Authentication services using mobile device

US 20060206709A1
Filed: 03/24/2006
Published: 09/14/2006
Est. Priority Date: 08/08/2002
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

authenticating a mobile device communicably connectable to a wireless network by an authentication parameter from a secure transaction server (STS), as a mobile device authenticator;

providing an STS correlation between a personal identification entry (PIE) and the mobile device authenticator; and

inputting, by a user, the PIE and a provider action, to the mobile device authenticator to transmit a transformed secure user authenticable authorization request to the STS over the wireless network to authorize an action with a provider.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, and an apparatus performing the method, is provided by authenticating a mobile device communicably connectable to a wireless network by an authentication parameter from a secure transaction server (STS), as a mobile device authenticator; providing an STS correlation between a personal identification entry (PIE) and the mobile device authenticator; and inputting, by a user, the PIE and a provider action, to the mobile device authenticator to transmit a transformed secure user authenticable authorization request to the STS over the wireless network to authorize an action with a provider.

939 Citations

31 Claims

1. A method, comprising:
- authenticating a mobile device communicably connectable to a wireless network by an authentication parameter from a secure transaction server (STS), as a mobile device authenticator;
  
  providing an STS correlation between a personal identification entry (PIE) and the mobile device authenticator; and
  
  inputting, by a user, the PIE and a provider action, to the mobile device authenticator to transmit a transformed secure user authenticable authorization request to the STS over the wireless network to authorize an action with a provider.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method according to claim 1, further comprising:
    - generating a transaction token for the provider; and
      
      inputting, by the user, the PIE and the transaction token, to the mobile device authenticator to transmit the transformed secure user authenticable authorization request to the STS over the wireless network as a user authorization of the action with the provider, based upon the PIE, the transaction token and the authentication parameter.
  - 3. The method according to claim 2, wherein the provider comprises a physical environment, a computer system, or any combinations thereof, and the method further comprises:
    - attempting to access by the user a provider computer system, as the action with the provider;
      
      receiving by the STS, a provider authentication request, in response to the user attempted access to the provider computer system;
      
      transmitting by the STS the generated transaction token to the provider computer system, in response to the received provider authentication request; and
      
      verifying, by the STS, the provider authentication request and the user authorization to access the provider;
      
      transmitting, by the STS, a user authentication result to the provider computer system, according to the verifying; and
      
      authorizing the user access to the provider computer system, according to the user authentication result transmitted from the STS.
  - 4. The method according to claim 3, wherein the user attempted access to the provider computer system comprises submitting a single manipulation action request to the provider computer system.
  - 5. The method according to claim 3, wherein the mobile device authenticator is a mobile phone communicably connectable with a mobile phone network, wireless Internet, or any combinations thereof, as the wireless network, and the method further comprises:
    - associating, by the provider computer system, a user password and username for accessing the computer system with a mobile phone number of the mobile phone, and inputting by the user only the mobile phone number at the provider computer system in the attempting to access the provider computer system.
  - 6. The method according to claim 3, wherein the user attempted access to the provider computer system comprises login to the provider computer system using a username and password.
  - 7. The method according to claim 3, wherein the wireless network is Internet, and the method further comprises:
    - logging, by the STS, Internet Protocol (IP) address of a plurality of mobile device authenticators that transmit user authenticable authorization requests to the STS, wherein the STS verifying further comprises comparing the IP address of each mobile device authenticator with a corresponding authentication parameter.
  - 8. The method according to claim 3, wherein the transmitting of the user authentication result to the provider computer system further comprises transmitting, by the STS, a verification code to the mobile device authenticator and to the provider computer system, wherein the provider computer system authorizes access in response to the STS user authentication result and user input of the verification code.
  - 9. The method according to claim 3, wherein the provider computer system comprises an Internet web site login web page, and the transaction token is displayed on the login web page as a Completely Automated Public Turing Test To Tell Computers And Humans Apart (CAPTSHA).
  - 10. The method according to claim 1, wherein the mobile device authenticator is a mobile phone communicably connectable with a mobile phone network, or wireless Internet, or any combinations thereof, as the wireless network.
  - 11. The method according to claim 1, wherein the PIE is a 4 or more digit personal identification number, biometric information of the user, or any combinations thereof.
  - 12. The method according to claim 1, wherein the transformed secure user authenticable authorization request to the STS over the wireless network is a user payment authorization, and the method further comprises:
    - verifying, by the STS, a provider payment request and the user payment authorization; and
      
      settling by the STS the payment to the provider.
  - 13. The method according to claim 3, wherein the provider computer system is an automated teller machine (ATM), or a website, or any combinations thereof.
  - 14. The method according to claim 1, wherein the transformed secure user authenticable authorization request to the STS over the wireless network is according to Universal Pervasive Transaction Framework Secure Agreement Submission (UPTF SAS) protocol.
  - 15. The method according to claim 1, wherein the transformed secure user authenticable authorization request is a time-dependent and authentication parameter dependent user key, and the method further comprises:
    - presenting, by the user, the user key to the provider;
      
      transmitting, by the provider, the user key to the STS;
      
      generating, by the STS, an STS-generated user key for a current time, in response to receipt of the provider-submitted user key; and
      
      verifying a match between the STS-generated user key and the provider-submitted user key; and
      
      authenticating, by the STS, the user for the provider, according to the verifying.
  - 16. The method according to claim 1, further comprising:
    - generating a transaction token for the provider, wherein the transaction token is known to the STS;
      
      inputting, by the user, the PIE and the transaction token, to the mobile device authenticator to generate a transformed secure user authenticable authorization request as a user generated authentication token, based upon the PIE, the transaction token and the authentication parameter;
      
      presenting, by the user, the user generated authentication token at the provider;
      
      transmitting, by the provider, the user generated authentication token to the STS;
      
      generating, by the STS, an STS-generated user authentication token, in response to receipt of the provider-submitted user generated authentication token; and
      
      verifying a match between the STS-generated user authentication token and the provider-submitted user generated authentication token; and
      
      authenticating, by the STS, the user for the provider, according to the verifying.

17. A method, comprising:
- registering, by a provider, with a secure transaction server (STS) for a user authentication service to perform an action at the provider;
  
  wirelessly transmitting, by a user, a user authorization request to the STS;
  
  authenticating by the STS the user, according to the wirelessly transmitted user authorization request; and
  
  transmitting, by the STS, to the provider a user authentication service result to authorize the action at the provider, according to the authenticating.
- View Dependent Claims (18, 19, 20)
- - 18. The method of claim 17, wherein the wirelessly transmitting the user authorization request to the STS comprises wirelessly transmitting, by the user, the user authorization request in a short message service (SMS) to the STS, or inputting, by the user, the user authorization request including a personal identification entry (PEI) via an interactive voice response (IVR) system, or any combinations thereof.
  - 19. The method of claim 17, wherein the registering comprises associating user information to perform the action at the provider with a mobile phone number of the user.
  - 20. The method of claim 17, wherein the user authorization request is wirelessly transmitted in the SMS, and the method further comprises:
    - after the authenticating, wirelessly transmitting by the STS a confirmation SMS to a wireless number of the user wirelessly transmitting the user authorization request; and
      
      confirming by the user the confirmation SMS according to one or more of following a link in the confirmation SMS or inputting at the provider a code included in the confirmation SMS.

21. A method, comprising:
- registering, by a user, with a website provider a mobile device of the user for a mobile device payment service;
  
  registering, by the user, with the website provider an authentication instrument;
  
  purchasing, by the user, from the website provider using the registered mobile device, according to a process comprising;
  
  accessing the website via the mobile device, entering at the mobile device a mobile number of the registered mobile device, at a time of purchase at the website, selecting at the mobile device a payment method to the provider; and
  
  completing the purchase by presenting the provider-registered authentication instrument to collect the purchase.
- View Dependent Claims (22)
- - 22. The method of claim 21, further comprising:
    - wirelessly transmitting by the website provider a purchase confirmation short message service (SMS) including a transaction token to the mobile device, at the time of purchase; and
      
      completing the purchase by responding via the mobile device to the purchase confirmation SMS to collect the purchase.

23. A method, comprising:
- authenticating a mobile device communicably connectable to a wireless network by an authentication parameter from a secure transaction server (STS), as a mobile device authenticator;
  
  providing an STS correlation between a personal identification entry (PIE) and the mobile device authenticator;
  
  providing for a user bank automated teller machine (ATM) transaction, a mobile device user authentication;
  
  requesting, by the ATM, from the STS a transaction token for the mobile device user authentication of the user ATM transaction and presenting the transaction token to the user;
  
  requesting the user to verify the user ATM transaction from the mobile device authenticator of the user, according to the transaction token;
  
  transmitting by the ATM to the STS an ATM transaction authorization to authorize the mobile device user authentication of the user ATM transaction identified by the transaction token;
  
  inputting, by the user, a PIE and the transaction token, to the mobile device authenticator to transmit a transformed secure user authenticable authorization request to the STS over the wireless network as a user authorization of the user ATM transaction, based upon the PIE, the transaction token and the authentication parameter;
  
  verifying, by the STS, the ATM transaction authorization and the user ATM transaction authorization;
  
  transmitting, by the STS, a user authentication result to the ATM, according to the verifying; and
  
  completing the user ATM transaction, according to the user authentication result from the STS.

24. A method, comprising:
- authenticating a mobile device communicably connectable to a wireless network by an authentication parameter from a secure transaction server (STS), as a mobile device authenticator;
  
  providing an STS correlation between a personal identification entry (PIE) and the mobile device authenticator;
  
  identifying a bank automated teller machine (ATM);
  
  inputting, by the user, a PIE and an ATM identifier according to the ATM identifying, to the mobile device authenticator to transmit a transformed secure user authenticable authorization request to the STS over the wireless network as a user authorization of a mobile device user authentication of a user ATM transaction, based upon the PIE, the ATM identifier and the authentication parameter;
  
  transmitting by the STS to the ATM an ATM transaction information including a transaction token, as an ATM transaction authorization, based upon the user ATM transaction;
  
  verifying, by the STS, the ATM transaction authorization and the user ATM transaction authorization; and
  
  transmitting by the STS to the mobile device authenticator and the ATM, a confirmation code according to the verifying;
  
  presenting by the user the confirmation code to the ATM to complete the user ATM transaction.
- View Dependent Claims (25)
- - 25. The method according to claim 24, wherein the presenting the confirmation code to the ATM comprises using near field recognition with the ATM.

26. An apparatus, comprising:
- an authentic wireless communication processor, based upon an authentication parameter from a secure transaction server (STS), to control the apparatus according to a process comprising;
  
  receiving a personal identification entry (PIE) of a user and a provider action, and wirelessly transmitting a transformed secure user authenticable authorization request to the STS to authorize the action with the provider.
- View Dependent Claims (27, 28, 29, 30)
- - 27. The apparatus according to claim 26, wherein the transformed secure authenticable authorization request comprises:
    - inputting, by the user, the PIE and a transaction token, to apparatus to wirelessly transmit the transformed secure user authenticable authorization request to the STS as a user authorization to of the action with the provider, based upon the PIE, the transaction token and the authentication parameter.
  - 28. The apparatus according to claim 26, wherein the provider is an environment, a computer system, a web site, an automated teller machine, or any combinations thereof.
  - 29. The apparatus according to claim 26, wherein the wirelessly transmitting comprises wireless communication over a mobile phone network, or wireless Internet, or any combinations thereof.
  - 30. The apparatus according to claim 26, wherein the PIE is a 4 or more digit personal identification number, biometric information of the user, or any combinations thereof.

31. An apparatus, comprising:
- a provider system;
  
  a secure transaction server; and
  
  an authentic wireless communicator, based upon an authentication parameter from the secure transaction server (STS), to control the wireless communicator according to a process comprising;
  
  receiving a personal identification entry (PIE) of a user and a provider system action, and wirelessly transmitting a transformed secure user authenticable authorization request to the STS to authorize the action with the provider system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PCMS Holdings Incorporated (InterDigital, Inc.)
Original Assignee
Fujitsu Limited
Inventors
Labrou, Yannis, Agre, Jonathan Russell

Granted Patent

US 7,606,560 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/167
CPC Class Codes

G06Q 20/18   involving self-service term...

G06Q 20/4014   Identity check for transact...

G07F 19/211   Software architecture withi...

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04W 12/069   using certificates or pre-s...

H04W 8/26   Network addressing or numbe...

H04W 88/02   Terminal devices

Authentication services using mobile device

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

939 Citations

31 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication services using mobile device

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

939 Citations

31 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links