WEBSITE AUTHENTICATION

US 20100269162A1
Filed: 04/15/2009
Published: 10/21/2010
Est. Priority Date: 04/15/2009
Status: Abandoned Application

First Claim

Patent Images

1. A method for website authentication, using at least one computer hardware device for performing the steps of:

receiving a request from a user to view a website within a graphical user interface (GUI);

generating a one time password (OTP);

storing the generated OTP in a database;

displaying the generated OTP on the GUI;

verifying an identity of the user by receiving an identification datum from a communication device;

receiving an entered OTP from the user;

comparing the entered OTP with the generated OTP; and

communicating whether the website is authenticated.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of website authentication including receiving a request from a user to view a website within a graphical user interface (GUI); generating a one time password (OTP); storing the generated OTP in a database; displaying the generated OTP on the GUI; verifying an identity of the user by receiving an identification datum from a communication device; receiving an entered OTP from the user; comparing the entered OTP with the generated OTP; and communicating whether the website is authenticated.

Citations

20 Claims

1. A method for website authentication, using at least one computer hardware device for performing the steps of:
- receiving a request from a user to view a website within a graphical user interface (GUI);
  
  generating a one time password (OTP);
  
  storing the generated OTP in a database;
  
  displaying the generated OTP on the GUI;
  
  verifying an identity of the user by receiving an identification datum from a communication device;
  
  receiving an entered OTP from the user;
  
  comparing the entered OTP with the generated OTP; and
  
  communicating whether the website is authenticated.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the identification datum includes at least one of an identification datum automatically generated by the communication device and an identification datum input by the user.
  - 3. The method of claim 1, wherein the verifying compares the identification datum with a stored identification datum in the database.
  - 4. The method of claim 2, wherein the identification datum is at least one of a caller ID, an account number, a password and a first geographical location.
  - 5. The method of claim 3, further comprising determining a second geographical location from the request from the user to view the website and storing the second geographical location in the database.
  - 6. The method of claim 1, wherein the communicating includes at least one of storing a fake website in the database and alerting an authentic website administrator of the fake website.

7. A website authentication system, including a computer hardware device comprising:
- a one time password (OTP) generator system for generating a OTP;
  
  a voice response unit (VRU) system for receiving at least one identification datum from a communication device;
  
  a user verification system for verifying an identity of the user by receiving an identification datum from the communication device;
  
  a comparison system for receiving an entered OTP from the user and comparing the entered OTP with the generated OTP; and
  
  a security alert system for communicating whether the website is authenticated.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15)
- - 8. The system of claim 7, wherein the OTP generator system receives a request from the user to view a website within a graphical user interface (GUI).
  - 9. The system of claim 7, wherein the comparison system communicates whether the website is authenticated.
  - 10. The system of claim 7, wherein the OTP generator system stores the generated OTP in a database.
  - 11. The system of claim 7, wherein the identification datum includes at least one of an identification datum automatically generated by the communication device and an identification datum input by the user.
  - 12. The system of claim 7, wherein the verification system compares the identification datum with a stored identification datum in the database.
  - 13. The system of claim 11, wherein the identification datum is at least one of a caller ID, an account number, a password and a first geographical location.
  - 14. The system of claim 13, wherein the OTP generator system determines a second geographical location from the request from the user to view the website and storing the second geographical location in the database.
  - 15. The system of claim 7, wherein the communicating includes at least one of storing a fake website in the database and alerting an authentic website administrator of the fake website.

16. A computer readable medium storing a program product for website authentication, comprising:
- program code for receiving a request from a user to view a website within a graphical user interface (GUI);
  
  program code for generating a one time password (OTP);
  
  program code for storing the generated OTP in a database;
  
  program code for displaying the generated OTP on the GUI;
  
  program code for verifying an identity of the user by receiving an identification datum from a communication device;
  
  program code for receiving an entered OTP from the user;
  
  program code for comparing the entered OTP with the generated OTP; and
  
  program code for communicating whether the website is authenticated.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The program product of claim 16, wherein the identification datum includes at least one of an identification datum automatically generated by the communication device and an identification datum input by the user.
  - 18. The program product of claim 16, wherein the verifying compares the identification datum with a stored identification datum in the database.
  - 19. The program product of claim 18, wherein the identification datum is at least one of a caller ID, an account number, a password and a first geographical location.
  - 20. The program product of claim 19, further comprising determining a second geographical location from the request from the user to view the website.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Bravo, Jose, Crume, Jeffery L.

Application Number

US12/423,928
Publication Number

US 20100269162A1
Time in Patent Office

Days
Field of Search
US Class Current

726/6
CPC Class Codes

G06F 21/31   User authentication

G06F 21/83   input devices, e.g. keyboar...

H04L 63/0838   using one-time-passwords

H04L 63/1483   service impersonation, e.g....

H04L 9/3228   One-time or temporary data,...

WEBSITE AUTHENTICATION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

WEBSITE AUTHENTICATION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links