Single-use password authentication
First Claim
1. In an environment that includes a client, a service provider, and an authentication service, a method of authenticating the client to the service provider using a one-time password, the method comprising the authentication service performing acts of:
- generating an authentication service identifier for the client;
receiving a client moniker from the client;
sending a one-time password to the client for the client to use in accessing the service provider;
receiving a one-time password from the service provider; and
if the one-time password received from the service provider matches the one-time password sent to the client, then sending the authentication service identifier for the client to the service provider to authenticate the client.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems, computer program products and methods for authentication using a one-time password. In system that includes a client, a service provider, and an authentication service, the authentication service generates an authentication service identifier for the client. Any suitable identifier may be used for the authentication service identifier, which generally takes the form of an arbitrary number of characters. From the client, the authentication service receives a client moniker (e.g., a username) for the client to use when accessing the authentication service. The authentication service sends a one-time password to the client for the client to use in accessing the service provider. When the authentication service receives a one-time password from the service provider, the authentication service sends the authentication service identifier for the client to the service provider to authenticate the client if the one-time password received from the service provider matches the one-time password sent to the client.
169 Citations
30 Claims
-
1. In an environment that includes a client, a service provider, and an authentication service, a method of authenticating the client to the service provider using a one-time password, the method comprising the authentication service performing acts of:
-
generating an authentication service identifier for the client;
receiving a client moniker from the client;
sending a one-time password to the client for the client to use in accessing the service provider;
receiving a one-time password from the service provider; and
if the one-time password received from the service provider matches the one-time password sent to the client, then sending the authentication service identifier for the client to the service provider to authenticate the client. - View Dependent Claims (2, 3, 4, 5)
-
-
6. In an environment that includes a client, a service provider, and an authentication service, a computer program product comprising one or more computer readable media carrying computer executable instructions that implement a method of authenticating the client to the service provider using a one-time password, the method comprising the authentication service performing acts of:
-
generating an authentication service identifier for the client;
receiving a client moniker from the client;
sending a one-time password to the client for use with the service provider;
receiving a one-time password from the service provider; and
if the one-time password received from the service provider matches the one-time password sent to the client, then sending the authentication service identifier for the client to the service provider to authenticate the client. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13)
-
-
14. In an environment that includes a client, a service provider, and an authentication service, a method of the service provider authenticating the client through a one-time password, the method comprising the service provider performing acts of:
-
associating an authentication service identifier for the client with a service provider identifier for the client;
receiving the service provider identifier for the client;
receiving a one-time password from the client to use in authenticating the client through the authentication service;
verifying that the service provider identifier for the client represents a valid service provider identifier;
sending the one-time password to the authentication service so that the authentication service can determine if a client authentication service identifier is associated with the one-time password at the authentication service and can be sent to the service provider; and
if an authentication service identifier for the client received from the authentication service matches the authentication service identifier for the client associated with the service provider identifier for the client at the service provider, then allowing the client access to one or more services offered by the service provider. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. In an environment that includes a client, a service provider, and an authentication service, a computer program product comprising one or more computer readable media carrying computer executable instructions that implement a method of the service provider authenticating the client through a one-time password, the method comprising the service provider performing acts of:
-
associating an authentication service identifier for the client with a service provider identifier for the client;
receiving the service provider identifier for the client;
receiving a one-time password from the client to use in authenticating the client through the authentication service;
verifying that the service provider identifier for the client represents a valid service provider identifier;
sending the one-time password to the authentication service so that the authentication service can determine if a client authentication service identifier is associated with the one-time password at the authentication service and can be sent to the service provider; and
if an authentication service identifier for the client received from the authentication service matches the authentication service identifier for the client associated with the service provider identifier for the client at the service provider, then allowing the client access to one or more services offered by the service provider. - View Dependent Claims (21, 22, 23, 24, 25, 26)
-
-
27. In an environment that includes a client, a service provider, and an authentication service, a computer program product comprising one or more computer readable media carrying computer executable instructions that implement a method of the client authenticating to the service provider using a one-time password, the method comprising the client performing acts of:
-
sending a client moniker to the authentication service;
receiving a one-time password from the authentication service that is associated with an authentication service identifier for the client to use in accessing the service provider;
sending a service provider identifier for the client to the service provider so that the service provider can locate the authentication service identifier for the client that is associated with the service provider identifier for the client at the service provider; and
sending the one-time password to the service provider so that the service provider can send the one-time password to the authentication service, receive the authentication service identifier for the client that is associated with the one-time password from the authentication service, and match the authentication service identifier for the client that is received from the authentication service with the authentication service identifier for the client that is associated with the service provider identifier for the client at the service provider. - View Dependent Claims (28, 29, 30)
-
Specification