METHODS AND SYSTEMS FOR USER AUTHENTICATION

US 20090241175A1
Filed: 03/20/2008
Published: 09/24/2009
Est. Priority Date: 03/20/2008
Status: Abandoned Application

First Claim

Patent Images

1. A method of authenticating a user over a network, comprising:

receiving over the network at an authentication system coupled to at least one network a login request from a user;

generating an electronic readable identifier which includes at least in part a first session identifier associated with the user login request;

causing at least in part the electronic readable identifier to be displayed on a terminal associated with the user;

determining a destination to transmit a phone identifier associated with the user and the first identifier to;

transmitting the first session identifier and the phone identifier to the destination;

receiving from a mobile device information obtained from the electronic readable identifier;

comparing the phone identifier with stored phone identifiers; and

enabling the user login associated with the first session identifier if the phone identifier corresponds to a stored phone identifier.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention relates to authentication, and in particular, to methods and systems for authenticating a user using electronic readable identifiers, networks, and data terminals. The user experience in accessing private accounts is enhanced while keeping such access secure from unauthorized individuals.

102 Citations

View as Search Results

21 Claims

1. A method of authenticating a user over a network, comprising:
- receiving over the network at an authentication system coupled to at least one network a login request from a user;
  
  generating an electronic readable identifier which includes at least in part a first session identifier associated with the user login request;
  
  causing at least in part the electronic readable identifier to be displayed on a terminal associated with the user;
  
  determining a destination to transmit a phone identifier associated with the user and the first identifier to;
  
  transmitting the first session identifier and the phone identifier to the destination;
  
  receiving from a mobile device information obtained from the electronic readable identifier;
  
  comparing the phone identifier with stored phone identifiers; and
  
  enabling the user login associated with the first session identifier if the phone identifier corresponds to a stored phone identifier.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method as defined in claim 1, wherein the destination for transmitting the phone identifier and the first session identifier is determined at least in part from information included in the electronic readable identifier.
  - 3. The method as defined in claim 1, wherein the destination for transmitting the phone identifier and the first session identifier to is specified by the user.
  - 4. The method as defined in claim 1, the method further comprising determining if the phone identifier and the first session identifier were received within a specified time period, and if not, the user login is not allowed.
  - 5. The method as defined in claim 1, further comprising:
    - transmitting a first password to a terminal associated with the user;
      
      at least partly causing a password entry field to be displayed on the terminal;
      
      receiving a second password from the user; and
      
      enabling the user login at least partly in response to determining that the first password corresponds to the second password.

6. A method of authenticating a user over a network, comprising:
- receiving an indication that a user wants to login;
  
  generating an electronic readable identifier which includes at least in part a first identifier associated with the user login indication;
  
  causing at least in part the electronic readable identifier to be displayed on a terminal associated with the user;
  
  receiving over the network the first identifier and a phone identifier of the user; and
  
  enabling the user to login at least partly in response to a determination that the phone identifier corresponds to a stored phone identifier.
- View Dependent Claims (7, 8, 9, 10, 11, 12)
- - 7. The method as defined in claim 6, wherein the first identifier is a session identifier associated with the user login indication.
  - 8. The method as defined in claim 6, wherein a destination for routing the phone identifier and the first identifier is determined at least in part from information included in the electronic readable identifier.
  - 9. The method as defined in claim 6, determining if the phone identifier and the first session identifier were received within a specified time period, and if not, the user login is inhibited.
  - 10. The method as defined in claim 6, further comprising:
    - transmitting a first password to a user;
      
      receiving a second password from the user; and
      
      enabling the user login at least partly in response to a determination that the first password corresponds to the second password.
  - 11. The method as defined in claim 6, wherein the network includes the Internet, the public switched telephone network, the wireless voice network, the wireless data network, and/or a private data network.
  - 12. The method as defined in claim 6, wherein the electronic readable identifier includes at least a data matrix and/or barcode.

13. A method of authenticating a user over a network, comprising:
- receiving an indication that a user wants to login;
  
  receiving a customer identifier;
  
  generating an electronic readable identifier;
  
  causing at least in part the electronic readable identifier to be displayed on a terminal associated with the user;
  
  receiving over a network a phone identifier associated with the user; and
  
  enabling the user login at least partly in response to a determination that the phone identifier corresponds to a stored phone identifier.
- View Dependent Claims (14)
- - 14. The method as defined in claim 13, wherein the act of enabling the user login is further conditioned on the successful comparison of the received customer identifier with a stored customer identifier.

15. A method of authenticating a user over a network, comprising:
- storing a password in a computer readable medium;
  
  receiving an indication of a login request from a user;
  
  generating an electronic readable identifier which includes at least in part a first identifier associated with the user login indication;
  
  at least partly enabling the display of the electronic readable identifier on a terminal associated with the user;
  
  receiving over a network the first identifier, the password, and a phone identifier associated with the user; and
  
  enabling the user login if the phone identifier corresponds to a stored phone identifier and if the password corresponds to a stored password.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The method as defined in claim 15, wherein the first identifier is a session identifier associated with the user login indication.
  - 17. The method as defined in claim 15, wherein the password is a biometric of the user.
  - 18. The method as defined in claim 15, further comprising:
    - receiving a biometric from the user;
      
      enabling the user login if the received biometric corresponds to a previously stored biometric from the user.
  - 19. The method as defined in claim 15, wherein the destination for routing the first identifier, the password, and the phone identifier is determined at least in part from information included in the electronic readable identifier.
  - 20. The method as defined in claim 15, further comprising:
    - transmitting a second password to a user;
      
      receiving a third password from the user; and
      
      enabling the user login if the second password corresponds to the third password.
  - 21. The method as defined in claim 15, wherein the password is stored in a mobile device associated with the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
David Brahm, David Trandal
Original Assignee
David Brahm, David Trandal
Inventors
Brahm, David, Trandal, David

Application Number

US12/052,456
Publication Number

US 20090241175A1
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

G06F 21/42   using separate channels for...

H04L 63/0853   using an additional device,...

H04L 63/18   using different networks or...

METHODS AND SYSTEMS FOR USER AUTHENTICATION

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

102 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

METHODS AND SYSTEMS FOR USER AUTHENTICATION

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

102 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links