Authentication Method for Wireless Transactions
First Claim
Patent Images
1. A method of providing authentication of a transaction between a mobile device and a remote computer via a wireless communications link, the method comprising:
- i. performing a first method of authentication comprising;
a. verifying that a token stored in the mobile device corresponds with a token associated with that device at the remote computer; and
b. sending a new token from the remote computer to the mobile device during an active session to replace the existing token and associating the new token with the mobile device at the remote computer; and
ii. performing a second method of authentication prior to processing the transaction.
1 Assignment
0 Petitions
Accused Products
Abstract
An authentication method in which a token is associated with a mobile device and a user of a remote computer, it is established that the token at the mobile device and remote computer match and the token at the mobile device and remote computer is updated during a connection. Preferably a two factor authentication method is employed in which password authentication is the second factor.
77 Citations
44 Claims
-
1. A method of providing authentication of a transaction between a mobile device and a remote computer via a wireless communications link, the method comprising:
-
i. performing a first method of authentication comprising; a. verifying that a token stored in the mobile device corresponds with a token associated with that device at the remote computer; and b. sending a new token from the remote computer to the mobile device during an active session to replace the existing token and associating the new token with the mobile device at the remote computer; and ii. performing a second method of authentication prior to processing the transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 42, 44)
-
-
40. A mobile commerce system comprising:
-
i. a computer including memory for storing security tokens associated with user identification information; and ii. a communications gateway for conveying authentication information from a mobile network to the computer, wherein the computer is adapted to verify a token associated with a user during a session with a mobile device and to generate a new token, store it in memory and forward it to the mobile device via the communications gateway and to authenticate a transaction based upon the token received and a second authentication code received from the mobile device.
-
-
41. A mobile wireless communications device configured to store an authentication token, transmit the token over a wireless link at the initiation of a session and to replace the token with a new token received during the session.
-
43. A computer platform in communication with a wireless communications service, the computer platform configured to store a plurality of tokens associated with a plurality of users, to verify whether a token received during initiation of a session corresponds with a token associated with that user and to generate a new token during a session, associate it with the respective user and forward it to a mobile device associated with the user.
Specification