Multifactor Authentication
First Claim
Patent Images
1. A method for use in authenticating transactions comprising:
- receiving a request from a terminal to authenticate a transaction;
receiving information from the terminal identifying a token that is being used to initiate the transaction;
identifying a mobile device that is associated with the token;
determining the location of the mobile device;
comparing the location of the mobile device with the location of the transaction; and
authenticating the transaction if the location of the mobile device is within a predetermined area relative to the location of the transaction.
0 Assignments
0 Petitions
Accused Products
Abstract
An electronic device with radio and GNSS receiving capabilities is used to provide a second or further authentication factor to current and future transaction systems. The device'"'"'s embedded characteristics are combined with GNSS data into a unique identifiable device code. The device can be used initially to put a bank or credit card into a “transaction enabled” mode. The location of the electronic device can be compared to the location from which a request to use the enabled card originates.
304 Citations
36 Claims
-
1. A method for use in authenticating transactions comprising:
-
receiving a request from a terminal to authenticate a transaction; receiving information from the terminal identifying a token that is being used to initiate the transaction; identifying a mobile device that is associated with the token; determining the location of the mobile device; comparing the location of the mobile device with the location of the transaction; and authenticating the transaction if the location of the mobile device is within a predetermined area relative to the location of the transaction. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 13, 14)
-
-
2. A method for multi-factor transaction authentication in a system comprising a terminal, the method comprising:
-
determining token identifying details for a token that is to be used to initiate a transaction; obtaining an authentication key; identifying a mobile device that is associated with the token; determining the location of the mobile device; and authenticating the transaction if the location of the mobile device is within a predetermined area relative to the location of the transaction and the authentication key is successfully validated with the token identifying details.
-
-
10. A method for use in authenticating a transaction comprising:
-
determining token identifying details for a token that is to be used in the transaction; obtaining an authentication key; validating the authentication key with the token identifying details; transmitting information associated with the location of the transaction and the token identifying details to a remote security apparatus; and receiving authorisation information for indicating if the transaction can be processed. - View Dependent Claims (11, 12)
-
-
15. A transaction authentication apparatus comprising:
-
terminal communication means for communicating with a remote terminal, adapted to receive information identifying a token being used to initiate a transaction; identifying means for identifying a mobile device associated with said token; determining means for determining the location of said mobile device; and comparing means for comparing the location of said mobile device with the location of said transaction. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 26)
-
-
16. An apparatus for use in multi-factor transaction authentication comprising a terminal, the terminal comprising:
-
token reading means; authentication key input means; and validating means for validating an authentication key with token identifying information;
the apparatus further comprising;identifying means for identifying a mobile device associated with said token; determining means for determining the location of said mobile device; and comparing means for comparing the location of said mobile device with the location of a transaction.
-
-
24. A terminal apparatus for use in authenticating a transaction comprising:
-
token reading means for obtaining token identifying information; authentication key input means for receiving an authentication key; validating means for validating the authentication key with the token identifying information; communication means for transmitting information associated with the location of the terminal apparatus and the token identifying information to a remote security apparatus, and further adapted for receiving token authentication information; and authentication means for authenticating said transaction according to said token authentication information and the output from said validity means. - View Dependent Claims (25, 27)
-
-
28. A method for use in authenticating a transaction comprising:
-
obtaining an instruction for a mobile device to enter a transaction enabled mode; and transmitting to a remote security apparatus mobile device location information and a unique identifier code. - View Dependent Claims (29, 30, 31, 32)
-
-
33. A mobile device for use in authenticating a transaction comprising:
-
an interface for receiving instructions from a user and displaying information; means for selectively switching said mobile device to a transaction enabled mode; location determining means for determining location information relating to the location of the mobile apparatus; a unique identifier code for identifying the apparatus; and communication means for transmitting the location information and unique identifier code when in said transaction enabled mode. - View Dependent Claims (34, 35, 36)
-
Specification