METHOD AND SYSTEM FOR ABSTRACTED AND RANDOMIZED ONE-TIME USE PASSWORDS FOR TRANSACTIONAL AUTHENTICATION

US 20120137353A1
Filed: 11/23/2011
Published: 05/31/2012
Est. Priority Date: 11/30/2010
Status: Abandoned Application

First Claim

Patent Images

1. A method for validating a user'"'"'s authenticity to access a secure system, the method comprising:

receiving an authentication request from the user;

generating a security matrix based on a user ID and user preference data and sending said matrix to the user;

receiving a one-time code from the user in response to the security matrix;

validating the one-time code based on the security matrix, the user ID, at least one user keyword, and user preference data;

after validating the one-time code, sending an authentication result to the user, said authentication result being based on the one-time code, the security matrix, the user ID, the user keyword, and user preferences; and

sending a success or fail message, distinct from the authentication result, to the secure system based on the authentication result.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A security system and method for authenticating a user'"'"'s access to a system is disclosed. The security system receives an authentication request from the user and responds by generating a security matrix based on a previously stored user keyword and user preference data, the security matrix being different for each authentication request. The security system sends the security matrix to the user and awaits a one-time code in response to the security matrix. The user forms the one-time code based on the user keyword, the user preferences, and the security matrix. The security system validates the one-time code against the security matrix, the keyword, and the user preferences, and responds by sending an authentication result to the user that either permits or denies access to the system. Additionally, the security system sends a success or fail message to the system to be accessed.

Citations

28 Claims

1. A method for validating a user'"'"'s authenticity to access a secure system, the method comprising:
- receiving an authentication request from the user;
  
  generating a security matrix based on a user ID and user preference data and sending said matrix to the user;
  
  receiving a one-time code from the user in response to the security matrix;
  
  validating the one-time code based on the security matrix, the user ID, at least one user keyword, and user preference data;
  
  after validating the one-time code, sending an authentication result to the user, said authentication result being based on the one-time code, the security matrix, the user ID, the user keyword, and user preferences; and
  
  sending a success or fail message, distinct from the authentication result, to the secure system based on the authentication result.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 20, 21, 22, 23, 24, 25, 26, 27, 28)
- - 2. The method of claim 1, wherein the user keyword is stored in encrypted form.
  - 3. The method of claim 1, generating a security matrix based on a user ID and user preference data includes generating a randomly arranged security matrix as specified by the user preference data.
  - 4. The method of claim 1, generating a security matrix based on a user ID and user preference data includes generating an alphabetically arranged security matrix as specified by the user preference data.
  - 5. The method of claim 1,wherein the authentication request includes a system ID;
    - andwherein the matrix generation is based on the user preference data, the user ID, and the system ID.
  - 6. The method of claim 1, wherein the step of generating a security matrix based on the user ID and user preference data includes constructing a custom representation of the security matrix.
  - 7. The method of claim 1,wherein the system has system preference data;
    - andwherein the step of generating a security matrix is based on the user ID, user preference data, and system preference data.
  - 8. The method of claim 1, wherein the step of generating a security matrix includes generating a matrix that is different from any previously generated matrix.
  - 9. The method of claim 1, wherein the authentication result includes a session ID to be used by the secure system.
  - 10. The method of claim 1, wherein the step of receiving the one-time code includes receiving the user ID, and system ID.
  - 11. The method of claim 1,wherein the user keyword consists of a plurality of characters;
    - andwherein the security matrix maps each character of the keyword to a corresponding number.
  - 12. The method of claim 11, wherein the user-preference data includes an indication to form the one-time code by modifying with an offset each number to which a character of the user keyword is mapped.
  - 13. The method of claim 11, wherein the user-preference data includes an indication to form the one-time code by modifying with a crawl each number to which a character of the user keyword is mapped.
  - 14. The method of claim 11, wherein the user-preference data includes an indication to form the one-time code by modifying with a jump each number to which a character of the user keyword is mapped.
  - 15. The method of claim 11, wherein the user-preference data includes an indication to form the one-time code by modifying with a mask each number to which a character of the user keyword is mapped.
  - 16. The method of claim 11, wherein the user-preference data includes an indication to form the one-time code by modifying with a user-chosen letter each number to which a character of the user keyword is mapped.
  - 17. The method of claim 11, wherein the user-preference data includes an indication to form the one-time code by modifying with a user-chosen word having a size equal to the keyword each number to which a character of the user keyword is mapped.
  - 18. The method of claim 1,wherein the step of receiving a one-time code from the user in response to the security matrix includes generating the one-time code based on an alternative keyword;
    - wherein validating the one-time code includes validating the one-time code based on the alternative keyword; and
      
      wherein sending the success or fail message includes a panic indication to the secure system such that the secure system protects the user.
  - 20. The security system of claim 17, wherein the security system receives the authentication request via the secure system.
  - 21. The security system of claim 17, wherein the security system sends the security matrix to the user via the secure system.
  - 22. The security system of claim 17,wherein the security system sends the security matrix to the secure system;
    - andwherein the secure system generates a custom representation of the security matrix and sends it to the user.
  - 23. The security system of claim 17, wherein the security system receives the one-time code via the secure system
  - 24. The security system of claim 17, wherein the security system sends the authentication result via the secure system.
  - 25. The security system of claim 17, wherein the client interface is a browser that runs on a client computer system.
  - 26. The security system of claim 17, wherein the client interface is an ATM machine.
  - 27. The security system of claim 17, wherein the client interface is a point of sale terminal.
  - 28. The security system of claim 17, wherein the client interface is a browser of a computer system operated by a customer representative of the system for which access is requested.

19. A security system for validating a user'"'"'s authenticity to access a secure system, the security system comprising:
- a security computer that is programmedto store a user keyword and user preference data,to receive an authentication request including a user ID from the user to access the secure system and to generate a security matrix in response to said authentication request based on stored user preference data and the user ID,to send the security matrix to the user and to receive from the user a one-time code,to validate the one-time code using the generated security matrix, the user keyword, and user preference data, and to send an authentication result based on the validation to the user, andto send a success or fail message, distinct from the authentication result, to the secure system based on the authentication result; and
  
  a client interface that enables the user to transmit to the security system an authentication request to access the secure system, receives and displays the security matrix, and enables the user to send the one-time code to the security system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Forticom Group Ltd. (VK Co., Ltd.)
Original Assignee
Platez Pty Limited
Inventors
Smales, Antony

Application Number

US13/304,155
Publication Number

US 20120137353A1
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

G06F 21/31   User authentication

G06F 21/36   by graphic or iconic repres...

G06F 21/83   input devices, e.g. keyboar...

H04L 63/0838   using one-time-passwords

H04L 9/3226   using a predetermined code,...

H04L 9/3271   using challenge-response

METHOD AND SYSTEM FOR ABSTRACTED AND RANDOMIZED ONE-TIME USE PASSWORDS FOR TRANSACTIONAL AUTHENTICATION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND SYSTEM FOR ABSTRACTED AND RANDOMIZED ONE-TIME USE PASSWORDS FOR TRANSACTIONAL AUTHENTICATION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links