Authentication Techniques Utilizing a Computing Device
First Claim
1. A computer-readable storage medium comprising computer-executable instructions that, when executed by a computing device, cause the computing device at least to:
- establish a data session with an authentication server for authenticating a user to utilize a service;
send a device ID over the data session to the authentication server;
receive a sample phrase over the data session;
present a voiceprint matching prompt on a display of the computing device, the voiceprint matching prompt comprising a request for the user to speak the sample phrase;
receive a speech input of the sample phrase; and
transmit the speech input to the authentication server via the data session.
1 Assignment
0 Petitions
Accused Products
Abstract
A pre-registration procedure is utilized to create a user profile for a user of a multi-factor authentication (“MFA”) service. A client application installation procedure is utilized to install a client application on a computing device that is to be utilized as an authentication factor for the MFA service. A computing device enrollment procedure is utilized to enroll the computing device on which the client application was installed for the MFA service. A voice enrollment procedure is utilized to create a voice print for the user of the computing device that is to be utilized as an authentication factor for the MFA service. An authentication procedure is utilized to provide multi-factor authenticated access to a service, such as an online service that provides access to sensitive account information.
448 Citations
20 Claims
-
1. A computer-readable storage medium comprising computer-executable instructions that, when executed by a computing device, cause the computing device at least to:
-
establish a data session with an authentication server for authenticating a user to utilize a service; send a device ID over the data session to the authentication server; receive a sample phrase over the data session; present a voiceprint matching prompt on a display of the computing device, the voiceprint matching prompt comprising a request for the user to speak the sample phrase; receive a speech input of the sample phrase; and transmit the speech input to the authentication server via the data session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer-readable storage medium comprising computer-executable instructions that, when executed by an authentication server computer, cause the authentication server computer at least to:
-
receive an authentication request comprising a request to authenticate a user; in response to receiving the authentication request, generate a notification request, the notification request comprising an indication of a service; send the notification request to the computing device; if the notification request is accepted, establish a data session with the computing device for authenticating the user; receive a device ID over the data session from the computing device; authenticate the computing device using the device ID; select a sample phrase for use to authenticate the user; send the sample phrase to the computing device; receive a speech input of the sample phrase as provided by the user at the computing device; generate a speaker verification request comprising the speech input; send the speaker verification request to a speech server computer; receive a speaker verification response from the speech server computer, the speaker verification response comprising words in the speech input and an indication of how well the speech input matches a voice print; in response to receiving the verification response, generate an authentication result notification comprising the indication of whether or not the user is authenticated to use the service; and send the authentication result notification to the provider server computer. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. A computer-implemented method for setting up a multi-factor authentication service for a user, the computer-implemented method comprising computer-implemented operations for:
-
creating, at an authentication server computer, a user profile for the user for the multi-factor authentication service, the user profile comprising personal data of the user and an authentication credential selected by the user; generating, at the authentication server computer, a notification message comprising a link containing a one-time use encrypted token that is used to initiate, upon selection, download and subsequent installation of a multi-factor authentication client application on a computing device; sending, at the authentication server computer, the notification message to the computing device; receiving, at the authentication server computer, a token from the computing device in response to the computing device receiving a selection of the link included in the notification message; determining, at the authentication server computer, if the token is valid by comparing the token to the one-time use encrypted token contained in the link included in the notification message; if the authentication server computer determines that the token is valid, validating, at the authentication server computer, the multi-factor authentication client application that has been downloaded to and installed on the computing device, validating, at the authentication server computer, the computing device and saving a device identifier of the computing device to the user profile if the device identifier was not previously added to the user profile during creation of the user profile, and creating, at the authentication server computer, a voice print for the user and saving the voice print in association with the user profile, the voice print being created by collecting data from the user directly or from existing speech databases to which the user has contributed speech data; and if the authentication server computer determines that the token is not valid, ending the method. - View Dependent Claims (19, 20)
-
Specification