SYSTEM AND METHOD FOR AUTHENTICATING REMOTE SERVER ACCESS

US 20080098225A1
Filed: 10/19/2006
Published: 04/24/2008
Est. Priority Date: 10/19/2006
Status: Active Grant

First Claim

Patent Images

1. A method for authenticating that a valid user is accessing a website from a remote computer device comprising:

receiving user information from a computing device;

identifying a communication device based upon the user information;

transmitting an authentication request to a communication device on a wireless computer network;

receiving an authentication response from the communication device, the authentication response containing at least an authentication key;

determining if the authentication key is valid; and

granting the computing device access to a website if the authentication key is valid.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for providing secure authentication for website access or other secure transaction. In one embodiment, when a user accesses a website, the web server identifies the user, and sends an authentication request to the user'"'"'s mobile device. The mobile device receives the authentication requests and sends back authentication key to the web server. Upon verifying the authentication key, the web server grants the access to the user.

123 Citations

View as Search Results

35 Claims

1. A method for authenticating that a valid user is accessing a website from a remote computer device comprising:
- receiving user information from a computing device;
  
  identifying a communication device based upon the user information;
  
  transmitting an authentication request to a communication device on a wireless computer network;
  
  receiving an authentication response from the communication device, the authentication response containing at least an authentication key;
  
  determining if the authentication key is valid; and
  
  granting the computing device access to a website if the authentication key is valid.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising retrieving a user profile based on the user information.
  - 3. The method of claim 1, further comprising:
    - generating a session code;
      
      displaying the session code to the user at the computing device; and
      
      determining if a session code received with the authentication response matches the generated session code.
  - 4. The method of claim 1, wherein the authentication request is transmitted using a SMS message via a wireless communication network to the communication device.
  - 5. The method of claim 1, wherein the computing device is granted access by transmitting a message to the computing device.
  - 6. The method of claim 1, wherein the authentication response is received via a wireless communication network from the communication device.
  - 7. The method of claim 1, wherein the computing device and communication device are the same computer device.

8. A method for authenticating, through a remote wireless device, a user accessing a website comprising:
- receiving at the wireless device an authentication request from a server;
  
  prompting the user to enter a security code;
  
  verifying the security code; and
  
  sending authentication information to the server if the security code is verified.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The method of claim 8, wherein the authentication request is received by a SMS message via a wireless communication network from the server.
  - 10. The method of claim 8, wherein authentication information is sent via a wireless communication network to the server.
  - 11. The method of claim 8, further comprising:
    - retrieving the authentication information; and
      
      decrypting the authentication information.
  - 12. The method of claim 8, wherein authentication request is received for a user accessing a website through another computing device.
  - 13. The method of claim 8, further comprising:
    - providing a notice to the user; and
      
      receiving a password from the user.

14. An apparatus for authenticating a user accessing a website hosted by a remote server, comprising:
- a network interface unit communicating with a wireless communication network, the wireless communication network being in communication with the server, the network interface unit being capable of receiving an authentication request from the server and transmitting an authentication key to the server;
  
  a storage unit for storing the authentication key; and
  
  an authentication unit for analyzing the authentication request and decrypting the authentication key.
- View Dependent Claims (15)
- - 15. The apparatus of claim 14, wherein the authentication unit further being capable of identifying the user through a PIN.

16. A system for securely authenticating a user requesting access to a website, comprising:
- at least one computing device connected to a computer network and capable of accessing websites through the computer network;
  
  at least one wireless device in communication with a wireless communication network, the wireless communication network being in communication with the computer network; and
  
  a server hosting a website on the computer network, the server further being in communication with the computer network and the wireless communication network, the server being capable of receiving an access request from the at least one computing device and sending an authentication request to the at least one wireless device, the server further being capable of receiving authentication information from the at least one wireless device and sending an access grant to the at least one computing device.
- View Dependent Claims (17, 18, 19)
- - 17. The system of claim 16, wherein the at least one wireless device further being capable of:
    - receiving the authentication request via the wireless communication network from the server;
      
      prompting the user for a security code;
      
      verifying the security code; and
      
      sending the authentication information via the wireless communication network to the server if the security code is verified.
  - 18. The system of claim 16, wherein the server further being capable of identifying the at least one wireless device through the access request.
  - 19. The system of claim 16, wherein the server further being capable of verifying the authentication information.

20. A computer-readable medium comprising instructions, which, when executed by a machine, cause the machine to perform operations, the instructions comprising:
- instructions to receive user information from a computing device connected to a computer network;
  
  instructions to identify a communication device for the user;
  
  instructions to transmit an authentication request to the communication device;
  
  instructions to receive an authentication response from the communication device, the authentication response containing at least an authentication key;
  
  instructions to determine if the authentication key is valid; and
  
  instructions to grant the computing device access to the website if the authentication key is valid.
- View Dependent Claims (21, 22, 23, 24, 25)
- - 21. The computer-readable medium comprising instructions of claim 20, further comprising instructions to retrieve a user profile based on the user information.
  - 22. The computer-readable medium comprising instructions of claim 20, further comprising:
    - instructions to generate a session code;
      
      instructions to display the session code to the user; and
      
      instructions to determine if a session code received with the authentication response matches the generated session code.
  - 23. The computer-readable medium comprising instructions of claim 20, further comprising instructions to transmit a SMS message via a wireless communication network to the communication device.
  - 24. The computer-readable medium comprising instructions of claim 20, further comprising instructions to transmit a message to a computer.
  - 25. The computer-readable medium comprising instructions of claim 20, further comprising instructions to receive an authentication information via a wireless communication network from the communication device.

26. A computer-readable medium comprising instructions, which, when executed by a machine, cause the machine to perform operations, the instructions comprising:
- instructions to receive at the wireless device an authentication request from a server;
  
  instructions to prompt the user to enter a security code;
  
  instructions to verify the security code; and
  
  instructions to send authentication information to the server if the security code is verified.
- View Dependent Claims (27, 28, 29, 30, 31)
- - 27. The computer-readable medium comprising instructions of claim 26, further comprising instructions to receive a SMS message via a wireless communication network from the server.
  - 28. The computer-readable medium comprising instructions of claim 26, further comprising instructions to send the authentication information via a wireless communication network to the server.
  - 29. The computer-readable medium comprising instructions of claim 26, further comprising:
    - instructions to retrieve the authentication information; and
      
      instructions to decrypt the authentication information.
  - 30. The computer-readable medium comprising instructions of claim 26, wherein the security code is a password.
  - 31. The computer-readable medium comprising instructions of claim 26, wherein the instructions to prompt the user further comprise:
    - instructions to provide a notice to the user; and
      
      instructions to receive the password from the user.

32. A method for providing a secure transaction for a remote computer device to a server, comprising:
- receiving user information from a computing device;
  
  identifying a communication device based upon the user information;
  
  transmitting an authentication request to a communication device;
  
  receiving an authentication response from the communication device, the authentication response containing at least an authentication key;
  
  determining if the authentication key is valid; and
  
  performing a secure transaction with the computing device if the authentication key is valid.
- View Dependent Claims (33, 34, 35)
- - 33. The method of claim 32, further comprising:
    - generating a session code;
      
      displaying the session code to the user at the computing device; and
      
      determining if a session code received with the authentication response matches the generated session code.
  - 34. The method of claim 32, further comprising transmitting a SMS message via a wireless communication network to the communication device.
  - 35. The method of claim 32, wherein the computing device and communication device are the same computer device, and the transmitting occurs on the computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qualcomm, Inc.
Original Assignee
Qualcomm, Inc.
Inventors
Baysinger, Mark Wayne

Granted Patent

US 7,979,054 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/171
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless network architectu...

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 9/3215   using a plurality of channe...

H04L 9/3226   using a predetermined code,...

H04L 9/3234   involving additional secure...

SYSTEM AND METHOD FOR AUTHENTICATING REMOTE SERVER ACCESS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

123 Citations

35 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM AND METHOD FOR AUTHENTICATING REMOTE SERVER ACCESS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

123 Citations

35 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links