METHOD AND APPARATUS FOR ENABLING A USER TO SELECT AN AUTHENTICATION METHOD

US 20130019287A1
Filed: 09/18/2012
Published: 01/17/2013
Est. Priority Date: 01/03/2001
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

transmitting, by a computer-based system for facilitating selection of an authentication method, data having information regarding a first user selected authentication method from a web server to a security server and an application server, wherein the data includes information regarding a first user selected authentication method for accessing a restricted service; and

registering, by the computer-based system, the first user selected authentication method, wherein the data is transmitted from the application server to a database server; and

allowing, by the computer-based system, a change from the first user selected authentication method to a second authentication method.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention facilitates access to a restricted service related to secure transactions via a network. The present invention allows a user to select a minimum security level of authentication for its own login to a restricted service. The user'"'"'s selected minimum security level of authentication may be registered in an authentication method system, so that the user must use the selected minimum security level for authentication in order to gain access to the restricted service. Alternatively, the user may specify that the selected minimum security level for authentication may be over-turned by the user, or optionally re-set to a new authentication method depending on the needs of the user. As such, the present invention allows the user the flexibility to select its own authentication method for accessing a restricted service.

18 Citations

View as Search Results

20 Claims

1. A method comprising:
- transmitting, by a computer-based system for facilitating selection of an authentication method, data having information regarding a first user selected authentication method from a web server to a security server and an application server, wherein the data includes information regarding a first user selected authentication method for accessing a restricted service; and
  
  registering, by the computer-based system, the first user selected authentication method, wherein the data is transmitted from the application server to a database server; and
  
  allowing, by the computer-based system, a change from the first user selected authentication method to a second authentication method.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 2. The method of claim 1, further comprising authorizing the user to access a restricted service controlled by a host.
  - 3. The method of claim 1, further comprising enabling the user to gain access to a restricted service upon validating the user'"'"'s selected authentication method.
  - 4. The method of claim 1, wherein the allowing the change from the first user selected authentication method to the second authentication method is without accessing a first restricted service or a second restricted service, respectively, wherein the first user selected authentication method is associated with the first restricted service, and wherein the second authentication method is associated with the second restricted service.
  - 5. The method of claim 1, further comprising allowing selection of the authentication method by:
    - allowing, by the computer-based system, a change from at least one of the first authentication method or the second authentication method to a third authentication method from a plurality of methods of authentication, without accessing the first restricted service or the second restricted service, respectively;
      
      receiving, by the computer-based system, a request for access to at least one of the first restricted service or the second restricted service;
      
      causing, by the computer-based system, a user interface to display input fields corresponding to the first method of authentication in response to the request being associated with the first restricted service;
      
      causing, by the computer-based system, the user interface to display input fields corresponding to the second method of authentication in response to the request being associated with the second restricted service; and
      
      granting, by the computer-based system, access to at least one of the first restricted service in response to receiving predetermined input associated with the first method of authentication or the second restricted service in response to receiving predetermined input associated with the second method of authentication.
  - 6. The method of claim 5, wherein at least one of the first restricted service or the second restricted service is provided by a restricted service provider.
  - 7. The method of claim 5, wherein the plurality of methods of authentication are presented by a restricted service provider.
  - 8. The method of claim 5, wherein the plurality of methods of authentication includes at least one of:
    - user identification and password;
      
      user identification and pass-phrase;
      
      smart card and PIN;
      
      smart card and digital certificate;
      
      biometrics;
      
      sound verification;
      
      radio frequency and password;
      
      infrared and password;
      
      or handheld computing device and digital certificate.
  - 9. The method of claim 5, further comprising receiving a selection of more than one method of authentication, from the plurality of methods of authentication for access to the first restricted service.
  - 10. The method of claim 5, further comprising registering at least one of the first method of authentication or the second method of authentication as a minimum level of security for access to at least one of the first restricted service or the second restricted service.
  - 11. The method of claim 5, further comprising presenting, by the computer-based system, a query dialog box to query for selection of a level of security from a plurality of levels of security.
  - 12. The method of claim 5, further comprising presenting, by the computer-based system, a query dialog box to query for selection of a level of security from a plurality of levels of security presented by the first restricted service provider.
  - 13. The method of claim 11, wherein the plurality of levels of security correspond to a plurality of methods of authentication,
  - 14. The method of claim 11, wherein the plurality of levels of security correspond to a plurality of methods of authentication, wherein the plurality of methods of authentication includes at least one of:
    - user identification and password;
      
      user identification and pass-phrase;
      
      smart card and PIN;
      
      smart card and digital certificate;
      
      biometrics;
      
      sound verification;
      
      radio frequency and password;
      
      infrared and password;
      
      or handheld computing device and digital certificate.
  - 15. The method of claim 11, further comprising receiving a selection of more than one level of security, from the plurality of levels of security, for access to the first restricted service.
  - 16. The method of claim 5, further comprising receiving a selection of a fourth method of authentication, from the plurality of methods of authentication, for access to the second restricted service.
  - 17. The method of claim 5, further comprising restricting at least one of the first method of authentication or the second method of authentication to at least one of specific times of the day, specific locations or specific days.
  - 18. The method of claim 5, further comprising restricting at the least one of the first method of authentication or the second method of authentication to a user being a member of a specific group.

19. An article of manufacture including a non-transitory, tangible computer readable storage medium having instructions stored thereon that, in response to execution by a computer-based system for facilitating selection of an authentication method, cause the computer-based system to perform operations comprising:
- transmitting, by the computer-based system, data having information regarding a first user selected authentication method from a web server to a security server and an application server, wherein the data includes information regarding a first user selected authentication method for accessing a restricted service; and
  
  registering, by the computer-based system, the first user selected authentication method, wherein the data is transmitted from the application server to a database server; and
  
  allowing, by the computer-based system, a change from the first user selected authentication method to a second authentication method.

20. A system comprising:
- a processor for facilitating selection of an authentication method,a tangible, non-transitory memory configured to communicate with the processor,the tangible, non-transitory memory having instructions stored thereon that, in response to execution by the processor, cause the processor to perform operations comprising;
  
  transmitting, by the processor, data having information regarding a first user selected authentication method from a web server to a security server and an application server, wherein the data includes information regarding a first user selected authentication method for accessing a restricted service; and
  
  registering, by the processor, the first user selected authentication method, wherein the data is transmitted from the application server to a database server; and
  
  allowing, by the processor, a change from the first user selected authentication method to a second authentication method.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Liberty Peak Ventures, LLC (Dominion Harbor Enterprises, LLC)
Original Assignee
American Express Travel Related Services Company, Inc. (American Express Company)
Inventors
Nambiar, Anant, Johnson, Rick D., Foley, James M.

Granted Patent

US 8,856,897 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/4
CPC Class Codes

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04L 63/105   Multiple levels of security

H04L 63/205   involving negotiation or de...

METHOD AND APPARATUS FOR ENABLING A USER TO SELECT AN AUTHENTICATION METHOD

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

18 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND APPARATUS FOR ENABLING A USER TO SELECT AN AUTHENTICATION METHOD

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

18 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links