AUTHENTICATION APPARATUS
First Claim
1. A method of using authentication apparatus to authenticate an access operation by a user by means of a multi-factor authentication process, the user having an associated access device and an associated notification device, said method including the step of notifying to the user'"'"'s notification device at least one factor for use in the multi-factor authentication process, the method comprising:
- transmission of a first factor of the multi-factor authentication process, in a notification message addressed to the notification device; and
detection at the authentication apparatus of initiation of the multi-factor authentication process from the access device, the detection being subsequent to said transmission.
4 Assignments
0 Petitions
Accused Products
Abstract
Multi-factor authentication apparatus pre-loads a first factor, for example a passcode, to user equipment such as a mobile telephone. The user subsequently initiates access to a protected product or service, triggering the apparatus to run a multi-factor authentication process, via an access device such as a computer connected to the Internet. The user enters the pre-loaded first factor, together with another factor such as a UserID and PIN. The pre-loading avoids vulnerability to communications problems at the time the user initiates access. Pre-loading is done every time an access session terminates for the user, either successful or failed and a user profile data store is used to manage passcodes in a manner that allows incorrectly entered first factors to be retried when delivery to user equipment is not possible.
-
Citations
15 Claims
-
1. A method of using authentication apparatus to authenticate an access operation by a user by means of a multi-factor authentication process, the user having an associated access device and an associated notification device, said method including the step of notifying to the user'"'"'s notification device at least one factor for use in the multi-factor authentication process, the method comprising:
-
transmission of a first factor of the multi-factor authentication process, in a notification message addressed to the notification device; and detection at the authentication apparatus of initiation of the multi-factor authentication process from the access device, the detection being subsequent to said transmission. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. Authentication apparatus for use in authenticating an access operation by a user by means of a multi-factor authentication process, the user having an associated access device and an associated notification device, said apparatus comprising:
-
a user profile data assembler for assembling data in relation to the user; a notification message transmitter for assembling and transmitting a message containing a first factor to the user'"'"'s notification device; and an authentication factor receiver for receiving factors of the multi-factor authentication from the user'"'"'s access device and for authenticating the user; wherein the notification message transmitter is triggerable to assemble and transmit a message containing a new first factor to the user'"'"'s notification device by termination of the multi-factor authentication process in respect of that user. - View Dependent Claims (12, 13, 14, 15)
-
Specification