METHOD AND SYSTEM FOR PROVIDING A SECURE LOGIN SOLUTION USING ONE-TIME PASSWORDS
First Claim
1. A method for enabling a user to log into a system requiring authentication, the method comprising:
- (a) providing a random login key to the user;
(b) receiving from the user identification means and a passcode, wherein the passcode is generated by the user in response to the random login key and is based on(i) a login key combination previously defined by the user, or(ii) a login key combination and PIN code previously defined by the user;
(c) and comparing the passcode to the random login key based on(i) the login key combination associated with the user;
or(ii) the login key combination and the PIN code associated with the user;
and authenticate the user if the user supplied identification means and passcode are a match.
0 Assignments
0 Petitions
Accused Products
Abstract
A method and system for a secure login solution for users logging into computers and systems that require authentication is provided incorporating one-time passwords. The method and system allows a user to establish a login key combination in relation to a login key structure. The login key combination is in association with an identification means, such as a username/ID, and allows the user to generate a one-time passcode in response to a random login key. The method and system is directed at situations where the user desires to log into a system from a computer or other electronic device that may not be secure, including for example from computers or devices other than the user'"'"'s own and/or by using a communications connection that may not be secure, such as a wireless network connection. The method and system is simple and easy to implement and does not require the use of physical devices.
87 Citations
3 Claims
-
1. A method for enabling a user to log into a system requiring authentication, the method comprising:
-
(a) providing a random login key to the user; (b) receiving from the user identification means and a passcode, wherein the passcode is generated by the user in response to the random login key and is based on (i) a login key combination previously defined by the user, or (ii) a login key combination and PIN code previously defined by the user; (c) and comparing the passcode to the random login key based on (i) the login key combination associated with the user;
or(ii) the login key combination and the PIN code associated with the user; and authenticate the user if the user supplied identification means and passcode are a match.
-
-
2. A system for authenticating a user on a computer, the system comprising:
-
(a) a display means linked to the computer, whereby the display means is operable to provide instructions to the user; (b) an input means linked to the computer, whereby the input means enables the user to provide identification means and a passcode; (c) a means for storing and retrieving the user'"'"'s information, the user'"'"'s information including the identification means and (i) a login key combination previously defined by the user;
or(ii) a login key combination and PIN code previously defined by the user; (d) and an authentication facility linked to the computer, the authentication facility being operable to provide instructions to the computer to; (i) provide a random login key to the user via the display means; (ii) receive from the user via the input means the identification means and the passcode, wherein the passcode is generated by the user in response to the random login key and is based on (A) the login key combination associated with the user;
or(B) the login key combination and the PIN code associated with the user; (iii) and compare the passcode to the random login key based on (A) the login key combination associated with the user;
or(B) the login key combination and the PIN code associated with the user; and authenticate the user if the user supplied identification means and the passcode are a match.
-
-
3. A computer program product, for use on a computer, the computer program product comprising:
-
(a) a computer usable medium; and (b) computer readable program code recorded or storable on the computer useable medium, the computer readable program code defining an authentication application on the computer that is operable on the computer to; (i) provide a random login key to a user; (ii) receive from the user identification means and a passcode, wherein the passcode is generated by the user in response to the random login key and is based on (A) a login key combination previously defined by the user;
or(B) a login key combination and PIN code previously defined by the user; (iii) and compare the passcode to the random login key based on (A) the login key combination associated with the user;
or(B) the login key combination and PIN code associated with the user; and authenticate the user if the user supplied identification means and the passcode are a match.
-
Specification