Multichannel device utilizing a centralized out-of-band authentication system (COBAS)

US 20060041755A1
Filed: 10/21/2004
Published: 02/23/2006
Est. Priority Date: 09/05/2000
Status: Active Grant

First Claim

Patent Images

1. A multichannel security system for granting and denying access to a host computer, said access in response to a demand from an accessor for access to the host computer, said accessor having an associated peripheral device for providing communications to the security system, said multichannel security system comprising:

a login identification accompanying said demand from an accessor for access to said host computer;

interception means for receiving and verifying said login identification, said interception means in an access channel;

an authentication channel operating independently from said access channel and, said authentication channel, in turn, comprising;

a security computer adapted in the access-channel mode to receive from said interception means said demand for access together with said login identification and to communicate access information to said host computer and in the authentication-channel mode communications with said associated peripheral device of said accessor;

a subscriber database in said security computer for retrieval of peripheral addresses corresponding to said login identification;

said security computer adapted to connect to said associated peripheral device of said accessor;

prompt means for instructing said accessor to re-enter predetermined data at and retransmit predetermined data from said associated peripheral device to said multichannel security system;

comparator means in said security computer for authenticating access demands in response to retransmission of predetermined data from said associated peripheral device of said accessor; and

, said security computer, upon verifying a match between said predetermined data and the re-entered and retransmitted data, providing in the access-channel mode instructions to the host computer to grant access thereto along said access channel.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A multichannel security system is disclosed, which system is for granting and denying access to a host computer in response to a demand from an access-seeking individual and computer. The access-seeker has a peripheral device operative within an authentication channel to communicate with the security system. The access-seeker initially presents identification and password data over an access channel which is intercepted and transmitted to the security computer. The security computer then communicates with the access-seeker. A biometric analyzer—a voice or fingerprint recognition device—operates upon instructions from the authentication program to analyze the monitored parameter of the individual. In the security computer, a comparator matches the biometric sample with stored data, and, upon obtaining a match, provides authentication. The security computer instructs the host computer to grant access and communicates the same to the access-seeker, whereupon access is initiated over the access channel.

113 Citations

20 Claims

1. A multichannel security system for granting and denying access to a host computer, said access in response to a demand from an accessor for access to the host computer, said accessor having an associated peripheral device for providing communications to the security system, said multichannel security system comprising:
- a login identification accompanying said demand from an accessor for access to said host computer;
  
  interception means for receiving and verifying said login identification, said interception means in an access channel;
  
  an authentication channel operating independently from said access channel and, said authentication channel, in turn, comprising;
  
  a security computer adapted in the access-channel mode to receive from said interception means said demand for access together with said login identification and to communicate access information to said host computer and in the authentication-channel mode communications with said associated peripheral device of said accessor;
  
  a subscriber database in said security computer for retrieval of peripheral addresses corresponding to said login identification;
  
  said security computer adapted to connect to said associated peripheral device of said accessor;
  
  prompt means for instructing said accessor to re-enter predetermined data at and retransmit predetermined data from said associated peripheral device to said multichannel security system;
  
  comparator means in said security computer for authenticating access demands in response to retransmission of predetermined data from said associated peripheral device of said accessor; and
  
  , said security computer, upon verifying a match between said predetermined data and the re-entered and retransmitted data, providing in the access-channel mode instructions to the host computer to grant access thereto along said access channel.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. A multichannel security system as described in claim 1 wherein:
    - said associated peripheral device is a telephone with a tone generating keypad for entering data; and
      
      , said prompt means is an auditory message describing data to be entered.
  - 3. A multichannel security system as described in claim 2 wherein said security computer further comprises:
    - an announcement database therewithin; and
      
      a voice module capable of selecting a prerecorded auditory message from said announcement database and, for prompting the entry of data by said accessor, playing said prerecorded auditory message over said telephone.
  - 4. A multichannel security system as described in claim 3 wherein, upon attaining an access-granted condition, said security computer communicates in said authentication channel the access information to said accessor by selecting and transmitting an access-granted message from said announcement database and sequentially disconnecting from the connection with said telephone prior to use of said access channel.
  - 5. A multichannel security system as described in claim 2 wherein said authentication channel further comprises:
    - a voice module, in response to instructions from said security computer, capable of synthesizing an auditory message, and, for prompting the entry of data by said accessor, playing a synthesized auditory message over said telephone.
  - 6. A multichannel security system as described in claim 5 further comprising:
    - an announcement database therewithin and, upon attaining an access-granted condition, said security computer communicates in said authentication channel the access information to said accessor by selecting and transmitting an access-granted message from said announcement database and sequentially disconnecting from the connection with said telephone prior to use of said access channel.
  - 7. A multichannel security system as described in claim 1 wherein said security computer further comprises:
    - an authentication program means, operating independently from said host computer, for authenticating an individual demanding access to said host computer;
      
      a biometric analyzer operating in response to instructions from said authentication program means to analyze a monitored parameter of said accessor; and
      
      , a biometric parameter database addressable by the biometric analyzer for retrieval of a previously registered sample of said individual, said sample corresponding to the identifier of said accessor.
  - 8. A multichannel security system as described in claim 7 wherein said biometric analyzer is a voice recognition program for operation within said authentication channel to authenticate the accessor.
  - 9. A multichannel security system as described in claim 8 wherein said voice recognition program comprises:
    - a speech database in said security computer for retrieval of a speech sample of an accessor corresponding to the login identification of said accessor;
      
      said security computer adapted to provide instructions to connect and disconnect said security computer to and from said associated peripheral device of said accessor;
      
      voice sampling means for instructing said accessor to repeat back and transmit a predetermined auditory statement over said associated peripheral device to said security computer;
      
      voice recognition means in said security computer for authenticating access demands in response to transmission of said predetermined auditory statement received over said associated peripheral device of said accessor; and
      
      , said security computer, upon authenticating a match between the predetermined auditory statement and the transmitted voice data and upon disconnecting from said authentication channel, providing authentication of the accessor and instructing the host computer to. grant access along said access channel.
  - 10. A multichannel security system as described in claim 7 wherein said biometric analyzer is a fingerprint verification program for operation within said authentication channel to authenticate the accessor.

11. A multichannel security system for granting and denying access to a host computer, said access in response to a demand from an accessor for access to the host computer, said accessor having an associated cellular telephone for providing communications to the security system, said multichannel security system comprising:
- a login identification accompanying said demand from an accessor for access to said host computer;
  
  interception means for receiving and verifying said login identification, said interception means in an access channel;
  
  an authentication channel operating independently from said access channel and, said authentication channel, in turn, comprising;
  
  a security computer adapted in the access-channel mode to receive from said interception means said demand for access together with said login identification and to communicate access information to said host computer and in the authentication-channel mode communications with said associated cellular telephone of said accessor;
  
  a subscriber database in said security computer for retrieval of peripheral addresses corresponding to said login identification;
  
  said security computer adapted to connect to said associated cellular telephone of said accessor;
  
  prompt means for instructing said accessor to re-enter predetermined data at and retransmit predetermined data from said associated cellular telephone to said multichannel security system;
  
  comparator means in said security computer for authenticating access demands in response to retransmission of predetermined data from said associated cellular telephone of said accessor;
  
  said security computer, upon verifying a match between said predetermined data and the re-entered and retransmitted data, providing in the access-channel mode instructions to the host computer to grant access thereto along said access channel;
  
  an authentication program means, operating independently from said host computer, for authenticating an individual demanding access to said host computer;
  
  a biometric analyzer operating in response to instructions from said authentication program means to analyze a monitored parameter of said accessor; and
  
  , a biometric parameter database addressable by the biometric analyzer for retrieval of a previously registered sample of said individual, said sample corresponding to the identifier of said accessor.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. A multichannel security system as described in claim 11 wherein said security computer further comprises:
    - an announcement database therewithin; and
      
      a voice module capable of selecting a prerecorded auditory message from said announcement database and, for prompting the entry of data by said accessor, playing said prerecorded auditory message over said telephone.
  - 13. A multichannel security system as described in claim 12 wherein, upon attaining an access-granted condition, said security computer communicates in said authentication channel the access information to said accessor by selecting and transmitting an access-granted message from said announcement database and sequentially disconnecting from the connection with said telephone prior to use of said access channel.
  - 14. A multichannel security system as described in claim 11 wherein said authentication channel further comprises:
    - a voice module, in response to instructions from said security computer, capable of synthesizing an auditory message, and, for prompting the entry of data by said accessor, playing a synthesized auditory message over said telephone.
  - 15. A multichannel security system as described in claim 11 wherein said biometric analyzer is a voice recognition program for operation within said authentication channel to authenticate the accessor.
  - 16. A multichannel security system as described in claim 15 wherein said voice recognition program comprises:
    - a speech database in said security computer for retrieval of a speech sample of an accessor corresponding to the login identification of said accessor;
      
      said security computer adapted to provide instructions to connect and disconnect said security computer to and from said associated peripheral device of said accessor;
      
      voice sampling means for instructing said accessor to repeat back and transmit a predetermined auditory statement over said associated peripheral device to said security computer;
      
      voice recognition means in said security computer for authenticating access demands in response to transmission of said predetermined auditory statement received over said associated peripheral device of said accessor; and
      
      , said security computer, upon authenticating a match between the predetermined auditory statement and the transmitted voice data and upon disconnecting from said authentication channel, providing authentication of the accessor and instructing the host computer to grant access along said access channel.
  - 17. A multichannel security system as described in claim 11 wherein said biometric analyzer is a fingerprint verification program for operation within said authentication channel to authenticate the accessor.

18. A multichannel security system for granting and denying access to a host computer, said access in response to a demand over the internet from an accessor for access to the host computer, said accessor having an associated personal digital assistant (PDA) for providing communications to the security system, said multichannel security system comprising:
- a login identification accompanying said demand over the internet from an accessor for access to said host computer;
  
  interception means for receiving and verifying said login identification, said interception means in an access channel;
  
  an authentication channel operating independently from said access channel and, said authentication channel, in turn, comprising;
  
  a security computer adapted in the access-channel mode to receive from said interception means said demand over the internet for access together with said login identification and to communicate access information to said host computer and in the authentication-channel mode communications with said associated PDA of said accessor;
  
  a subscriber database in said security computer for retrieval of peripheral addresses corresponding to said login identification;
  
  said security computer adapted to connect to said associated PDA of said accessor;
  
  prompt means for instructing said accessor to re-enter predetermined data at and retransmit predetermined data from said associated PDA to said multichannel security system;
  
  comparator means in said security computer for authenticating access demands in response to retransmission of predetermined data from said associated PDA of said accessor;
  
  said security computer, upon verifying a match between said predetermined data and the re-entered and retransmitted data, providing in the access-channel mode instructions to the host computer to grant access thereto along said access channel;
  
  an authentication program means, operating independently from said host computer, for authenticating an individual demanding access to said host computer;
  
  a biometric analyzer operating in response to instructions from said authentication program means to analyze a monitored parameter of said accessor; and
  
  , a biometric parameter database addressable by the biometric analyzer for retrieval of a previously registered sample of said individual, said sample corresponding to the identifier of said accessor.
- View Dependent Claims (19, 20)
- - 19. A multichannel security system as described in claim 18 wherein said biometric analyzer is a fingerprint verification program for operation within said authentication channel to authenticate the accessor.
  - 20. A multichannel security system as described in claim 19 wherein, upon attaining an access-granted condition, said security computer communicates in said authentication channel the access information to said accessor by selecting and transmitting an access-granted message from said announcement database and sequentially disconnecting from the connection with said telephone prior to use of said access channel.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Strickforce Technologies Incorporated
Original Assignee
Netlabs.com, Inc.
Inventors
Pemmaraju, Ram

Granted Patent

US 7,870,599 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/182
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/42   using separate channels for...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

H04L 63/102   Entity profiles

H04L 63/18   using different networks or...

H04L 9/3215   using a plurality of channe...

H04L 9/3231   Biological data, e.g. finge...

Multichannel device utilizing a centralized out-of-band authentication system (COBAS)

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

113 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Multichannel device utilizing a centralized out-of-band authentication system (COBAS)

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

113 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links