CALL AUTHENTIFICATION METHODS AND SYSTEMS
First Claim
1. A method of authenticating a calling party to a remote service, including:
- an authentication system receiving a request via a communications network to approve a future call to the remote service using a calling identifier associated with the calling party,the authentication system recording an approval of the future call subject to the future call being made within a predetermined period of time,the remote service receiving a call at a point in time using a calling identifier,determining if a call at that point in time using the received calling identifier is recorded as approved by the authentication system,if so, the remote service accepting the call and using the approval of the authentication system to authenticate the calling party.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method of authenticating a calling party to a remote service, including receiving a request via a communications network to approve a future call to the remote service using a calling identifier associated with the calling party, recording an approval of the future call subject to the future call being made within a predetermined period of time, the remote service receiving a call at a point in time using a calling identifier, determining if a call at that point in time using the received calling identifier is recorded as approved by the authentication system, and, if so, the remote service accepting the call and using the approval of the authentication system to authenticate the calling party.
-
Citations
32 Claims
-
1. A method of authenticating a calling party to a remote service, including:
-
an authentication system receiving a request via a communications network to approve a future call to the remote service using a calling identifier associated with the calling party, the authentication system recording an approval of the future call subject to the future call being made within a predetermined period of time, the remote service receiving a call at a point in time using a calling identifier, determining if a call at that point in time using the received calling identifier is recorded as approved by the authentication system, if so, the remote service accepting the call and using the approval of the authentication system to authenticate the calling party. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14, 15, 16, 17)
the authentication system determining whether the calling party authentication code authenticates the calling party, and recording the approval of the future call for the predetermined period of time only if the calling party authentication code authenticates the calling party.
-
-
3. A method of claim 2, wherein the calling party authentication code is a one time password generated using a code generation algorithm based on a shared secret key.
-
4. A method of claim 3, wherein the code generation algorithm is further based on user entered information associated with the calling party.
-
5. A method according to claim 1, further including:
the authentication system communicating a remote service authentication code to the calling party via the communications network, the remote service authentication code enabling the calling party to authenticate the remote service.
-
6. A method according to claim 1, further including:
-
after recording the approval of the future call for a predetermined period of time, the authentication system generating a session identifier for identifying the future call, the authentication system associating the session identifier with the calling identifier, and the authentication system communicating the session identifier to the calling party via the communications network.
-
-
7. A method according to claim 1, wherein the remote service receiving a call at a point in time using a calling identifier further includes the remote service receiving a session identifier.
-
8. A method according to claim 7, wherein the session identifier and calling identifier are received via the communications network as part of a same communications transmission.
-
9. A method according to claim 7, wherein the received session identifier is signed by the calling party.
-
10. A method according to claim 6, further including:
-
determining whether the received session identifier correlates correctly with a session identifier associated with the received calling identifier at the authentication system, the remote service further using the result of the determination to authenticate the calling party making the call using the received calling identifier.
-
-
11. A method according to claim 1, wherein the request to approve the future call includes the calling identifier associated with the calling party.
-
12. A method according to claim 1, wherein the request to approve the future call is received from a calling device having the calling identifier.
-
14. A method according to claim 10, wherein the call to the remote service is received via a different communications network to the request to approve the future call.
-
15. A method according to claim 14, wherein the request to approve the future call is received via the internet and the call to the remote service is received via a mobile phone network.
-
16. A method according to claim 12, wherein the request to approve the future call includes information relating to the calling device.
-
17. A method according to claim 16, further including:
-
determining a risk score for the future call based on the information relating to the calling device, and the remote service using the risk score to authenticate the calling party making the call using the received calling identifier.
-
-
13. (canceled)
-
18. (canceled)
-
19. A method of calling a remote service, including:
-
communicating a request to an authentication system via a communications network to approve a future call to the remote service using a calling identifier associated with a calling party, and calling the remote service from a calling device using the calling identifier. - View Dependent Claims (20, 21, 22, 23, 24, 25)
-
-
26. A method of authenticating a calling party to a remote service, including:
-
a calling device communicating a request via a communications network to an authentication system to approve a future call to a remote service using a calling identifier associated with the calling party, the authentication system receiving the request and recording an approval of the future call subject to the future call being made within a predetermined period of time, the calling device calling the remote service using the calling identifier, the remote service receiving the call at a point in time, the authentication system determining if a call at that point in time using the received calling identifier is recorded as approved, if so, the remote service accepting the call and using the approval of the authentication system to authenticate the calling party.
-
-
27. (canceled)
-
28. An authentication system including:
-
a communications port, a processor, a memory, and software resident in memory accessible to the processor, the software including a series of instructions executable by the processor to carry out a method of authenticating a calling party to a remote service, including; receiving a request to approve a future call to the remote service using a calling identifier associated with the calling party, recording an approval of the future call subject to the call being made within a predetermined period of time, receiving a request from a remote service to approve a call made at a point in time using a received calling identifier, determining if a call at that point in time using the received calling identifier is recorded as approved, and communicating the result of the determination to the remote service.
-
-
29. A calling device including:
-
a communications port, a processor, a memory, and software resident in memory accessible to the processor, the software including a series of instructions executable by the processor to carry out a method of calling a remote service, including; communicating a request to an authentication system via a communications network to approve a future call to the remote service using a calling identifier associated with a calling party, and calling the remote service from a calling device using the calling identifier.
-
-
30. (canceled)
-
31. (canceled)
-
32. (canceled)
Specification