Mobile device access to a protected machine
First Claim
1. A network-based access method operative in association with a first device of a user, and a second device of the user, comprising:
- associating, in a data set, information that binds the first device to the second device, and that binds the first device to a credential enabling access by the user to the first device;
upon receipt of an indication that the second device is and remains in physical proximity to the first device that is presently locked, determining whether the user can be verified, wherein the determination includes causing a notification to be delivered to the second device and evaluating a response to that notification;
following delivery of the notification to the second device, determining whether a verification response to the notification has been received; and
when the verification response to the notification has been received, the verification response having been generated as a result of a valid response to receipt of the notification, providing a verification result to the first device;
wherein receipt of the verification result at the first device unlocks the first device automatically based on the information in the data set.
9 Assignments
0 Petitions
Accused Products
Abstract
In a first embodiment, the “one tap” operation of this disclosure enables a user having a mobile device “one tap” mobile application (or “app”) to log-in to the user'"'"'s desktop or laptop computer by bringing the user'"'"'s device in physical proximity to the computer and, while in such proximity, accepting a push notification that is received on the mobile device. In a second embodiment, the user uses the “one tap” functionality to access a cloud-based account that has been set up for the user on a third party web application (e.g., SalesForce.com). The technique seamlessly integrates with third party websites using well-known protocols (e.g., SAML2), and it enables secure cross-origin resource sharing in a highly secure, reliable and available manner. Still another aspect of this disclosure is an enhanced proximity detection routine that is used to facilitate the one tap function when the user'"'"'s mobile device is moved into proximity with the computer.
-
Citations
11 Claims
-
1. A network-based access method operative in association with a first device of a user, and a second device of the user, comprising:
-
associating, in a data set, information that binds the first device to the second device, and that binds the first device to a credential enabling access by the user to the first device; upon receipt of an indication that the second device is and remains in physical proximity to the first device that is presently locked, determining whether the user can be verified, wherein the determination includes causing a notification to be delivered to the second device and evaluating a response to that notification; following delivery of the notification to the second device, determining whether a verification response to the notification has been received; and when the verification response to the notification has been received, the verification response having been generated as a result of a valid response to receipt of the notification, providing a verification result to the first device; wherein receipt of the verification result at the first device unlocks the first device automatically based on the information in the data set. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
Specification
-
- Resources
-
Current AssigneeLastPass US LP
-
Original AssigneeLogMeIn, Inc.
-
InventorsMagyar, Gyula, Hevizi, Gyorgy, Pal, Kornel
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current
-
CPC Class CodesH04L 63/0853 using an additional device,...H04L 63/0876 based on the identity of th...H04L 63/102 Entity profilesH04L 63/126 the source of the received ...H04L 63/18 using different networks or...H04W 12/30 Security of mobile devices;...H04W 12/63 Location-dependent; Proximi...
