SECURE AUTHENTICATION
First Claim
Patent Images
1. A method comprising:
- conducting operations in a mobile wireless communications device using a controller of the mobile wireless communications device, the operations including;
capturing an image displayed on a client device;
decoding the image;
establishing a secure communication connection between the mobile wireless communications device and a server;
transmitting to the server, via the secure communication connection, authenticating data of a user log-in between the client device and the server without an authentication token, corresponding to the user log-in, being provided to the client device, the authenticating data being based on the decoded image;
conducting, after the user log-in, a confirmation of a transaction of an application of the server during an interactive session between the client device and the server, the confirmation being conducted via a communication from the mobile wireless communications device to the server to complete the confirmation without an authentication token being provided to the client device; and
generating, after the user log-in and the confirmation, a logoff request in the mobile wireless communications device to conduct a to off between the client device and the server, and transmitting the logoff request to the server, the logoff request including data to terminate connection of the server and the client device, the data corresponding to the user log-in between the client device and the server.
4 Assignments
0 Petitions
Accused Products
Abstract
Apparatus, systems, and methods provide a mechanism to enhance the security of operating client devices with systems controlling secure data. Various embodiments include apparatus and methods to authenticate a communication session between a server and a client device without providing authentication tokens to the client device. Additional apparatus, systems, and methods are disclosed.
-
Citations
30 Claims
-
1. A method comprising:
conducting operations in a mobile wireless communications device using a controller of the mobile wireless communications device, the operations including; capturing an image displayed on a client device; decoding the image; establishing a secure communication connection between the mobile wireless communications device and a server; transmitting to the server, via the secure communication connection, authenticating data of a user log-in between the client device and the server without an authentication token, corresponding to the user log-in, being provided to the client device, the authenticating data being based on the decoded image; conducting, after the user log-in, a confirmation of a transaction of an application of the server during an interactive session between the client device and the server, the confirmation being conducted via a communication from the mobile wireless communications device to the server to complete the confirmation without an authentication token being provided to the client device; and generating, after the user log-in and the confirmation, a logoff request in the mobile wireless communications device to conduct a to off between the client device and the server, and transmitting the logoff request to the server, the logoff request including data to terminate connection of the server and the client device, the data corresponding to the user log-in between the client device and the server. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. A method comprising:
-
conducting operations in a server using a controller of the server, the operations including; generating coded image data, the coded image data having data corresponding to a user log-in to the server; transmitting the coded image data to a client device; entering into a secure communication connection with a mobile wireless communications device; receiving via the secure communication connection, authenticating data of the user log-in between the client device and the server without an authentication token, corresponding to the user log-in, being provided to the client device, the authenticating data based on the coded image data transmitted to the client device; entering into an interactive session with the client device, without an authentication token being provided to the client device, based on comparing the authenticating data with the data of the coded image data, the interactive session corresponding to the user log-in; conducting a confirmation of a transaction of an application of the server during the interactive session between the client device and the server, the confirmation conducted in response to a communication from the mobile wireless communications device to complete the confirmation, the confirmation being conducted without an authentication token being provided to the client device; and conducting a logoff of the client device from the server, the logoff including receiving a logoff request from the mobile wireless communications device, the logoff request including data to terminate connection of the server and client device corresponding to the user log-in between the client device and the server. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
-
15. A machine-readable storage device having instructions stored thereon, which instructions, when executed by a processor, cause a mobile wireless communications device to perform operations, the operations comprising:
-
capturing an image displayed on a client device; decoding the image; establishing a secure communication connection between the mobile wireless communications device and a server; transmitting to the server, via the secure communication connection, authenticating data of a user log-in between the client device and the server without an authentication token, corresponding to the user log-in, being provided to the client device, the authenticating data being based on the decoded image; conducting, after the user log-in, a confirmation of a transaction of an application of the server during an interactive session between the client device and the server, the confirmation being conducted via a communication from the mobile wireless communications device to the server to complete the confirmation without an authentication token being provided to the client device; and generating, after the user log-in and the confirmation, a logoff request in the mobile wireless communications device to conduct a logoff between the client device and the server, and transmitting the logoff request to the server, the logoff request including data to terminate connection of the server and the client device, the data corresponding to the user log-in between the client device and the server. - View Dependent Claims (16, 17, 18)
-
-
19. A machine-readable storage device having instructions stored thereon, which instructions, when executed by a processor, cause a server to perform operations, the operations comprising:
-
generating coded image data, the coded image data having data corresponding to a user log-in to the server; transmitting the coded image data to a client device; entering into a secure communication connection with a mobile wireless communications device; receiving via the secure communication connection, authenticating data of the user log-in between the client device and the server without an authentication token, corresponding to the user log-in, being provided to the client device, the authenticating data based on the coded image data transmitted to the client device; entering into an interactive session with the client device, without an authentication token being provided to the client device, based on comparing the authenticating data with the data of the coded image data, the interactive session corresponding to the user log-in; conducting a confirmation of a transaction of an application of the server during the interactive session between the client device and the server, the confirmation conducted in response to a communication from the mobile wireless communications device to complete the confirmation, the confirmation being conducted without an authentication token being provided to the client device); and conducting a logoff of the client device from the server, the logoff including receiving a logoff request from the mobile wireless communications device, the logoff request including data to terminate connection of the server and client device corresponding to the user log-in between the client device and the server. - View Dependent Claims (20, 21, 22, 23)
-
-
24. A mobile wireless communications device comprising:
-
a processor; a memory operably coupled to the processor, the memory including data storage to store parameters to operate the mobile wireless communications device; a camera; a decoder; a communications interface, wherein the processor, the memory, the camera, the decoder, and the communications interface are arranged to operably; capture an image displayed on a client device; decode the image; establish a secure communication connection between the mobile wireless communications device and a server; transmit to the server, via the secure communication connection, authenticating data of a user log-in between the client device and the server without an authentication token, corresponding to the user log-in, being provided to the client device, the authenticating data being based on the decoded image; conduct, after the user log-in, a confirmation of a transaction of an application of the server during an interactive session between the client device and the server, the confirmation being conducted via a communication from the mobile wireless communications device to the server to complete the confirmation without an authentication token being provided to the client device; and generate, after the user log-in and the confirmation, a logoff request in the mobile wireless communications device to conduct a logoff between the client device and the server, and transmit the logoff request to the server, the logoff request including data to terminate connection of the server and the client device, the data corresponding to the user log-in between the client device and the server. - View Dependent Claims (25, 26)
-
-
27. A server comprising:
-
a processor; a memory operably coupled to the processor, the memory including data storage to store parameters to operate the server; an encoder; a communications interface, wherein the processor, the memory, the encoder, and the communications interface are arranged to operably; generate coded image data, the coded image data having data corresponding to a user log-in to the server; transmit the coded image data to a client device; enter into a secure communication connection with a mobile wireless communications device; receive via the secure communication connection, authenticating data of the user log-in between the client device and the server without an authentication token, corresponding to the user log-in, being provided to the client device, the authenticating data based on the coded image data transmitted to the client device; enter into an interactive session with the client device, without an authentication token being provided to the client device, based on comparing the authenticating data with the data of the coded image data, the interactive session corresponding to the user log-in; conduct a confirmation of a transaction of an application of the server during the interactive session between the client device and the server, the confirmation conducted in response to a communication from the mobile wireless communications device to complete the confirmation, the confirmation being conducted without an authentication token being provided to the client device; and conduct a logoff of the client device from the server, the logoff including receiving a logoff request from the mobile wireless communications device, the logoff request including data to terminate connection of the server and client device corresponding to the user log-in between the client device and the server. - View Dependent Claims (28, 29, 30)
-
Specification