METHOD FOR MOBILE SECURITY CONTEXT AUTHENTICATION

US 20140096215A1
Filed: 03/14/2013
Published: 04/03/2014
Est. Priority Date: 09/28/2012
Status: Active Grant

First Claim

Patent Images

1. A computer-based method for authenticating a user across a network, the steps comprising:

providing a host, a server, a presentation, and a device;

wherein said device includes one or more applications;

wherein said server includes a profile algorithm;

requesting an access to said host by a main user at said presentation over a user channel;

requesting said server to perform a context verification decision by said host over a host channel;

creating two or more template objects by said profile algorithm of said server;

wherein said two or more template objects are a first template and a second template;

sending an object to said host over said host channel by said server;

presenting said object to said device at said presentation and over said user channel by said host;

processing said first template by said server;

wherein said processing step of said first template is based upon one or more contextual factors;

populating said first template by said server;

creating and storing a first signature by said server;

wherein said creating step of said first signature is based upon said processing step of said first template;

consuming said object by said main user on said device through said one or more applications;

requesting said second template on said server over a smart channel by said one or more applications;

sending said second template to said one or more applications on said device over said smart channel by said server;

processing said second template by said one or more applications;

populating said second template by said one or more applications;

creating and storing a second signature by said one or more applications;

wherein said creating step of said second signature is based upon said second template; and

performing said context verification decision when comparing said first signature and said second signature over said smart channel.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention is a system and a method for improving the authentication security across a network from a mobile electronic computing device in the context of one or more users, devices, sites/sessions, servers, locations, proximity, motion and/or behavioral attributes within a defined session lifecycle. The authentication method and system utilizes a strong, elegant, private, definitive and real-time, triangulated verification, which requires mutual authentication between the parties.

Citations

20 Claims

1. A computer-based method for authenticating a user across a network, the steps comprising:
- providing a host, a server, a presentation, and a device;
  
  wherein said device includes one or more applications;
  
  wherein said server includes a profile algorithm;
  
  requesting an access to said host by a main user at said presentation over a user channel;
  
  requesting said server to perform a context verification decision by said host over a host channel;
  
  creating two or more template objects by said profile algorithm of said server;
  
  wherein said two or more template objects are a first template and a second template;
  
  sending an object to said host over said host channel by said server;
  
  presenting said object to said device at said presentation and over said user channel by said host;
  
  processing said first template by said server;
  
  wherein said processing step of said first template is based upon one or more contextual factors;
  
  populating said first template by said server;
  
  creating and storing a first signature by said server;
  
  wherein said creating step of said first signature is based upon said processing step of said first template;
  
  consuming said object by said main user on said device through said one or more applications;
  
  requesting said second template on said server over a smart channel by said one or more applications;
  
  sending said second template to said one or more applications on said device over said smart channel by said server;
  
  processing said second template by said one or more applications;
  
  populating said second template by said one or more applications;
  
  creating and storing a second signature by said one or more applications;
  
  wherein said creating step of said second signature is based upon said second template; and
  
  performing said context verification decision when comparing said first signature and said second signature over said smart channel.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The computer-based method of claim 1, the steps further comprising:
    - providing one or more additional external factors to said device by said host over said out-of-band channel.
  - 3. The computer-based method of claim 1, the steps further comprising:
    - deleting said one or more contextual factors by said server.
  - 4. The computer-based method of claim 1, wherein said processing step of said second template is performed based upon one or more contextual factors.
  - 5. The computer-based method of claim 1, wherein said creating and storing step of said first signature is based upon said consuming step of said object.
  - 6. The computer-based method of claim 1, wherein said creating and storing step of said first signature is based upon said processing step of said second template.
  - 7. The computer-based method of claim 1, the steps further comprising:
    - inputting one or more out-of-band data into said one or more applications;
      
      wherein said one or more out-of-band data is transmitted over said out-of-band channel.
  - 8. The computer-based method of claim 1, wherein said comparing step of said first signature and said second signature is performed by said server.
  - 9. The computer-based method of claim 1, wherein said comparing step of said first signature and said second signature is performed by said one or more applications.
  - 10. The computer-based method of claim 1, the steps further comprising:
    - authenticating said device when said first signature is essentially identical to said second signature.

11. A computer-based method for authenticating a user across a network, the steps comprising:
- providing a host, a server, a presentation, and a device;
  
  wherein said device includes one or more applications;
  
  wherein said server includes a profile algorithm;
  
  requesting an access to said host by a main user at said presentation over a user channel;
  
  requesting said server to perform a context verification decision by said host over a host channel;
  
  creating a first template and a second template by said profile algorithm of said server;
  
  sending an object to said host over said host channel by said server;
  
  presenting said object to said device at said presentation and over said user channel by said host;
  
  processing said first template by said server;
  
  wherein said processing step of said first template is based upon a first set of one or more contextual factors;
  
  populating said first template by said server;
  
  creating and storing a first signature by said server;
  
  wherein said creating step of said first signature is based upon said processing step of said first template;
  
  consuming said object by said main user on said device through said one or more applications;
  
  requesting said second template of said server over a smart channel by said one or more applications;
  
  sending said second template to said one or more applications on said device over said smart channel by said server;
  
  processing said second template by said one or more applications;
  
  populating said second template by said one or more applications;
  
  creating and storing a second signature by said one or more applications;
  
  wherein said creating step of said second signature is based upon said second template;
  
  performing said context verification decision when comparing said first signature and said second signature over said smart channel; and
  
  authenticating said device when said first signature is essentially identical to said second signature.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The computer-based method of claim 11, the steps further comprising:
    - providing one or more additional external factors to said device by said host over said out-of-band channel.
  - 13. The computer-based method of claim 12, the steps further comprising:
    - deleting said one or more contextual factors by said server.
  - 14. The computer-based method of claim 13, wherein said processing step of said second template is performed based upon a second set of one or more contextual factors.
  - 15. The computer-based method of claim 14, wherein said creating and storing step of said first signature is based upon said consuming step of said object.
  - 16. The computer-based method of claim 15, wherein said creating and storing step of said first signature is based upon said processing step of said second template.
  - 17. The computer-based method of claim 16, the steps further comprising:
    - inputting one or more out-of-band data into said one or more applications;
      
      wherein said one or more out-of-band data is transmitted over said out-of-band channel.
  - 18. The computer-based method of claim 17, wherein said comparing step of said first signature and said second signature is performed by said server.
  - 19. The computer-based method of claim 18, wherein said comparing step of said first signature and said second signature is performed by said one or more applications.

20. A computer-based method for authenticating a user across a network, the steps comprising:
- providing a host, a server, a presentation, and a device;
  
  wherein said device includes one or more applications;
  
  wherein said server includes a profile algorithm;
  
  requesting an access to said host by a main user at said presentation over a user channel;
  
  requesting said server to perform a context verification decision by said host over a host channel;
  
  creating a first template and a second template by said profile algorithm of said server;
  
  sending an object to said host over said host channel by said server;
  
  presenting said object to said device at said presentation and over said user channel by said host;
  
  processing said first template by said server;
  
  wherein said processing step of said first template is based upon one or more contextual factors;
  
  populating said first template by said server;
  
  creating and storing a first signature by said server;
  
  wherein said creating step of said first signature is based upon said processing step of said first template;
  
  wherein said creating and storing step of said first signature is based upon said consuming step of said object;
  
  consuming said object by said main user on said device through said one or more applications;
  
  requesting said second template of said server over a smart channel by said one or more applications;
  
  sending said second template to said one or more applications on said device over said smart channel by said server;
  
  processing said second template by said one or more applications;
  
  wherein said processing step of said second template is based upon of one or more contextual factors;
  
  populating said second template by said one or more applications;
  
  creating and storing a second signature by said one or more applications;
  
  deleting said one or more contextual factors by said server;
  
  wherein said creating step of said second signature is based upon said second template;
  
  performing said context verification decision when comparing said first signature and said second signature over said smart channel by said server and said one or more applications; and
  
  authenticating said device when said first signature is essentially identical to said second signature.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
LiveEnsure, Inc.
Original Assignee
LiveEnsure, Inc.
Inventors
Hessler, Christian J.

Granted Patent

US 8,935,769 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

G06F 21/30   Authentication, i.e. establ...

H04L 63/08   for authentication of entit...

H04L 63/0869   for achieving mutual authen...

H04W 12/06   Authentication

H04W 12/30   Security of mobile devices;...

H04W 12/63   Location-dependent; Proximi...

H04W 12/68   Gesture-dependent or behavi...

METHOD FOR MOBILE SECURITY CONTEXT AUTHENTICATION

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD FOR MOBILE SECURITY CONTEXT AUTHENTICATION

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links