System and method for providing authentication and authorization utilizing a personal wireless communication device
First Claim
1. A method for authenticating a user comprising:
- receiving an address of a mobile wireless communication device at a trusted server, wherein the address identifies the mobile communication device in a communication network;
locating the address of the mobile communication device among a plurality of addresses in a database, wherein the user is associated with the address in the database;
establishing, in response to the locating the address, a wireless communication link with the mobile wireless communication device;
receiving identifying information from the mobile communication device over a communication path including the wireless communication link; and
authenticating the user in response to the identifying information.
1 Assignment
0 Petitions
Accused Products
Abstract
An authorization and authentication system utilizing a mobile communication device. The authentication and authorization system enables a trusted server, in conjunction with a user controlled mobile communication device (which has been registered with the trusted site), to authorize a transaction carried out at a transaction management system. An identity of the user is authenticated by a verification that the user is in possession of the mobile communication device. In this way, the transaction management system is able to effectuate an authorized transaction with confidence that the authorization was from the user and not a third party. In variations, the authentication is a multi-factor authentication, i.e., the user must both possess the mobile communication device and information, e.g., a password.
278 Citations
26 Claims
-
1. A method for authenticating a user comprising:
-
receiving an address of a mobile wireless communication device at a trusted server, wherein the address identifies the mobile communication device in a communication network;
locating the address of the mobile communication device among a plurality of addresses in a database, wherein the user is associated with the address in the database;
establishing, in response to the locating the address, a wireless communication link with the mobile wireless communication device;
receiving identifying information from the mobile communication device over a communication path including the wireless communication link; and
authenticating the user in response to the identifying information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for obtaining access to a resource controlled by a transaction management system comprising:
-
providing an address of a mobile communication device to the transaction management system;
communicating the address of the mobile communication device from the transaction management system to a trusted server;
transmitting identifying information from the mobile communication device to the trusted server over a communication path including a wireless communication link;
providing an authentication message to the transaction management system in response to the trusted server verifying that the identifying information appropriately corresponds to the address of the mobile communication device, wherein the transaction management system provides access to the resource in response to the authentication message. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A mobile communication device for enabling a user to effectuate a transaction at a transaction management system comprising:
-
a user programmable memory comprising a representation of a password stored in connection with a registration of the mobile communication device with a trusted server, wherein the registration was facilitated by the user;
means for establishing a communication link with the trusted server;
means for providing information about the transaction to the user;
means for prompting the. user for a password in connection with the providing information about the transaction to the user;
means for receiving the password from the user;
means for performing a comparison operation involving the password and the representation of the password and for generating an indication in the event the comparison operation yields a match; and
means for transmitting, in response to the indication, identifying information to the trusted server, wherein the trusted server provides an authorization to the transaction management system to effectuate the transaction. - View Dependent Claims (21, 22, 23, 24, 25, 26)
-
Specification