Secure system and method for managing the multi-factor authentication data of a user

US 10,701,064 B2
Filed: 12/18/2017
Issued: 06/30/2020
Est. Priority Date: 12/16/2016
Status: Active Grant

First Claim

Patent Images

1. A system for receiving multi-factor authentication messages comprising:

one or more virtual phone servers including one or more virtual phones hosted in memory thereon, the one or more virtual phones associated with at least a first telephone number and a second telephone number, the first telephone number and the second telephone number configured to receive multi-factor authentication messages directed to the one of the first telephone number and the second telephone number upon request of a user;

a message routing component implemented on a server for associating data derived from the multi-factor authentication messages with at least a first user account and a second user account based on the data derived from the multi-factor authentication messages, wherein the message routing component associates data from the multi-factor authentication messages received at the first telephone number with the first user account or the second user account such that data from at least one of the multi-factor authentication messages received at the first telephone number is associated with the first user account and such that data from another of the multi-factor authentication messages received at the first telephone number is associated with the second user account;

a database comprising multi-factor authentication data from the received multi-factor authentication message wherein at least a portion of the multi-factor authentication data from the message routing component is stored in association with a particular user account on the database;

a user-facing application interface implemented on a display of a user device for providing data derived from the received authentication message and authentication code to the user on a user device.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for managing multi-factor authentication of a user includes: one or more source components for obtaining multi-factor authentication data by one or more of: receiving multi-factor authentication data via a network; generating multi-factor authentication data using an algorithm, and a user providing multi-factor authentication data; a routing component for associating the multi-factor authentication codes from the one or more source components with an appropriate user account; a database comprising multi-factor authentication data wherein components of the multi-factor authentication data are stored in association with a particular user account; and one or more delivery components for providing the multi-factor authentication data to a user on a user device.

Citations

25 Claims

1. A system for receiving multi-factor authentication messages comprising:
- one or more virtual phone servers including one or more virtual phones hosted in memory thereon, the one or more virtual phones associated with at least a first telephone number and a second telephone number, the first telephone number and the second telephone number configured to receive multi-factor authentication messages directed to the one of the first telephone number and the second telephone number upon request of a user;
  
  a message routing component implemented on a server for associating data derived from the multi-factor authentication messages with at least a first user account and a second user account based on the data derived from the multi-factor authentication messages, wherein the message routing component associates data from the multi-factor authentication messages received at the first telephone number with the first user account or the second user account such that data from at least one of the multi-factor authentication messages received at the first telephone number is associated with the first user account and such that data from another of the multi-factor authentication messages received at the first telephone number is associated with the second user account;
  
  a database comprising multi-factor authentication data from the received multi-factor authentication message wherein at least a portion of the multi-factor authentication data from the message routing component is stored in association with a particular user account on the database;
  
  a user-facing application interface implemented on a display of a user device for providing data derived from the received authentication message and authentication code to the user on a user device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The multi-factor authentication system of claim 1, further comprising a message parsing component that recognizes a source of the multi-factor authentication message based on one or more of:
    - text within a body of the received multi-factor authentication message;
      
      an origination number of the received multi-factor authentication message;
      
      a destination number of the received multi-factor authentication message; and
      
      data derived from the received multi-factor authentication message.
  - 3. The multi-factor authentication system of claim 2, wherein the message parsing component further improves recognition of a source of the multi-factor authentication message based on previous actions of one or more of the users.
  - 4. The multi-factor authentication system of claim 1, further comprising a message parsing component that identifies a multi-factor authentication code within the received multi-factor authentication message.
  - 5. The multi-factor authentication system of claim 1, one or more of the telephone numbers is capable of receiving data for multiple user accounts.
  - 6. The system for receiving multi-factor authentication messages of claim 1, wherein multi-factor authentication messages comprise SMS messages containing a multi-factor authentication code.
  - 7. The system for receiving multi-factor authentication messages of claim 1, wherein multi-factor authentication messages comprise audio messages containing a multi-factor authentication code.
  - 8. The system for receiving multi-factor authentication messages of claim 7, wherein audio messages containing the multi-factor authentication code are further analyzed using speech-to-text software prior to data derived from the received audio messages being provided to the user on the user device.

9. A system for managing multi-factor authentication of a user, the system comprising:
- one or more hardware source components for obtaining multi-factor authentication data by one or more of;
  
  receiving multi-factor authentication data via a network;
  
  generating multi-factor authentication data using an algorithm; and
  
  a user providing multi-factor authentication data;
  
  a routing server including a routing component implemented thereon for associating the multi-factor authentication codes from the one or more source components with at least one of a first user account and a second user account based on data derived from the received multi-factor authentication data;
  
  a database comprising multi-factor authentication data wherein portions of the multi-factor authentication data from the routing component are stored in association with a particular user account;
  
  one or more delivery components implemented on a computing device for providing the multi-factor authentication data to a user on a user device;
  
  wherein the multi-factor authentication data received on one of the one or more hardware source components is associated with the first user account and the second user account such that the multi-factor authentication data is retrievable on the first user account and the second user account.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 10. The system for managing multi-factor authentication of a user of claim 9, wherein one or more of the one or more source components comprises receiving a multi-factor authentication code via an SMS message.
  - 11. The system for managing multi-factor authentication of a user of claim 9, wherein one or more of the one or more source components comprises receiving a multi-factor authentication code via an audio message.
  - 12. The system for managing multi-factor authentication of a user of claim 9, wherein one or more of the one or more source components comprises receiving multi-factor authentication over a network via an API.
  - 13. The system for managing multi-factor authentication of a user of claim 9, wherein one or more of the one or more source components comprises generating a multi-factor authentication code using one or more of time-based one-time password and HMAC-based one-time password algorithms.
  - 14. The system for managing multi-factor authentication of a user of claim 9, wherein one or more of the one or more delivery components comprises an application implemented on the user'"'"'s mobile device.
  - 15. The system for managing multi-factor authentication of a user of claim 14, wherein the application implemented on the user'"'"'s mobile device comprises one of the one or more source components by forwarding authentication messages received on the user'"'"'s mobile device to the routing component.
  - 16. The system for managing multi-factor authentication of a user of claim 14, wherein the application implemented on the user'"'"'s mobile device verifies an identity of the user through biometric data collected via one or more sensors of the user'"'"'s mobile device.
  - 17. The system for managing multi-factor authentication of a user of claim 9, wherein one or more of the one or more delivery components comprises a browser extension implemented on a web browser of the user.
  - 18. The system for managing multi-factor authentication of a user of claim 17, wherein the browser extension implemented on the user'"'"'s web browser is further configured to input multi-factor authentication data into websites supporting multi-factor authentication.
  - 19. The system for managing multi-factor authentication of a user of claim 9, wherein one or more of the one or more delivery components comprises transmitting authentication data to a third-party service over a network via an API.
  - 20. The system for managing multi-factor authentication of a user of claim 9, wherein the database further comprises additional authentication data for authenticating the user with one or more third-party services, the additional authentication data comprising one or more of:
    - a username;
      
      an email address;
      
      a password;
      
      a recovery code;
      
      a PIN code;
      
      a security question;
      
      an answer to the security question;
      
      biometric data; and
      
      geolocation data.
  - 21. The system for managing multi-factor authentication of a user of claim 20, wherein one or more of the delivery components is further configured to provide the additional authentication to the user on a user device.
  - 22. The system for managing multi-factor authentication of a user of claim 9, further comprising an access control component for restricting user access to authentication data stored on the database based on one or more access control policies.
  - 23. The system for managing multi-factor authentication of a user of claim 22, wherein the access control module is further configured to allow two or more users access to the same multi-factor authentication data.
  - 24. The system for managing multi-factor authentication of a user of claim 9, further comprising an auditing component for retaining events related to user security, including one or more of:
    - addition of a user account;
      
      removal of a user account;
      
      retrieval of multi-factor authentication data from the database;
      
      addition of new multi-factor authentication data from the database;
      
      receipt of multi-factor authentication data via a network by a source component;
      
      a change of settings for a user account; and
      
      a user accessing a user account.
  - 25. The system for managing multi-factor authentication of a user of claim 24, wherein authentication data is displayed on the user-facing application interface only when a user provides instructions to retrieve the authentication data, and wherein the audit module retains information related to the user instructing the system to retrieve the authentication data to ensure that a record exists containing every instance the authentication data was accessed.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Vivek Chinar Nair
Original Assignee
Vivek Chinar Nair
Inventors
Nair, Vivek Chinar
Primary Examiner(s)
Pyzocha, Michael

Application Number

US15/845,400
Publication Number

US 20180176212A1
Time in Patent Office

925 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/40   by quorum, i.e. whereby two...

G06F 9/4451   User profiles; Roaming

G06F 9/547   Remote procedure calls [RPC...

G10L 15/26   Speech to text systems G10L...

H04L 2463/082   applying multi-factor authe...

H04L 63/0838   using one-time-passwords

H04L 63/0861   using biometrical features,...

H04L 9/0863   involving passwords or one-...

H04L 9/3228   One-time or temporary data,...

H04W 12/06   Authentication

H04W 4/12   Messaging; Mailboxes; Annou...

Secure system and method for managing the multi-factor authentication data of a user

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Secure system and method for managing the multi-factor authentication data of a user

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links