Secure registration and authentication of a user using a mobile device

US 10,592,872 B2
Filed: 10/09/2018
Issued: 03/17/2020
Est. Priority Date: 05/21/2012
Status: Active Grant

First Claim

Patent Images

1. A non-transitory, computer-readable medium comprising program code that, when executed by a processor of a server data processing system, causes the server data processing system to:

receive, from a mobile device via a path including a wireless communication link, a message including a registration code and identification information of the mobile device for registration of the mobile device as associated with a user identifier for authentication of the user identifier for future authentication sessions;

determine whether the received registration code matches at least one of a registration code generated prior to the receipt of the received registration code or a function of the prior generated registration code; and

register, in response to determining that the received registration code matches at least one of the prior generated registration code or the function thereof, the mobile device as associated with the user identifier for authentication of the user identifier for future authentication sessions and storing the identification information of the mobile device,during one of the authentication sessions;

receive the user identifier via a user interface for the one authentication session,for an online authentication mode, authenticate the user identifier for the one authentication session based on receiving an authentication confirmation from the mobile device via a path including a wireless communication link rather than through the one authentication session in response to an authentication request sent to the mobile device by the server data processing system via a path including a wireless communication link,for an offline authentication mode, authenticate the user identifier for the one authentication session based on receipt, via the user interface for the one authentication session, of an authentication code identified by the mobile device, andautomatically switch from the online authentication mode to the offline authentication mode, based on at least detecting that the server data processing system is not able to connect to the mobile device based on detecting that the server data processing system is not receiving the authentication confirmation from the mobile device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer-readable medium embodies a computer program for obtaining information for a payment transaction. The computer program comprises computer-readable program code for: generating a first message including an identifier and a request for the information, sending the first message via a first communication path, receiving a second message including the information and the identifier via a second path different from the first communication path, and processing the payment transaction using the information obtained in the second message.

159 Citations

17 Claims

1. A non-transitory, computer-readable medium comprising program code that, when executed by a processor of a server data processing system, causes the server data processing system to:
- receive, from a mobile device via a path including a wireless communication link, a message including a registration code and identification information of the mobile device for registration of the mobile device as associated with a user identifier for authentication of the user identifier for future authentication sessions;
  
  determine whether the received registration code matches at least one of a registration code generated prior to the receipt of the received registration code or a function of the prior generated registration code; and
  
  register, in response to determining that the received registration code matches at least one of the prior generated registration code or the function thereof, the mobile device as associated with the user identifier for authentication of the user identifier for future authentication sessions and storing the identification information of the mobile device,during one of the authentication sessions;
  
  receive the user identifier via a user interface for the one authentication session,for an online authentication mode, authenticate the user identifier for the one authentication session based on receiving an authentication confirmation from the mobile device via a path including a wireless communication link rather than through the one authentication session in response to an authentication request sent to the mobile device by the server data processing system via a path including a wireless communication link,for an offline authentication mode, authenticate the user identifier for the one authentication session based on receipt, via the user interface for the one authentication session, of an authentication code identified by the mobile device, andautomatically switch from the online authentication mode to the offline authentication mode, based on at least detecting that the server data processing system is not able to connect to the mobile device based on detecting that the server data processing system is not receiving the authentication confirmation from the mobile device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 17)
- - 2. The computer-readable medium of claim 1, further comprising program code that, when executed by the processor of the server data processing system, causes the server data processing system to:
    - establish a registration session with a terminal, the registration session associated with the user identifier; and
      
      receive, from the terminal through the registration session, a request to register the mobile device to be associated with the user identifier for authentication of the user identifier for the future authentication sessions prior to receipt of the message including the registration code and the identification information of the mobile device.
  - 3. The computer-readable medium of claim 2, further comprising program code that, when executed by the processor of the server data processing system, causes the server data processing system to receive the prior generated registration code from the terminal during the registration session and before the receipt of the received registration code,wherein the prior generated registration code is generated by the terminal before the receiving of the received registration code from the mobile device.
  - 4. The computer-readable medium of claim 2, further comprising program code that, when executed by the processor of the server data processing system, causes the server data processing system to:
    - generate the prior generated registration code before the receipt of the received registration code from the mobile device, andtransmit the prior generated registration code to the terminal through the registration session and before the receipt of the received registration code from the mobile device for delivery of the prior generated registration code to the mobile device via a user interface of the terminal.
  - 5. The computer-readable medium of claim 2, wherein the prior generated registration code is included within an optical code to be displayed on a user interface of the terminal for the delivery to the mobile device.
  - 6. The computer-readable medium of claim 1, further comprising program code that, when executed by the processor of the server data processing system, causes the server data processing system to:
    - during the one authentication session;
      
      for the online authentication mode;
      
      receive the user identifier and a password associated with the user identifier via the user interface for the one authentication session, andtransmit the authentication request to the mobile device in response to receiving the user identifier and the password and determining that the password is correct based on the user identifier; and
      
      for the offline authentication mode;
      
      receive the user identifier, the password associated with the user identifier, and the authentication code identified by the mobile device via the user interface for the one authentication session, andauthenticate the user identifier for the one authentication session based on receipt of the user identifier, password, and the authentication code.
  - 7. The computer-readable medium of claim 1, further comprising program code that, when executed by the processor of the server data processing system, causes the server data processing system to:
    - encrypt the authentication request before the server data processing system transmits the authentication request to the mobile device, wherein the authentication confirmation received from the mobile device is encrypted; and
      
      decrypt the encrypted authentication confirmation received from the mobile device to identify content of the authentication confirmation prior to authentication of the user identifier for the one authentication session based on the content of the received and decrypted authentication confirmation.
  - 8. The computer-readable medium of claim 1, wherein, for the online authentication mode:
    - the authentication request includes a first confirmation code,the authentication confirmation includes a second confirmation code, andthe computer-readable medium further comprises program code that, when executed by the processor of the server data processing system, causes the server data processing system to authenticate the user identifier for the one authentication session based on at least one of the second confirmation code matching the first confirmation code or a function of the first confirmation code.
  - 17. The computer-readable medium of claim 1, wherein the message including the registration code and identification information of the mobile device is encryptedthe computer-readable medium further comprising program code that, when executed by the processor of the server data processing system, causes the server data processing system to decrypt the message including the registration code and identification information of the mobile device from the mobile device.

9. A server data processing system comprising:
- a communication interface configured to receive, from a mobile device via a path including a wireless communication link, a message including a registration code and identification information of the mobile device for registration of the mobile device as associated with a user identifier for authentication of the user identifier for future authentication sessions;
  
  a processor operably connected to the communication interface, the processor configured to;
  
  determine whether the received registration code matches at least one of a registration code generated prior to the receipt of the received registration code or a function of the prior generated registration code; and
  
  register, in response to determining that the received registration code matches at least one of the prior generated registration code or the function thereof, the mobile device as associated with the user identifier for authentication of the user identifier for future authentication sessions and storing the identification information of the mobile device,wherein, during one of the authentication sessions;
  
  the communication interface is further configured to receive the user identifier via a user interface for the one authentication session, andthe processor is further configured to;
  
  for an online authentication mode, authenticate the user identifier for the one authentication session based on receiving an authentication confirmation from the mobile device via a path including a wireless communication link rather than through the one authentication session in response to an authentication request sent to the mobile device via the communication interface and a path including a wireless communication link,for an offline authentication mode, authenticate the user identifier for the one authentication session based on receipt, via the user interface for the one authentication session, of an authentication code identified by the mobile device, andautomatically switch from the online authentication mode to the offline authentication mode, based on at least detecting that the server data processing system is not able to connect to the mobile device based on detecting that the server data processing system is not receiving the authentication confirmation from the mobile device.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The server data processing system of claim 9, wherein the communication interface is configured to:
    - establish a registration session with a terminal, the registration session associated with the user identifier; and
      
      receive, from the terminal through the registration session, a request to register the mobile device to be associated with the user identifier for authentication of the user identifier for the future authentication sessions prior to receipt of the message including the registration code and the identification information of the mobile device.
  - 11. The server data processing system of claim 10, wherein:
    - the communication interface is further configured to receive the prior generated registration code from the terminal during the registration session and before the receipt of the received registration code, andthe prior generated registration code is generated by the terminal before the receiving of the received registration code from the mobile device.
  - 12. The server data processing system of claim 10, wherein:
    - the processor is configured to generate the prior generated registration code before the receipt of the received registration code from the mobile device, andthe communication interface is further configured to transmit the prior generated registration code to the terminal through the registration session and before the receipt of the received registration code from the mobile device for delivery of the prior generated registration code to the mobile device via a user interface of the terminal.
  - 13. The server data processing system of claim 10, wherein the prior generated registration code is included within an optical code to be displayed on a user interface of the terminal for delivery to the mobile device.
  - 14. The server data processing system of claim 9, wherein, during the one authentication session:
    - for the online authentication mode;
      
      the communication interface is configured to receive the user identifier and a password associated with the user identifier via the user interface for the one authentication session, andthe processor is configured to cause the communication interface to transmit the authentication request to the mobile device in response to receiving the user identifier and the password and determining that the password is correct based on the user identifier; and
      
      for the offline authentication mode;
      
      the communication interface is configured to receive the user identifier, the password associated with the user identifier, and the authentication code identified by the mobile device via the user interface for the one authentication session, andthe processor is configured to authenticate the user identifier for the one authentication session based on receipt of the user identifier, password, and the authentication code.
  - 15. The server data processing system of claim 9, wherein:
    - the authentication confirmation received from the mobile device is encrypted, andthe processor is configured to;
      
      encrypt the authentication request before the communication interface transmits the authentication request to the mobile device, anddecrypt the encrypted authentication confirmation received from the mobile device to identify content of the authentication confirmation prior to authentication of the user identifier for the one authentication session based on the content of the received and decrypted authentication confirmation.
  - 16. The server data processing system of claim 9, wherein, for the online authentication mode:
    - the authentication request includes a first confirmation code,the authentication confirmation includes a second confirmation code, andthe processor is configured to authenticate the user identifier for the one authentication session based on at least one of the second confirmation code matching the first confirmation code or a function of the first confirmation code.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nexiden Inc.
Original Assignee
Nexiden Inc.
Inventors
Fosmark, Klaus S., Perry, Jr., William A.
Primary Examiner(s)
Obeid, Mamon

Application Number

US16/155,737
Publication Number

US 20190043022A1
Time in Patent Office

525 Days
Field of Search

None
US Class Current
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/322   Aspects of commerce using m...

G06Q 20/425   using two different network...

H04B 5/72   for local intradevice commu...

Secure registration and authentication of a user using a mobile device

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

159 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Secure registration and authentication of a user using a mobile device

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

159 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links