Flexible authentication with multiple levels and factors
First Claim
1. A method to authorize access to an authorizee, comprising:
- (a) providing a plurality of authentication levels, wherein each of said plurality of authentication levels comprises one or more authentication factors;
(b) selecting an access authentication level from said plurality of authentication levels; and
(c) requesting from said authorizee to communicate via a portable authentication device said access authentication level in order for said authorizee to be authorized said access.
0 Assignments
0 Petitions
Accused Products
Abstract
An authentication system and method are provided that offer greater degree of flexibility in using authentication devices while maintaining a high level of security. Roughly three parts of organization are distinguished. At the first part, an arbiter defines a plurality of authentication levels. Each authentication level distinguishes one or more authentication factors. At the second part, an authorizer selects an access authentication level from the defined plurality of authentication levels. At the third part, it is requested from an authorizee to communicate via a portable authentication device the selected access authentication level in order for the authorizee to be authorized said access. Greater flexibility is provided to an authorizer in selecting an access authentication level within the definitions set by an arbiter. Greater flexibility is provided to an authorizee in allowing modifications to an authentication level and/or authentication factors within the definitions and/or rules set by the arbiter and authorizee.
191 Citations
62 Claims
-
1. A method to authorize access to an authorizee, comprising:
-
(a) providing a plurality of authentication levels, wherein each of said plurality of authentication levels comprises one or more authentication factors;
(b) selecting an access authentication level from said plurality of authentication levels; and
(c) requesting from said authorizee to communicate via a portable authentication device said access authentication level in order for said authorizee to be authorized said access. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A portable authentication device carried by an authorizes to authorize access to said authorizee, comprising:
-
(a) a communication means to receive a request for said authorizee to communicate via said portable authentication device an access authentication level in order for said authorizee to be authorized said access, wherein said access authentication level comprises one or more authentication factors; and
(b) a modifying means to allow said authorizee to modify said access authentication level within a hierarchy of rules. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41)
-
-
42. A system for authorizing access to an authorizee, comprising:
-
(a) an arbiter to define a plurality of authentication levels, wherein each of said plurality of authentication levels comprises one or more authentication factors;
(b) an authorizer to select an access authentication level from said plurality of authentication levels;
(c) a portable authentication device carried by said authorizes;
(d) a request for said authorizee from said authorizer to communicate to said authorizer via said portable authentication device said access authentication level in order for said authorizee to be authorized said access, wherein said authorizer validates said communicated access authentication level; and
(e) said portable authentication device comprises modifying means to allow said authorizee to modify said access authentication level. - View Dependent Claims (43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62)
-
Specification