Methods and systems for user authentication
First Claim
1. A computer-implemented method for accessing a web service, comprising:
- generating, by a computing device, a registration request for a first user to access a web service;
generating a public/private key pair for the combination of the first user and the web service;
storing, by the computing device, the private key of the public/private key pair in a database;
sending, by the computing device, the registration request and the public key of the public/private key pair to the web service;
sending a first request for the first user to access first content from the web service;
receiving, in response to the first request, a first challenge;
resolving, by the computing device, the first challenge using the private key;
sending a first challenge response comprising the resolved first challenge, to the web service;
receiving access to the first content;
generating an encryption key from a master password for the user;
encrypting the database with the encryption key;
receiving, by the computing device, the master password; and
decrypting the database.
3 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for passwordless authenticating of a user are provided. A first request to access a first content is received from a first user of a first device. A first challenge is sent to the first device in response to the first request. The first challenge is resolved using a first private key associated with the first user for the first content. A first response, including a resolved challenge, is received from the first device. It is determined whether the first response is an acceptable response to the first challenge. Access to the first content is granted to the first user in response determining that the first response is an acceptable response.
94 Citations
18 Claims
-
1. A computer-implemented method for accessing a web service, comprising:
-
generating, by a computing device, a registration request for a first user to access a web service; generating a public/private key pair for the combination of the first user and the web service; storing, by the computing device, the private key of the public/private key pair in a database; sending, by the computing device, the registration request and the public key of the public/private key pair to the web service; sending a first request for the first user to access first content from the web service; receiving, in response to the first request, a first challenge; resolving, by the computing device, the first challenge using the private key; sending a first challenge response comprising the resolved first challenge, to the web service; receiving access to the first content; generating an encryption key from a master password for the user; encrypting the database with the encryption key; receiving, by the computing device, the master password; and decrypting the database. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
a memory device; and at least one processor coupled to the memory device, the at least one processor being operative to; generate a registration request for a first user to access a web service; generate a public/private key pair for the combination of the first user and the web service; store the private key of the public/private key pair in a database; send the registration request and the public key of the public/private key pair to the web service; send a first request for the first user to access first content from the web service; receive, in response to the first request, a first challenge; resolve the first challenge using the private key; send a challenge response comprising the resolved first challenge, to the web service; receive access to the first content; generate an encryption key from a master password for the user; encrypt the database with the encryption key; receive, by the computing device, the master password; and decrypt the database. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A method comprising:
-
generating a first registration request for a first user to access a web service; generating a first public/private key pair for the combination of the first user and the web service; storing a first private key of the first public/private key pair in a database; sending the registration request and a first public key of the first public/private key pair to the web service; sending a first request for the first user to access first content from the web service; receiving, in response to the first request, a first challenge; resolving the first challenge using the first private key; sending a first challenge response comprising the resolved first challenge, to the web service; receiving access to the first content; generating a second registration request for the first user to access a second web service; generating a second public/private key pair, including a second private key and a second public key, for the combination of the first user and the second web service; storing the second private key in the database; sending the second registration request and the second public key to the second web service; sending a second request for the first user to access second content from the second web service; receiving, in response to the second request, a second challenge; resolving the second challenge using the second private key; sending a second challenge response comprising the resolved second challenge to the second web service; and receiving, by the computing device, access to the second content. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification