SYSTEM AND METHOD FOR INTEGRATING TWO-FACTOR AUTHENTICATION IN A DEVICE
First Claim
1. A method for a service provider with a device application to use a two-factor authentication service comprising:
- at the two-factor authentication service, providing a two-factor authentication software development kit;
configuring at least one service provider with software development kit credentials;
enrolling a device application instance of an account into a two-factor authentication service on behalf of a service provider comprising;
receiving a secondary factor of authentication enrollment request of an account, the request received from the service provider,transmitting an activation code to the service provider,the service provider, transferring the activation code to a device application instance,the device application instance communicating the activation code to the multi-factor authentication service, andat the multi-factor authentication service, pairing the device application instance with the account through the activation code;
at the service provider, transmitting an authentication request to the two-factor authentication service, wherein the authentication request identifies the account;
at the two-factor authentication service, transmitting an authentication request to the device application instance paired with the account;
at the device application instance, verifying the authentication request, rendering a user prompt from the authentication request with a service provider defined user interface, and transmitting a response to the multi-factor authentication service wherein the response is cryptographically secured with the software development kit credentials;
at the two-factor authentication service, determining a validity assessment of the response to the application request; and
transmitting the validity assessment to the service provider.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method for providing secondary-factor authentication with a third party application that can include enrolling a device application instance of an account into a secondary-factor authentication service on behalf of a service provider that includes at the secondary-factor authentication service, receiving a secondary factor of authentication enrollment request of an account, the request received from the service provider, transmitting an activation code, and pairing the device application instance with the account through the activation code; receiving an authentication request identifying the account; transmitting an authentication request to the device application instance paired with the account; validating a response to the application request; and transmitting an assessment to the service provider.
-
Citations
20 Claims
-
1. A method for a service provider with a device application to use a two-factor authentication service comprising:
-
at the two-factor authentication service, providing a two-factor authentication software development kit; configuring at least one service provider with software development kit credentials; enrolling a device application instance of an account into a two-factor authentication service on behalf of a service provider comprising; receiving a secondary factor of authentication enrollment request of an account, the request received from the service provider, transmitting an activation code to the service provider, the service provider, transferring the activation code to a device application instance, the device application instance communicating the activation code to the multi-factor authentication service, and at the multi-factor authentication service, pairing the device application instance with the account through the activation code; at the service provider, transmitting an authentication request to the two-factor authentication service, wherein the authentication request identifies the account; at the two-factor authentication service, transmitting an authentication request to the device application instance paired with the account; at the device application instance, verifying the authentication request, rendering a user prompt from the authentication request with a service provider defined user interface, and transmitting a response to the multi-factor authentication service wherein the response is cryptographically secured with the software development kit credentials; at the two-factor authentication service, determining a validity assessment of the response to the application request; and transmitting the validity assessment to the service provider.
-
-
2. A method for providing secondary-factor authentication with a third party application comprising:
-
enrolling a device application instance of an account into a secondary-factor authentication service on behalf of a service provider comprising; at the secondary-factor authentication service, receiving a secondary factor of authentication enrollment request of an account, the request received from the service provider, transmitting an activation code, and pairing the device application instance with the account through the activation code; receiving an authentication request identifying the account; transmitting an authentication request to the device application instance paired with the account; validating a response to the application request; and transmitting an assessment to the service provider. - View Dependent Claims (3, 4, 5, 6, 7, 8)
-
-
9. A method for using an authentication service comprising:
-
enrolling a device application instance of an account into an authentication service on behalf of a service provider comprising; at a service platform, receiving an activation code of an authentication enrollment request, facilitating transfer of the activation code to the device application instance, and at the device application instance, communicating to the authentication service with the activation code; at the service platform, completing a primary authentication of the account and transmitting an authentication request to the multi-factor authentication service, wherein the authentication request identifies the account; at the device application instance, receiving the authentication request; at the device application instance, validating the authentication; at the device application instance, rendering an authentication interface and receiving a user selected response option; at the device application, transmitting a response to the authentication service according to the user selected response option; at the service platform, receiving an assessment of the service provider. - View Dependent Claims (10, 11, 12)
-
-
13. A method for providing an authentication service with a third party application comprising:
-
providing an authentication software development kit configured to facilitate generating a single-use passcode; enrolling a device application instance of an account into the authentication service on behalf of a service provider comprising; at the authentication service, receiving a secondary factor of authentication enrollment request of an account, wherein the request is received from the service provider, transmitting an activation code that configures a passcode generation service of the authentication software development kit, and receiving an authentication request; at the authentication service, receiving a submitted passcode and determining a validity assessment of the submitted passcode; and transmitting the validity assessment to the service provider. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification