System and Method for Authenticating Suspect Devices

US 20140033292A1
Filed: 07/30/2012
Published: 01/30/2014
Est. Priority Date: 07/30/2012
Status: Abandoned Application

First Claim

Patent Images

1. A system comprising:

a memory operable to store a user account associated with a user; and

a processor communicatively coupled to the memory, the processor configured to;

receive a first notification associated with a first device;

determine whether the first device is associated with the user account;

reject authentication of the user in response to determining that the first device is not associated with the user account;

communicate a token to the first device in response to determining that the first device is associated with the user account;

receive a second notification associated with a second device, the second notification comprising a request to authenticate the user, wherein the user is attempting to access a service using a network;

determine an expiration threshold associated with the token;

determine time information associated with the second notification;

determine if the second notification comprises the token;

determine if the second notification comprises a verifier;

authenticate the user if;

the time information does not exceed the expiration threshold;

the second notification comprises the token; and

the verifier is associated with the user account;

determine if the second device is associated with the user account; and

authenticate the user if the second device is determined to be not associated with the user account and the second notification comprises user credentials associated with the user account.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In one embodiment, a system includes a memory and a processor communicatively coupled to the memory. The processor is operable to receive a first notification and determine whether the first device is associated with the user account. The processor is also operable to communicate a token to the first device in response to determining that the first device is associated with the user account. Additionally, the processor is operable to receive a second notification comprising a request to authenticate the user. The processor may also determine if the second notification comprises the token. The processor is operable to authenticate the user if the second notification comprises the token. The processor is also operable to authenticate the user if the second device is not associated with the user account and the second notification comprises user credentials associated with the user account.

28 Citations

View as Search Results

23 Claims

1. A system comprising:
- a memory operable to store a user account associated with a user; and
  
  a processor communicatively coupled to the memory, the processor configured to;
  
  receive a first notification associated with a first device;
  
  determine whether the first device is associated with the user account;
  
  reject authentication of the user in response to determining that the first device is not associated with the user account;
  
  communicate a token to the first device in response to determining that the first device is associated with the user account;
  
  receive a second notification associated with a second device, the second notification comprising a request to authenticate the user, wherein the user is attempting to access a service using a network;
  
  determine an expiration threshold associated with the token;
  
  determine time information associated with the second notification;
  
  determine if the second notification comprises the token;
  
  determine if the second notification comprises a verifier;
  
  authenticate the user if;
  
  the time information does not exceed the expiration threshold;
  
  the second notification comprises the token; and
  
  the verifier is associated with the user account;
  
  determine if the second device is associated with the user account; and
  
  authenticate the user if the second device is determined to be not associated with the user account and the second notification comprises user credentials associated with the user account.

2. A system comprising:
- a memory operable to store a user account associated with a user; and
  
  a processor communicatively coupled to the memory, the processor configured to;
  
  receive a first notification associated with a first device;
  
  determine whether the first device is associated with the user account;
  
  reject authentication of the user in response to determining that the first device is not associated with the user account;
  
  communicate a token to the first device in response to determining that the first device is associated with the user account;
  
  receive a second notification associated with a second device, the second notification comprising a request to authenticate the user;
  
  authenticate the user if the second notification comprises the token;
  
  determine if the second device is associated with the user account;
  
  authenticate the user if the second device is determined to be not associated with the user account and the second notification comprises user credentials associated with the user account.
- View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 3. The system of claim 2, wherein the processor is further configured to:
    - receive a third notification, wherein the third notification comprises the token and a second request to authenticate the user;
      
      determine if the user was authenticated, prior to receiving the third notification, based at least in part upon the token; and
      
      reject authentication of the user in response to determining that the user was authenticated, prior to receiving the third notification, based at least in part upon the token.
  - 4. The system of claim 2, wherein authenticating the user if the second notification comprises the token comprises:
    - determining expiration threshold associated with the token;
      
      determining time information associated with the second notification; and
      
      authenticating the user based at least in part upon the expiration threshold associated with the token and the time information associated with the notification.
  - 5. The system of claim 4, wherein authenticating the user based at least in part upon the expiration information associated with the token and the time information associated with the notification comprises:
    - determining whether the time information exceeds the expiration threshold;
      
      rejecting authentication of the user in response to determining that the time information exceeds the expiration threshold.
  - 6. The system of claim 2, wherein the processor is further configured to associate the token with the user account.
  - 7. The system of claim 2, wherein the second notification comprises an indication that the user is attempting to access a service.
  - 8. The system of claim 7, wherein the user is attempting to access the service using a network.
  - 9. The system of claim 7, wherein authenticating the user comprises allowing the user to access the service.
  - 10. The system of claim 2, wherein the first device is a selected one of the following:
    - a smart phone;
      
      a tablet device;
      
      a cellular device;
      
      a personal computer;
      
      ora key fob.
  - 11. The system of claim 2, wherein the second notification comprises a verifier and authenticating the user if the second notification comprises the token comprises:
    - determining if the verifier is associated with the user account.
  - 12. The system of claim 2, wherein the processor is further operable to authenticate the user if the second device is associated with the user account.

13. A method comprising:
- storing, using a processor, a user account associated with a user;
  
  receiving a first notification associated with a first device;
  
  determining, using the processor, whether the first device is associated with the user account;
  
  rejecting, using the processor, authentication of the user in response to determining that the first device is not associated with the user account;
  
  communicating, using the processor, a token to the first device in response to determining that the first device is associated with the user account;
  
  receiving a second notification associated with a second device, the second notification comprising a request to authenticate the user;
  
  determining, using the processor, whether the second device is associated with the user account;
  
  authenticating the user if the second notification comprises the token; and
  
  authenticating the user if the second device is determined to be not associated with the user account and the second notification comprises user credentials associated with the user account.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 14. The method of claim 13 further comprising:
    - receiving a third notification, wherein the third notification comprises the token and a second request to authenticate the user;
      
      determining if the user was authenticated, prior to receiving the third notification, based at least in part upon the token; and
      
      rejecting authentication of the user in response to determining that the user was authenticated, prior to receiving the third notification, based at least in part upon the token.
  - 15. The method of claim 13, wherein authenticating the user if the second notification comprises the token comprises:
    - determining an expiration threshold associated with the token;
      
      determining time information associated with the second notification; and
      
      authenticating the user based at least in part upon the expiration threshold associated with the token and the time information associated with the notification.
  - 16. The method of claim 15, wherein authenticating the user based at least in part upon the expiration information associated with the token and the time information associated with the notification comprises:
    - determining whether the time information exceeds the expiration threshold;
      
      rejecting authentication of the user in response to determining that the time information exceeds the expiration threshold.
  - 17. The method of claim 13 further comprising associating the token with the user account.
  - 18. The method of claim 13, wherein the second notification comprises an indication that the user is attempting to access a service.
  - 19. The method of claim 18, wherein the user is attempting to access the service using a network.
  - 20. The method of claim 15, wherein authenticating the user comprises allowing the user to access the service.
  - 21. The method of claim 13, wherein the first device is a selected one of the following:
    - a smart, phone;
      
      a tablet device;
      
      a cellular device;
      
      a personal computer;
      
      ora key fob.
  - 22. The method of claim 13, wherein the second notification comprises a verifier and authenticating the user if the second notification comprises the token comprises:
    - determining if the verifier is associated with the user account.
  - 23. The method of claim 13 further comprising authenticating the user if the second device is associated with the user account.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Moore, Cary Edward, Rose, Gary Robert

Application Number

US13/561,400
Publication Number

US 20140033292A1
Time in Patent Office

Days
Field of Search
US Class Current

726/9
CPC Class Codes

G06F 21/35 communicating wirelessly

G06F 21/43 wireless channels

System and Method for Authenticating Suspect Devices

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

28 Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

System and Method for Authenticating Suspect Devices

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

28 Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links