POINT AND CLICK AUTHENTICATION
First Claim
1. A method comprising:
- receiving a first access request identifying a protected resource from a client device, the first access request including an identifier;
generating a first interface that includes a plurality of graphical objects for presentation at random locations on a display of the client device as defined by a first object map, the plurality of graphical objects including a null object and a set of user-defined objects associated with the identifier that define a graphical password;
receiving input data including an input event for each interaction with the first interface that the client device detects, the input event for each interaction identifying a position on the display at which a corresponding interaction was detected;
determining that the input data satisfies the graphical password using the first object map; and
in response to determining that the input data satisfies the graphical password, granting access to the protected resource.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods for multi-factor authentication using graphical passwords. An access request that includes an identifier and which identifies a protected resource is received from a client device. An interface is generated having a plurality of graphical objects for presentation at random locations on a display of the client device as defined by an object map. The plurality of graphical objects include a null object and a set of user-defined objects associated with the identifier that define a graphical password. Input data including an input event for each detected interaction with the interface is received. Each input event identifies a position on the display at which a corresponding interaction was detected. Using the object map, it is determined that the input data satisfies the graphical password. Access to the protected resource is granted in response to determining that the input data satisfies the graphical password.
-
Citations
20 Claims
-
1. A method comprising:
-
receiving a first access request identifying a protected resource from a client device, the first access request including an identifier; generating a first interface that includes a plurality of graphical objects for presentation at random locations on a display of the client device as defined by a first object map, the plurality of graphical objects including a null object and a set of user-defined objects associated with the identifier that define a graphical password; receiving input data including an input event for each interaction with the first interface that the client device detects, the input event for each interaction identifying a position on the display at which a corresponding interaction was detected; determining that the input data satisfies the graphical password using the first object map; and in response to determining that the input data satisfies the graphical password, granting access to the protected resource. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system comprising:
-
an electronic device with a display; a processor; and a computer-readable storage medium comprising instructions that upon execution by the processor cause the system to perform operations, the operations comprising; sending an access request identifying a protected resource to an access service associated with a host server, the access request including an identifier; in response, receiving an interface from the access service that includes a plurality of graphical objects for presentation on the display; recording an input event for each detected interaction with the interface while presenting the interface on the display, each input event identifying a position on the display at which a corresponding interaction was detected; sending input data including each recorded input event to the access service; and receiving access to the protected resource when the access service determines that the input data satisfies a graphical password using an object map that defines randomly assigned positions for presenting the plurality of graphical objects on the display, the graphical password defined by a set of user-defined objects included among the plurality of graphical objects. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A non-transitory computer-readable storage medium, storing program instructions that upon execution by a processor of a computing device, cause the computing device to perform operations comprising:
-
at an access service associated with a host server; receiving an access request identifying a protected resource from a client device, the access request including an identifier; generating an interface that includes a plurality of graphical objects for presentation at random positions on a display of the client device as defined by an object map, the plurality of graphical objects including a null object and a set of user-defined objects associated with the identifier that define a graphical password; receiving input data including an input event for each interaction with the interface that the client device detects, each input event identifying a position on the display at which a corresponding interaction was detected; determining whether the input data satisfies the graphical password using the object map; and in accordance with a determination that the input data satisfies the graphical password, granting access to the protected resource.
-
Specification