SINGLE-INPUT MULTIFACTOR AUTHENTICATION
First Claim
Patent Images
1. A method comprising:
- receiving, on a computing device, a first-factor authentication request for a user from a requesting program, operating remotely to the computing device;
authenticating the user based on a biometric input for access to a secure storage on the computing device and to a secure element on the computing device;
retrieving a credential from the secure storage, wherein the credential corresponds to the first-factor authentication request;
sending the credential to the requesting program;
receiving a second-factor authentication request from the requesting program;
requesting a token from the secure element responsive to the second-factor authentication request, wherein the token is based on a token seed corresponding to the requesting program;
sending the token to the requesting program; and
receiving authentication from the requesting program.
1 Assignment
0 Petitions
Accused Products
Abstract
Multifactor authentication is a method to secure data and accounts and to prevent unauthorized access. A first factor can be information that the user knows, such as a username and password combination. A second factor can be something that the user possesses, such as a token generator or a trusted device. The present invention enables a user to present multiple authentication factors through a single biometric input using stored credentials and tokens generated by a secure element.
-
Citations
1 Claim
-
1. A method comprising:
-
receiving, on a computing device, a first-factor authentication request for a user from a requesting program, operating remotely to the computing device; authenticating the user based on a biometric input for access to a secure storage on the computing device and to a secure element on the computing device; retrieving a credential from the secure storage, wherein the credential corresponds to the first-factor authentication request; sending the credential to the requesting program; receiving a second-factor authentication request from the requesting program; requesting a token from the secure element responsive to the second-factor authentication request, wherein the token is based on a token seed corresponding to the requesting program; sending the token to the requesting program; and receiving authentication from the requesting program.
-
Specification