Online data encryption and decryption

US 20070192615A1
Filed: 01/25/2006
Published: 08/16/2007
Est. Priority Date: 07/07/2004
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented authentication interface system comprising:

a server connected to a computer network;

a user computer connected to the computer network;

the user computer and the server programmed to send and receive information from each other over the computer network; and

a graphical interface comprising a combination image that includes a user-specific image correlated to a user-name, and an entry interface;

wherein the server is programmed to;

send the graphical interface to the user computer in response to the user-name received from the user computer, and the user computer is programmed to receive and display the graphical interface sent by the server; and

randomly alter the file size of the combination image by changing values to prevent a fraudulent entity from accurately identifying the combination image.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for providing encryption and decryption of data transmitted on a computer implemented network, preferably user authentication identifier data, such as a password, at the point of entry into the user'"'"'s computer. The systems and methods enable an end user to mentally select a marker from one of the randomly arranged elements on a first portion of a graphical image. A second portion of the graphical image includes an arrangement of possible elements of any individual authentication identifier sequence, and is positioned adjacent to the first portion. The systems and methods prompt a user to enter each element of the identifier by moving the selected marker and the first portion as necessary to substantially align the selected marker with a chosen element of the authentication identifier appearing on the outer portion. According to one embodiment, the image portions are concentric wheels. According to another embodiment, the image portions are arranged in adjacent rows.

137 Citations

View as Search Results

21 Claims

1. A computer-implemented authentication interface system comprising:
- a server connected to a computer network;
  
  a user computer connected to the computer network;
  
  the user computer and the server programmed to send and receive information from each other over the computer network; and
  
  a graphical interface comprising a combination image that includes a user-specific image correlated to a user-name, and an entry interface;
  
  wherein the server is programmed to;
  
  send the graphical interface to the user computer in response to the user-name received from the user computer, and the user computer is programmed to receive and display the graphical interface sent by the server; and
  
  randomly alter the file size of the combination image by changing values to prevent a fraudulent entity from accurately identifying the combination image.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 12, 13, 14)
- - 2. The authentication interface system of claim 1, wherein the entry interface is superimposed on the user-specific image.
  - 3. The authentication interface system of claim 1, wherein the graphical interface additionally comprises a user-specific text element.
  - 4. The authentication interface system of claim 1 wherein the entry interface is in the form of a keypad or a keyboard.
  - 5. The authentication interface system of claim 3 wherein the user-specific text element consists of a pre-selected, user-defined textual phrase.
  - 6. The authentication interface system of claim 1 wherein the user-specific image includes animated elements or a photograph.
  - 7. The authentication interface system of claim 1 wherein the image is check-sum encrypted by the server.
  - 8. The authentication interface system of claim 1 wherein the entry interface is shift encrypted by the server.
  - 12. The authentication interface system of claim 1, wherein the graphical interface further comprises an image of a document retrieved from a database that is displayed in response to a specific identifier input by the user into the graphical interface.
  - 13. The authentication interface system of claim 12, wherein:
    - at least part of the image is visible prior to entry of an identifier; and
      
      the obscured portions of the document become visible in response to the specific identifier.
  - 14. The authentication interface system of claim 13, wherein:
    - the entry interface is in the form of a keyboard; and
      
      the graphical interface additionally comprises user-specific text elements consisting of a pre-selected, user-defined textual phrase.

9. A computer-implemented authentication interface system comprising:
- a server connected to a computer network;
  
  a user computer connected to the computer network;
  
  the user computer and the server programmed to send and receive information from each other over the computer network; and
  
  a graphical interface comprising a combination image that includes a user-specific image correlated to a user-name, and an entry interface;
  
  wherein the user computer is programmed to receive and display a user-name interface, and to send to the server a user-name that is input by a user into the user-name interface, the server is programmed to correlate the user-name with a pre-defined list of user computers, and the server is programmed to send a personalized graphical interface to the user computer if the identity of the user computer matches one of the computers listed on the pre-defined list.
- View Dependent Claims (10, 11)
- - 10. The authentication interface system of claim 9 wherein the server is programmed to send a second interface to the user computer if the identity of the user computer does not match the identity of one of the user computers listed on the pre-defined list of user computers, and the second interface accepts an identifier from the user to authenticate the user'"'"'s identity.
  - 11. The authentication interface system of claim 10, wherein the second interface is personalized with a user-specific image correlated to the user-name to verify the identity of the server.

15. A computer implemented authentication method between a user and an entity holding information of a user, whereas the entity must authenticate the identity of the user prior to providing user access to the information, whereas the entity provides to the user a shift encrypted graphical interface comprising a combination image that includes a user-specific image correlated to the user and an entry interface, so that the user can authenticate the entity prior to attempting to access the information.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The method of claim 15, wherein the user inputs an identifier to access the information only after authenticating the identity of the entity providing the combination image.
  - 17. The method of claim 15 wherein a user provides a usemame to the entity prior to receiving the graphical interface.
  - 18. The method of claim 15 wherein the graphical interface additionally comprises a user-specific text element.
  - 19. The method of claim 15 wherein the graphical interface is encrypted by the entity.
  - 20. The method of claim 17 wherein the user provides an identifier identifying a specific computer being used to access the information, and the entity provides the graphical interface only after matching the identifier identifying the specific computer, to a computer listed on a pre-defined list of computers associated with the user.

21-23. -23. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Varghese, Thomas, Harris, Steven, Durai, Don, Fisher, Jon

Granted Patent

US 7,596,701 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/182
CPC Class Codes

G06F 21/36   by graphic or iconic repres...

G06F 21/83   input devices, e.g. keyboar...

G06Q 30/06   Buying, selling or leasing ...

H04L 63/08   for authentication of entit...

H04L 63/1441   Countermeasures against mal...

H04L 63/1483   service impersonation, e.g....

Online data encryption and decryption

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

137 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Online data encryption and decryption

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

137 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links