MOBILE DEVICE-BASED AUTHENTICATION
First Claim
1. A method of authenticating a user to a site resource, comprising:
- capturing a first biometric input from the user on an integrated first biometric reader on a mobile device, the first biometric input corresponding to a first biometric feature of the user;
deriving a first set of biometric data from the captured first biometric input;
transmitting the first set of biometric data to a remote authentication server from the mobile device;
transmitting a secondary authentication instruction to the site resource directly from the mobile device in response to receipt of the first biometric input;
capturing a second biometric input from the user on a second biometric reader connected to the site resource in response to the secondary authentication instruction, the second biometric input corresponding to a second biometric feature of the user;
deriving a second set of biometric data from the captured second biometric input;
transmitting the second set of biometric data to the remote authentication server from the site resource; and
authenticating the user for access to the site resource based upon a validation of both the first set of biometric data and the second set of biometric data against a pre-enrolled set of biometric data for the user stored on the remote authentication server;
wherein the first set of biometric data and the second set of biometric data are transmitted to the remote authentication server for validation, a successful authentication being conditioned upon the first set of biometric data and the second set of biometric data being transmitted to the remote authentication server substantially contemporaneously and from substantially proximate locations as specified to the remote authentication server.
0 Assignments
0 Petitions
Accused Products
Abstract
Mobile device-based authentication is disclosed. A first biometric input corresponding to a first biometric feature of the user is captured on the mobile device. A first set of biometric data is derived from the captured first biometric input. The first set of biometric data is transmitted to a remote authentication server. Thereafter, a secondary authentication instruction is transmitted to the site resource in response. Access to the site resource is permitted based upon a validation of the first set of biometric data, and a second biometric input that is captured on the site resource in response to the secondary authentication instruction received thereon. The first set of biometric data and the second set of biometric data are validated by remote authentication server substantially contemporaneously.
-
Citations
22 Claims
-
1. A method of authenticating a user to a site resource, comprising:
-
capturing a first biometric input from the user on an integrated first biometric reader on a mobile device, the first biometric input corresponding to a first biometric feature of the user; deriving a first set of biometric data from the captured first biometric input; transmitting the first set of biometric data to a remote authentication server from the mobile device; transmitting a secondary authentication instruction to the site resource directly from the mobile device in response to receipt of the first biometric input; capturing a second biometric input from the user on a second biometric reader connected to the site resource in response to the secondary authentication instruction, the second biometric input corresponding to a second biometric feature of the user; deriving a second set of biometric data from the captured second biometric input; transmitting the second set of biometric data to the remote authentication server from the site resource; and authenticating the user for access to the site resource based upon a validation of both the first set of biometric data and the second set of biometric data against a pre-enrolled set of biometric data for the user stored on the remote authentication server; wherein the first set of biometric data and the second set of biometric data are transmitted to the remote authentication server for validation, a successful authentication being conditioned upon the first set of biometric data and the second set of biometric data being transmitted to the remote authentication server substantially contemporaneously and from substantially proximate locations as specified to the remote authentication server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 13)
-
-
11. A method of authenticating a user to a site resource with a mobile device, comprising:
-
capturing a first biometric input from the user on the mobile device, the first biometric input corresponding to a first biometric feature of the user; deriving a first set of biometric data from the captured first biometric input; transmitting the first set of biometric data to a remote authentication server from the mobile device; and transmitting a secondary authentication instruction to the site resource directly from the mobile device in response to receipt of the first biometric input; wherein access to the site resource is permitted based upon a validation by the remote authentication server of the first set of biometric data transmitted from the mobile device and a second biometric input of a second biometric feature of the user captured on a second biometric reader of the site resource in response to the secondary authentication instruction received thereon and transmitted to the remote authentication server as a corresponding second set of biometric data, a successful validation being conditioned upon the first set of biometric data being transmitted to the remote authentication server substantially contemporaneously and from substantially proximate locations as specified to the remote authentication server. - View Dependent Claims (12, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. An article of manufacture comprising a non-transitory program storage medium readable by a data processing apparatus, the medium tangibly embodying one or more programs of instructions executable by the data processing apparatus to perform a method of authenticating a user to a resource with a mobile device, the method comprising:
-
capturing a first biometric input from the user an the mobile device, the first biometric input corresponding to a first biometric feature of the user; deriving a first set of biometric data from the captured first biometric input; transmitting the first set of biometric data to a remote authentication server from the mobile device; and transmitting a secondary authentication instruction to the site resource from the mobile device in response to receipt of the first biometric; wherein access to the site resource is permitted based upon a validation by the remote authentication server of the first set of biometric data transmitted from the mobile device and a second biometric input of a second biometric feature of the user captured on a second biometric reader of the site resource in response to the secondary authentication instruction received thereon and transmitted to the remote authentication server as a corresponding second set of biometric data, a successful validation being conditioned upon the first set of biometric data being transmitted to the remote authentication server substantially contemporaneously and from substantially proximate locations as specified to the remote authentication server.
-
Specification