SYSTEMS AND METHODS FOR AUTHENTICATION AND VERIFICATION

US 20160197915A1
Filed: 03/23/2015
Published: 07/07/2016
Est. Priority Date: 11/21/2012
Status: Active Grant

First Claim

Patent Images

1. (canceled)

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Computer systems and methods are provided for authenticating a user seeking to conduct at least one interaction with a secured capability provided by a computer. The method includes accessing a first identifier corresponding to the secured capability and sending a second identifier to an electronic device being used by the user. The second identifier corresponds to the secured capability. The method further includes receiving a signal from the electronic device being used by the user. The method further includes using a processor to evaluate, based at least on the signal and one or both of the first identifier and the second identifier, whether the user is authorized to conduct the at least one interaction with the secured capability.

Citations

29 Claims

1. (canceled)

2. A method of using a computer system to authenticate a user seeking to conduct at least one interaction with a secured capability provided by a computer, the method comprising:
- accessing a first identifier corresponding to the secured capability;
  
  sending a second identifier to an electronic device being used by the user, the second identifier corresponding to the secured capability;
  
  receiving a signal from the electronic device being used by the user; and
  
  using a processor to evaluate, based at least on the signal and one or both of the first identifier and the second identifier, whether the user is authorized to conduct the at least one interaction with the secured capability.
- View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
- - 3. The method of claim 2, wherein the method further comprises, in response to an indication from the processor that the user is authorized to conduct the at least one interaction with the secured capability, using the computer system to generate authorization information.
  - 4. The method of claim 3, wherein the authorization information is generated by a verification server.
  - 5. The method of claim 3, wherein the method further comprises providing the authorization information to the computer providing the secured capability.
  - 6. The method of claim 5, wherein the authorization information comprises an identifier that is unique to the user.
  - 7. The method of claim 2, wherein the electronic device comprises a mobile phone, smartphone, or tablet.
  - 8. The method of claim 2, wherein the computer system comprises a verification server and the computer providing the secured capability.
  - 9. The method of claim 8, further comprising using the electronic device to transmit payment information to at least one of the following:
    - the verification server, the computer providing the secured capability, and a payment processing gateway.
  - 10. The method of claim 2, further comprising transmitting payment information to at least one of a payment processing gateway or the computer providing the secured capability.
  - 11. The method of claim 2, wherein sending the second identifier comprises sending a text message to the electronic device.
  - 12. The method of claim 11, wherein the text message prompts the user to respond by sending a return text message to the computer system.
  - 13. The method of claim 2, wherein sending the second identifier to the electronic device is performed by the computer providing the secured capability.
  - 14. The method of claim 2, wherein sending the second identifier to the electronic device is performed by a verification server of the computer system.
  - 15. The method of claim 2, wherein accessing the first identifier is performed by at least one verification server of the computer system, sending the second identifier is performed by the computer providing the secured capability, the computer system comprising the computer, and receiving the signal is performed by the at least one verification server.
  - 16. The method of claim 2, wherein accessing the first identifier is performed by at least one verification server of the computer system, sending the second identifier is performed by the at least one verification server, and receiving the signal is performed by the at least one verification server.
  - 17. The method of claim 16, wherein the accessed first identifier is provided by a pool of identifiers stored by the at least one verification server.
  - 18. The method of claim 2, wherein the accessed first identifier is provided by a pool of identifiers stored by the computer providing the secured capability.
  - 19. The method of claim 2, wherein the accessed first identifier is provided by a pool of identifiers stored by a software-as-a-service (SaaS) server.
  - 20. The method of claim 2, wherein the first identifier is assigned to be used by the secured capability for a finite period of time.
  - 21. The method of claim 2, wherein the signal comprises a third identifier transmitted by the electronic device and corresponding to the secured capability.
  - 22. The method of claim 2, wherein the signal comprises verification data transmitted by the electronic device.
  - 23. The method of claim 22, wherein the signal further comprises a third identifier transmitted by the electronic device and corresponding to the secured capability.
  - 24. The method of claim 23, wherein using the processor comprises evaluating, based at least on the validation data and at least one of the first identifier, the second identifier, and the third identifier, whether the user is authorized to conduct the at least one interaction with the secured capability.
  - 25. The method of claim 2, wherein the first identifier and the second identifier are the same as one another.
  - 26. The method of claim 2, wherein the first identifier and the second identifier are related to one another with a predetermined relationship.

27. A computer system for authenticating users seeking to conduct interactions with a plurality of secured capabilities provided by a plurality of computers, each computer of the plurality of computers providing at least one secured capability of the plurality of secured capabilities, the computer system comprising:
- at least one input configured to access a plurality of first identifiers, each first identifier of the plurality of first identifiers corresponding to a secured capability of the plurality of secured capabilities;
  
  at least one output configured to send a plurality of second identifiers to a plurality of electronic devices being used by the users, each second identifier of the plurality of second identifiers corresponding to a secured capability of the plurality of secured capabilities, the at least one input further configured to receive a signal from the plurality of electronic devices being used by the users;
  
  a storage device comprising;
  
  a first association of each secured capability of the plurality of secured capabilities with at least one corresponding identifier; and
  
  a second association of verification data with corresponding verified users authorized to access at least one secured capability of the plurality of secured capabilities;
  
  a processor configured to evaluate, based at least on the signal and one or both of a first identifier of the plurality of first identifiers and a second identifier of the plurality of second identifiers, whether a user of the electronic device is authorized to conduct at least one interaction with a secured capability provided by the computer.
- View Dependent Claims (28)
- - 28. The computer system of claim 27, wherein the processor is further configured to generate authorization information if the user of the electronic device is authorized to conduct the at least one interaction with the secured capability.

29. A non-transitory computer storage having stored thereon a computer program that instructs a computer system to authenticate a user seeking to conduct at least one interaction with a secured capability provided by a computer by at least:
- accessing a first identifier corresponding to the secured capability;
  
  sending a second identifier to an electronic device being used by the user, the second identifier corresponding to the secured capability;
  
  receiving a signal from the electronic device being used by the user; and
  
  using a processor to evaluate, based at least on the signal and one or both of the first identifier and the second identifier, whether the user is authorized to conduct the at least one interaction with the secured capability.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Secure Matrix LLC (Jeffrey M. Gross)
Original Assignee
Jack Bicer
Inventors
Bicer, Jack

Granted Patent

US 9,756,042 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/62   Protecting access to data v...

G06F 21/629   to features or functions of...

G06F 2221/2113   Multi-level security, e.g. ...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 30/0637   Approvals

H04L 63/08   for authentication of entit...

H04L 63/0838   using one-time-passwords

H04L 63/0853   using an additional device,...

H04L 63/18   using different networks or...

SYSTEMS AND METHODS FOR AUTHENTICATION AND VERIFICATION

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

29 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEMS AND METHODS FOR AUTHENTICATION AND VERIFICATION

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

29 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links