Universal authentication token
First Claim
1. A method for provisioning a universal authentication token with authentication data from a plurality of devices, comprising:
- (a) establishing a communications connection between the universal authentication token and a device from which authentication data is to be imported;
(b) transmitting a request for authentication data to the device from which authentication data is to be imported;
(c) cryptographically authenticating the identity of the universal token to the device;
(d) transmitting user authentication data to the device from which authentication data is to be imported;
(e) authenticating the identity of a user of the universal authentication token to the device using the user authentication data; and
(f) receiving the requested authentication data if the identity of the universal token and the identity of the user of the universal authentication token are successfully authenticated.
5 Assignments
0 Petitions
Accused Products
Abstract
A universal authentication token is configured to securely acquire security credentials from other authentication tokens and/or devices. In this manner, a single universal authentication token can store the authentication credentials required to access a variety of resources, services and applications for a user. The universal authentication token includes a user interface, memory for storing a plurality of authentication records for a user, and a secure processor. The secure processor provides the required cryptographic operations to encrypt, decrypt, and/or authenticate data that is sent or received by universal token. For example, secure processor may be used to generate authentication data from seed information stored in memory.
256 Citations
20 Claims
-
1. A method for provisioning a universal authentication token with authentication data from a plurality of devices, comprising:
-
(a) establishing a communications connection between the universal authentication token and a device from which authentication data is to be imported;
(b) transmitting a request for authentication data to the device from which authentication data is to be imported;
(c) cryptographically authenticating the identity of the universal token to the device;
(d) transmitting user authentication data to the device from which authentication data is to be imported;
(e) authenticating the identity of a user of the universal authentication token to the device using the user authentication data; and
(f) receiving the requested authentication data if the identity of the universal token and the identity of the user of the universal authentication token are successfully authenticated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 18)
-
-
14. A universal authentication token for storing authentication data for a plurality of resources, comprising:
-
means for establishing a communications connection between the universal authentication token and one or more devices from which authentication data is to be imported;
means for receiving authentication data from the one or more devices;
secure processor including means for cryptographically authenticating the identity of the universal token to the device and means for authenticating the identity of a user of the universal token; and
memory configured to store a plurality of resource authentication records, one for each resource to which the user of the universal authentication token is enrolled. - View Dependent Claims (15, 16, 17, 19, 20)
-
Specification