticator, requestor, and collaborator has access to its own private key, in a system with public key communication.
  - 20. The authentication system of claim 14, wherein at least one of the keys accessible to the authenticator, requestor, or collaborator is updated as part of the sequence of communications.
  - 21. The authentication system of claim 14, wherein the authentication request to access a resource, the verification request to access a resource, or the participation message are encoded.
  - 22. The authentication system of claim 14, wherein the authenticator computing device is further configured to authenticate based on additional data received, including a password or biometric data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
University of South Florida (State University System of Florida)
Original Assignee
University of South Florida (State University System of Florida)
Inventors
Ligatti, Jarred Adam
Primary Examiner(s)
Abyaneh, Ali S
Assistant Examiner(s)
Callahan, Paul E

Application Number

US15/644,372
Publication Number

US 20180262505A1
Time in Patent Office

753 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/40   by quorum, i.e. whereby two...

G06F 21/6281   at program execution time, ...

G06F 2221/2103   Challenge-response

G06F 2221/2111   Location-sensitive, e.g. ge...

H04L 2463/082   applying multi-factor authe...

H04L 63/06   for supporting key manageme...

H04L 63/0853   using an additional device,...

H04L 63/10   for controlling access to d...

H04L 63/102   Entity profiles

H04L 63/105   Multiple levels of security

H04W 12/33   using wearable devices, e.g...

Systems and methods for challengeless coauthentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for challengeless coauthentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links