Verification engine for user authentication
First Claim
1. A user authentication system comprising:
- an authentication client for requesting authentication of a subject;
a user interface to receive the authentication request from the authentication client;
multiple independently operated databases, each database storing information associated with the subject, the associated information being accessible through predefined queries to identify the subject; and
a verification engine for facilitating authentication of the subject by receiving the authentication request, selecting one or more of the predefined queries, presenting the one or more selected queries to the subject via the authenticating client, receiving from the subject an answer to each of the one or more selected queries, and presenting the answer to the multiple independently operated databases for a validation response.
3 Assignments
0 Petitions
Accused Products
Abstract
An aspect of the present invention is embodied in a system for remote user authentication. An entity that wishes to authenticate a user can contact a verification engine, which, in turn, has limited access to a plurality of databases containing personal information about the user. The personal information in the databases is collected and stored by the individual operators of the databases in the ordinary course of their business with the user. The databases allow the verification engine to access the user'"'"'s personal information only through predefined queries. The verification engine presents the user with the queries and the user'"'"'s responses are presented to each corresponding database operator for validation. The database operators then return a confidence indication for the verification step and the verification engine combines the confidence indication from each database operator into a combined confidence indication used in authentication of the remote user.
61 Citations
5 Claims
-
1. A user authentication system comprising:
-
an authentication client for requesting authentication of a subject;
a user interface to receive the authentication request from the authentication client;
multiple independently operated databases, each database storing information associated with the subject, the associated information being accessible through predefined queries to identify the subject; and
a verification engine for facilitating authentication of the subject by receiving the authentication request, selecting one or more of the predefined queries, presenting the one or more selected queries to the subject via the authenticating client, receiving from the subject an answer to each of the one or more selected queries, and presenting the answer to the multiple independently operated databases for a validation response. - View Dependent Claims (2, 3)
-
-
4. An authentication system comprising:
-
an authentication client for desiring authentication of an authentication subject;
a plurality of independent database systems storing information identifying the authentication subject, the identifying information being accessible through predefined queries; and
a verification engine to receive from the authentication subject, via the authentication client, an answer to each of the predefined queries, to obtain from each of the plurality of independent database systems a corresponding authentication confidence for each answer, and to combine the corresponding authentication confidence for each answer into a combined authentication confidence.
-
-
5. A user authorization method comprising the steps of:
-
presenting to an authentication subject one or more predefined queries from each of multiple independent databases of identifying information;
receiving from the authentication subject an answer to each of the selected queries;
presenting each answer to at least one of the multiple independent databases that has corresponding identifying information;
obtaining from the multiple independent databases an authentication confidence level for each answer; and
combining the authentication confidence level for each answer into a combined confidence level for authenticating the authentication subject.
-
Specification