AUTHORIZING SECURE RESOURCES

US 20080209213A1
Filed: 02/23/2007
Published: 08/28/2008
Est. Priority Date: 02/23/2007
Status: Abandoned Application

First Claim

Patent Images

1. A method, comprising:

receiving a request to access a secure resource and a verification telephone number from a first device;

establishing a secure session with a second device associated with the verification telephone number;

requesting an authentication mechanism from the second device to verify the secure resource request;

verifying the received authentication mechanism if the requested authentication mechanism is received from the second device; and

determining whether to grant or deny the first device access to the secure resource based on the verification of the received authentication mechanism.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system receives a request to access a secure resource and a verification telephone number from a first device, establishes a secure session with a second device associated with the verification telephone number, requests an authentication mechanism from the second device to verify the secure resource request, verifies the received authentication mechanism if the requested authentication mechanism is received from the second device, and determines whether to grant or deny the first device access to the secure resource based on the verification of the received authentication mechanism.

52 Citations

View as Search Results

27 Claims

1. A method, comprising:
- receiving a request to access a secure resource and a verification telephone number from a first device;
  
  establishing a secure session with a second device associated with the verification telephone number;
  
  requesting an authentication mechanism from the second device to verify the secure resource request;
  
  verifying the received authentication mechanism if the requested authentication mechanism is received from the second device; and
  
  determining whether to grant or deny the first device access to the secure resource based on the verification of the received authentication mechanism.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, further comprising:
    - associating the verification telephone number with the authentication mechanism.
  - 3. The method of claim 1, wherein establishing a secure session comprises:
    - generating a Short Message Service (SMS) signal that includes an address for establishing the secure session;
      
      providing the SMS signal to the second device; and
      
      establishing the secure session if the second device accesses the address.
  - 4. The method of claim 1, wherein verifying the received authentication mechanism comprises:
    - determining whether the received authentication mechanism matches an authentication mechanism associated with the verification telephone number.

5. A method, comprising:
- receiving a request to use a secure resource;
  
  determining a device associated with the secure resource;
  
  establishing a secure session with the device associated with the secure resource;
  
  requesting approval of the secure resource request from the device;
  
  verifying the approval if the approval of the secure resource request is received from the device; and
  
  determining whether to grant or deny the first device use of the secure resource based on the verification of the approval.
- View Dependent Claims (6, 7, 8)
- - 6. The method of claim 5, wherein establishing a secure session comprises:
    - generating a Short Message Service (SMS) signal that includes an address for establishing the secure session;
      
      providing the SMS signal to the device; and
      
      establishing the secure session if the device accesses the address.
  - 7. The method of claim 5, wherein requesting approval comprises:
    - providing a description of the secure resource to the device; and
      
      requesting signature of the description by the device with a private key.
  - 8. The method of claim 5, wherein verifying the approval comprises:
    - verifying the approval with a public key associated with the device.

9. A method implemented within a first device, comprising:
- receiving a Short Message Service (SMS) signal that includes an address for establishing a secure session to authenticate a request to access a secure resource by a second device;
  
  establishing the secure session based on the address;
  
  receiving a request for an authentication mechanism to authenticate the secure resource request; and
  
  providing the requested authentication mechanism if the secure resource request is to be authenticated.
- View Dependent Claims (10, 11)
- - 10. The method of claim 9, further comprising:
    - receiving an indication of whether access to the secure resource is granted or denied to the second device.
  - 11. The method of claim 9, wherein receiving a request for an authentication mechanism comprises:
    - receiving a description of the secure resource.

12. A method implemented within a first device, comprising:
- receiving a Short Message Service (SMS) signal that includes an address for establishing a secure session to approve a request to use a secure resource by a second device;
  
  establishing the secure session based on the address;
  
  receiving a request for approval of the secure resource request; and
  
  providing the requested approval if the secure resource request is to be approved.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The method of claim 12, further comprising:
    - receiving an indication of whether approval to use the secure resource is granted or denied to the second device.
  - 14. The method of claim 12, wherein receiving a request for approval comprises:
    - receiving a description of the secure resource; and
      
      receiving a request for signature of the description with a private key.
  - 15. The method of claim 14, wherein providing the requested approval comprises:
    - providing the description signed with the private key if the secure resource request is to be approved.
  - 16. The method of claim 12, wherein receiving a request for approval comprises at least one of:
    - receiving a description of the secure resource;
      
      receiving an identification of a user requesting use of the secure resource;
      
      orreceiving a random number identifying the secure resource request.

17. A method implemented within a first device, comprising:
- requesting access to or use of a secure resource;
  
  providing a verification telephone number identifying a second device, the second device authenticating the first device for access to or use of the secure resource; and
  
  receiving access to or use of the secure resource based on the authentication provided by the second device.

18. A system, comprising:
- means for receiving a request to access a secure resource from a first device;
  
  means for establishing a secure session, via a Short Message Service (SMS) signal, with a second, different device to authorize access to the secure resource;
  
  means for requesting approval of the secure resource request from the second device;
  
  means for verifying the approval if the approval of the secure resource request is received from the second device; and
  
  means for determining whether to grant or deny the first device access to the secure resource based on the verification of the approval.
- View Dependent Claims (19, 20)
- - 19. The system of claim 18, wherein the means for requesting approval comprises one of:
    - means for requesting an authentication mechanism from the second device to verify the secure resource request;
      
      ormeans for requesting signature of a description of the secure resource by the second device with a private key.
  - 20. The system of claim 18, wherein the means for verifying the approval comprises one of:
    - means for determining whether an authentication mechanism received from the second device matches an authentication mechanism associated with a verification telephone number of the second device;
      
      ormeans for verifying the approval with a public key associated with the second device.

21. A system, comprising:
- means for receiving a Short Message Service (SMS) signal that includes an address for establishing a secure session to authenticate a request to access a secure resource by a second device;
  
  means for establishing the secure session based on the address;
  
  means for receiving a request for approval of the secure resource request; and
  
  means for providing the requested approval if the secure resource request is to be approved.
- View Dependent Claims (22, 23, 24, 25)
- - 22. The system of claim 21, wherein the means for receiving a request comprises:
    - means for receiving a request for an authentication mechanism to authenticate the secure resource request.
  - 23. The system of claim 22, wherein the means for providing the requested approval comprises:
    - means for providing the requested authentication mechanism if the secure resource request is to be authenticated.
  - 24. The system of claim 21, wherein the means for receiving a request for approval comprises:
    - means for receiving a description of the secure resource and at least one of an identification of a user requesting use of the secure resource or a random number identifying the secure resource request; and
      
      means for receiving a request for signature of the description with a private key.
  - 25. The system of claim 24, wherein the means for providing the requested approval comprises:
    - means for providing the description signed with the private key if the secure resource request is to be approved.

26. A device, comprising:
- a memory to store a plurality of instructions; and
  
  a processor to execute instructions in the memory to;
  
  receive a request to access a secure resource from a first device,establish a secure session, via a Short Message Service (SMS) signal, with a second, different device to authorize access to the secure resource,request approval of the secure resource request from the second device,verify the approval if the approval of the secure resource request is received from the second device, anddetermine whether to grant or deny the first device access to the secure resource based on the verification of the approval.

27. A device, comprising:
- a memory to store a plurality of instructions; and
  
  processing logic to execute instructions in the memory to;
  
  receive a Short Message Service (SMS) signal that includes an address for establishing a secure session to authenticate a request to access a secure resource by a second device,establish the secure session based on the address,receive a request for approval of the secure resource request, andprovide the requested approval if the secure resource request is to be approved.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sony Ericsson Mobile Communications USA Incorporated (Sony Group Corp.)
Original Assignee
Sony Ericsson Mobile Communications USA Incorporated (Sony Group Corp.)
Inventors
Stavenow, Bengt Gunnar, Astrand, Per

Application Number

US11/678,426
Publication Number

US 20080209213A1
Time in Patent Office

Days
Field of Search
US Class Current

713/168
CPC Class Codes

H04L 63/083   using passwords cryptograph...

H04L 63/18   using different networks or...

H04L 63/205   involving negotiation or de...

AUTHORIZING SECURE RESOURCES

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

52 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

AUTHORIZING SECURE RESOURCES

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

52 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links