System and method of notifying mobile devices to complete transactions after additional agent verification
First Claim
1. An online method of multi-factor authentication of a digital transaction, the method comprising:
- prior to initiating a digital transaction, registering a multi-factor authentication application of a mobile user device of a user in association with a multi-factor authentication account of the user hosted at a remote authentication service for performing a second factor of authentication for the digital transaction;
at a third-party service provider;
receiving a transaction request from an initiator using an initiating user device distinct from the registered mobile user device for initiating the digital transaction, the transaction request comprising user authentication credentials for performing a first factor of authentication at the third-party service provider;
authenticating the initiator based on the user authentication credentials;
in response to a successful authentication of the initiator, transmitting an application programming interface (API) request to a multi-factor authentication API server of the remote authentication service, the API request comprising an authentication request and transaction request data associated with the transaction request to the third-party service provider;
at the remote authentication service comprising the multi-factor authentication API server;
receiving the API request from the third-party service provider, wherein the transaction request data comprises (i) details of the transaction request and (ii) multi-factor authentication account identification data;
using the multi-factor authentication account identification data to identify the multi-factor authentication account hosted with and maintained by the remote authentication service;
using the multi-factor authentication account to identify the multi-factor authentication application of the mobile user device that is registered in association with the multi-factor authentication account;
in response to identifying the multi-factor authentication application of the mobile user device, pushing an authentication message via a persistent connection from the multi-factor authentication API to the multi-factor authentication application hosted on the mobile user device, the authentication message comprising (a) the details of the transaction request and (ii) a request for either a confirmation input from the user that confirms the details of the transaction request or a denial input that denies the details of the transaction request;
at the multi-factor authentication application, displaying the authentication message on the mobile user device, wherein displaying the authentication message comprises displaying a prompt directing the user of the mobile user device to perform a biometric scan at a biometric scanner of the mobile user device;
at the multi-factor authentication application, performing the second factor of authentication by verifying, locally and with an operating system of the mobile user device, that the biometric scan is associated with an authorized user of the mobile user device;
receiving, from the multi-factor authentication application, an authentication response to the authentication notification, the authentication response comprising data of the confirmation input or data of the denial input;
returning to the third-party service provider, from the multi-factor authentication API server, an API response comprising authentication response data relating to the authentication response; and
completing the digital transaction or denying the digital transaction based on the authentication response data.
4 Assignments
0 Petitions
Accused Products
Abstract
A method of completing a transaction that requires authorization by an authority agent includes registering an authority device as associated with the authority agent, receiving a transaction request from a service provider; pushing an authentication notification to the authenticating application of the authority device; displaying the authentication notification, including a prompt to supply agent verification data, on the authority device; collecting and verifying the agent verification data; in response to verification of the agent verification data, transmitting an authority agent response from the authority device to the authentication platform, and, at the authentication platform, authenticating the authority agent response; and in response to authenticating the authority agent response, transmitting a transaction confirmation from the authentication platform to the service provider.
239 Citations
13 Claims
-
1. An online method of multi-factor authentication of a digital transaction, the method comprising:
-
prior to initiating a digital transaction, registering a multi-factor authentication application of a mobile user device of a user in association with a multi-factor authentication account of the user hosted at a remote authentication service for performing a second factor of authentication for the digital transaction; at a third-party service provider; receiving a transaction request from an initiator using an initiating user device distinct from the registered mobile user device for initiating the digital transaction, the transaction request comprising user authentication credentials for performing a first factor of authentication at the third-party service provider; authenticating the initiator based on the user authentication credentials; in response to a successful authentication of the initiator, transmitting an application programming interface (API) request to a multi-factor authentication API server of the remote authentication service, the API request comprising an authentication request and transaction request data associated with the transaction request to the third-party service provider; at the remote authentication service comprising the multi-factor authentication API server; receiving the API request from the third-party service provider, wherein the transaction request data comprises (i) details of the transaction request and (ii) multi-factor authentication account identification data; using the multi-factor authentication account identification data to identify the multi-factor authentication account hosted with and maintained by the remote authentication service; using the multi-factor authentication account to identify the multi-factor authentication application of the mobile user device that is registered in association with the multi-factor authentication account; in response to identifying the multi-factor authentication application of the mobile user device, pushing an authentication message via a persistent connection from the multi-factor authentication API to the multi-factor authentication application hosted on the mobile user device, the authentication message comprising (a) the details of the transaction request and (ii) a request for either a confirmation input from the user that confirms the details of the transaction request or a denial input that denies the details of the transaction request; at the multi-factor authentication application, displaying the authentication message on the mobile user device, wherein displaying the authentication message comprises displaying a prompt directing the user of the mobile user device to perform a biometric scan at a biometric scanner of the mobile user device; at the multi-factor authentication application, performing the second factor of authentication by verifying, locally and with an operating system of the mobile user device, that the biometric scan is associated with an authorized user of the mobile user device; receiving, from the multi-factor authentication application, an authentication response to the authentication notification, the authentication response comprising data of the confirmation input or data of the denial input; returning to the third-party service provider, from the multi-factor authentication API server, an API response comprising authentication response data relating to the authentication response; and completing the digital transaction or denying the digital transaction based on the authentication response data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method of multi-factor authentication of a digital transaction, the method comprising:
-
prior to initiating a digital transaction, registering a multi-factor authentication application of a mobile user device of a user in association with a multi-factor authentication account at a remote authentication service for performing a second factor of authentication for the digital transaction; at a third-party service provider; receiving a transaction request from an initiator for initiating the digital transaction, the transaction request comprising user authentication credentials for performing a first factor of authentication at the third-party service provider; authenticating the initiator based on the user authentication credentials; in response to a successful authentication of the initiator, transmitting, via one or more networks, transaction request data associated with the transaction request to the remote authentication service; at the remote authentication service; receiving, via the one or more networks, the transaction request data from the third-party service provider, wherein the transaction request data comprises (i) details of the transaction request and (ii) multi-factor authentication account identification data; using the multi-factor authentication account identification data to identify the multi-factor authentication account of the user that is maintained by the remote authentication service; using the multi-factor authentication account to identify the multi-factor authentication application hosted on the mobile user device that is registered in association with the multi-factor authentication account; in response to identifying the multi-factor authentication application associated with the multi-factor authentication account, transmitting from the remote authentication service an authentication message to the multi-factor authentication application, the authentication message comprising (a) the details of the transaction request and (ii) a request for either a confirmation input from the user that confirms the details of the transaction request or a denial input that denies the details of the transaction request; at the multi-factor authentication application, displaying the authentication message on the mobile user device, wherein displaying the authentication message comprises displaying a prompt directing the user of the mobile user device to perform a fingerprint scan at a fingerprint scanner of the mobile user device; at the multi-factor authentication application, performing the second factor of authentication by verifying, locally and with an operating system of the mobile user device, that the fingerprint scan is associated with an authorized user of the mobile user device; receiving, from the registered mobile device, an authentication response to the authentication message, the authentication response comprising data of the confirmation input or data of the denial input; transmitting, via the one or more networks, authentication response data relating to the authentication response to the third-party service provider; and completing the digital transaction or denying the digital transaction based on the authentication response data.
-
Specification