System for provisioning and allowing secure access to a virtual credential

US 10,387,632 B2
Filed: 05/17/2017
Issued: 08/20/2019
Est. Priority Date: 05/17/2017
Status: Active Grant

First Claim

Patent Images

1. A system for authentication using a live user determination, the system comprising:

one or more memory devices having computer readable code stored thereon; and

one or more processing devices operatively coupled to the one or more memory devices, wherein the one or more processing devices are configured to execute the computer readable code to;

receive a request from a user through a user application to access an organization application to take an action, wherein the user application is located on a mobile device of the user and the request is received from the mobile device;

receive a verified identification image, wherein the verified identification image is captured by the user through the mobile device and received from the mobile device, and wherein the verified identification image includes one or more characters added to the verified identification image;

receive a liveness identification image, wherein the liveness identification image is a video of the user, and wherein the liveness identification image is captured by the user through the mobile device and received from the mobile device, and wherein the video comprises a recitation of the one or more characters added to the verificated identification image; and

determine that the user is authenticated for the action based on the action, the verified identification image, the liveness identification image, and the one or more characters included in the verification identification image and recited in the video.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems, computer products, and methods are described herein for improved authentication utilizing two factor authentication of a user. The two factors include a verified identification and a liveness identification. The verified identification may be a governmental verified identification, and the liveness identification may be a video of the user. The user may capture the verified identification and the liveness identification using the user'"'"'s mobile device. The organization may authenticate the user by identifying the user from the verified identification image and identifying that the user is active by identifying movement from the liveness identification image. Additional authentication may include requiring and/or identifying an identifier from the liveness identification image (e.g., movement, object, characters, or the like), and/or capture image data related to a time or a location at which the images were captured.

Citations

20 Claims

1. A system for authentication using a live user determination, the system comprising:
- one or more memory devices having computer readable code stored thereon; and
  
  one or more processing devices operatively coupled to the one or more memory devices, wherein the one or more processing devices are configured to execute the computer readable code to;
  
  receive a request from a user through a user application to access an organization application to take an action, wherein the user application is located on a mobile device of the user and the request is received from the mobile device;
  
  receive a verified identification image, wherein the verified identification image is captured by the user through the mobile device and received from the mobile device, and wherein the verified identification image includes one or more characters added to the verified identification image;
  
  receive a liveness identification image, wherein the liveness identification image is a video of the user, and wherein the liveness identification image is captured by the user through the mobile device and received from the mobile device, and wherein the video comprises a recitation of the one or more characters added to the verificated identification image; and
  
  determine that the user is authenticated for the action based on the action, the verified identification image, the liveness identification image, and the one or more characters included in the verification identification image and recited in the video.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The system of claim 1, wherein the verified identification image is an image of a government issued identification that verifies an identity of the user, and the video of the user verifies that the user is active.
  - 3. The system of claim 2, wherein determining that the user is authenticated comprises:
    - capturing first user information from the verified identification image, wherein the first user information comprises at least a name of the user from the government issued identification and an indication of an identifier; and
      
      capturing the identifier from the liveness identification image, wherein the identifier comprises a movement of the user indicating that the user is active, an object in the video other than the user, or facial recognition information.
  - 4. The system of claim 2, wherein determining that the user is authenticated comprises:
    - capturing first user information from the verified identification image;
      
      capturing second user information from the liveness identification image;
      
      wherein the first user information and the second user information are images of the user'"'"'s face; and
      
      comparing the first user information and the second user information for the authentication of the user.
  - 5. The system of claim 2, wherein determining the authentication of the user comprises:
    - identifying electronic capture data from the verified identification image and from the liveness identification image, wherein the electronic capture data is captured by the user using the mobile device, and wherein the electronic capture data is coupled to the verification identification image and the liveness identification image; and
      
      comparing the electronic capture data of the verified identification image and the liveness identification image with authentication requirements.
  - 6. The system of claim 5, wherein the electronic capture data comprises a time when the verified identification image and the liveness identification image were captured by the mobile device, wherein the authentication requirements include a required time period, and wherein the authentication requirements are met when the verified identification image and the liveness identification image are both captured at the time that falls within the required time period.
  - 7. The system of claim 5, wherein the electronic capture data comprises a location where the verified identification image and the liveness identification image were captured using a location determining device of the mobile device, wherein the authentication requirements include a required location, and wherein the authentication requirements are met when the location where the verified identification image or the liveness identification image were captured meet the required location.
  - 8. The system of claim 2, wherein after determining the authentication of the user the one or more processing devices are further configured to execute the computer readable code to:
    - receive an indication from the user of an authentication identifier in the video that may be used for future authentication;
      
      store the authentication identifier for the user for the future authentication;
      
      receive a request from the user for a second action;
      
      receive a second video from the user;
      
      determine a current identifier of the user from the second video;
      
      determine a second authentication of the user based on the current identifier matching the authentication identifier.
  - 9. The system of claim 8, wherein the authentication identifier and the current identifier comprise a movement of the user in the video and the second video.
  - 10. The system of claim 1, wherein the action is a request to open a resource pool to access resources, wherein the request includes user information regarding the request, and wherein the resource pool is an account and the resources are funds associated with the account.
  - 11. The system of claim 10, wherein the one or more processing devices are further configured to execute the computer readable code to:
    - allow virtual access to the resources through the mobile device when the authentication of the user and the request for access to the resource pool are approved;
      
      allow the user to utilize the resources through the mobile device while the user waits for physical access to the resources.
  - 12. The system of claim 11, wherein the one or more processing devices are further configured to execute the computer readable code to:
    - receive an indication that that the user has the physical access to the resources in the resource pool;
      
      allow the user to retain the virtual access to the resources in the resource pool through the mobile device when an indication that the user wants to retain the virtual access to the resources in the resource pool is received from the user through the mobile device; and
      
      remove reference to the resources from the mobile device of the user when an indication that the user wants to remove the virtual access to the resources in the resource pool is received from the user through the mobile device.
  - 13. The system of claim 11, wherein the virtual access is provided through the use of a virtual card.
  - 14. The system of claim 11, wherein the physical access is provided through the use of a physical card.

15. A computer implemented method for authentication using a live user determination, the method comprising:
- receiving, by one or more processors, a request from a user through a user application to access an organization application to take an action, wherein the user application is located on a mobile device of the user and the request is received from the mobile device;
  
  receiving, by the one or more processors, a verified identification image, wherein the verified identification image is captured by the user through the mobile device and received from the mobile device, and wherein the verified identification image includes one or more characters added to the verified identification image;
  
  receiving, by the one or more processors, a liveness identification image, wherein the liveness identification image is a video of the user, and wherein the liveness identification image is captured by the user through the mobile device and received from the mobile device, and wherein the video comprises a recitation of the one or more characters added to the verified identification image; and
  
  determining, by the one or more processors, that the user is authenticated for the action based on the action, the verified identification image, the liveness identification image and the one or more characters included in the verification identification image and recited in the video.
- View Dependent Claims (16, 17, 18)
- - 16. The method of claim 15, wherein the verified identification image is an image of a government issued identification that verifies an identity of the user, and the video of the user verifies that the user is active.
  - 17. The method of claim 16, wherein determining that the user is authenticated comprises:
    - capturing first user information from the verified identification image, wherein the first user information comprises at least a name of the user from the government issued identification and an indication of an identifier; and
      
      capturing second user information from the liveness identification image, wherein the second user information comprises the identifier comprising a movement of the user indicating that the user is active, an object in the video other than the user, or facial recognition information.
  - 18. The method of claim 16, wherein the action is a request to open a resource pool to access resources, wherein the request includes user information regarding the request, wherein the resource pool is an account and the resources are funds associated with the account, and wherein the one or more processors are further configured to execute the computer readable code to:
    - allow virtual access to the resources through the mobile device when the authentication of the user and the request for access to the resource pool are approved;
      
      allow the user to utilize the resources through the mobile device while the user waits for physical access to the resources.

19. A computer program product for authentication using a live user determination, the computer program product comprising at least one non-transitory computer-readable medium having computer-readable program code portions embodied therein, the computer-readable program code portions comprising:
- an executable portion configured to receive a request from a user through a user application to access an organization application to take an action, wherein the user application is located on a mobile device of the user and the request is received from the mobile device;
  
  an executable portion configured to receive a verified identification image, wherein the verified identification image is captured by the user through the mobile device and received from the mobile device, and wherein the verified identification image includes one or more characters added to the verified identification image;
  
  an executable portion configured to receive a liveness identification image, wherein the liveness identification image is a video of the user, and wherein the liveness identification image is captured by the user through the mobile device and received from the mobile device, and wherein the video comprises a recitation of the one or more characters added to the verified identification image; and
  
  an executable portion configured to determine that the user is authenticated for the action based on the action, the verified identification image, the liveness identification image, and the one or more characters included in the verification identification image and recited in the video.
- View Dependent Claims (20)
- - 20. The computer program product of claim 19, wherein the verified identification image is an image of a government issued identification that verifies an identity of the user, and the video of the user verifies that the user is active.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Wallace, Matthew Joseph, Cantley, Kerry Michelle, Correro, Greg M., DeGrammont, Jeantou Alphonse, Funk, Michael Lee, Hupfer, Glenn Edward, Sampath, Murali, Shannon, Donna Lynne
Primary Examiner(s)
Najjar, Saleh
Assistant Examiner(s)
Chao, Michael W

Application Number

US15/598,079
Publication Number

US 20180336327A1
Time in Patent Office

825 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/36   by graphic or iconic repres...

G06F 2221/2115   Third party

G06F 2221/2133   Verifying human interaction...

G06Q 20/351   Virtual cards

H04L 2463/082   applying multi-factor authe...

H04L 63/0861   using biometrical features,...

H04W 12/06   Authentication

System for provisioning and allowing secure access to a virtual credential

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System for provisioning and allowing secure access to a virtual credential

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links