Method and system for multi-network authorization and authentication
First Claim
1. An authentication system comprising:
- a first communication interface connectable to an access communication channel;
a second communication interface connectable to a confirmation communication channel;
service control logic in communication with the first communication interface for receiving through the first communication interface an access request associated with a user;
user data storage including a confirmation-channel address associated with the user;
access control logic in communication with the second communication interface for sending a pass code request to the user at the confirmation-channel address, receiving a confirmation message from the user, and testing the received confirmation message to determine whether the received commation message includes a valid pass code.
6 Assignments
0 Petitions
Accused Products
Abstract
A system for authenticating and/or authorizing users of a service includes one communication interface with an access communication channel and another communication interface with a confirmation communication channel. Requests for a user to access a service are received over the access communication channel, and confirmation codes for the user are received over a trusted confirmation channel, such as an SMS text messaging system. Confirmation codes may be received from the user requesting access to the service or by a third party acting as a gatekeeper to the service. The system tests the validity of received confirmation codes, and enables the user to access the service if a valid confirmation code is received.
83 Citations
19 Claims
-
1. An authentication system comprising:
-
a first communication interface connectable to an access communication channel; a second communication interface connectable to a confirmation communication channel; service control logic in communication with the first communication interface for receiving through the first communication interface an access request associated with a user; user data storage including a confirmation-channel address associated with the user; access control logic in communication with the second communication interface for sending a pass code request to the user at the confirmation-channel address, receiving a confirmation message from the user, and testing the received confirmation message to determine whether the received commation message includes a valid pass code. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. An authentication system comprising:
-
a processor; data storage; a first communication interface connectable to an access communication channel; a second communication interface connectable to a confirmation communication channel; machine language instructions stored in the data storage and executable by the processor (i) to receive through the first communication interface an access request associated with a user;
(ii) to send a pass code request to the user through the second communication interface;
(iii) to receive a confirmation message through the second communication interface; and
(iii) to test the received confirmation message to determine whether the received confirmation message includes a valid pass code;wherein the access request includes a user identifier; further comprising confirmation-channel addresses associated with user identifiers stored in the data storage, the machine language instructions for sending a pass code request including machine language instructions for sending a pass code request to a confirmation-channel address associated with the user identifier included in the access request.
-
-
18. A method for authenticating users of a service, comprising:
-
receiving, over an access communication channel, a request for a user to access a service; sending to the user, over a confirmation communication channel different from the access communication channel, a request for a pass code; receiving a confirmation message from the user; and testing the confirmation message to determine whether the confirmation message includes a valid pass code; wherein receiving a request for a user to access a service includes receiving a user identifier, and sending a request for a confirmation code includes selecting a confirmation-channel address associated with the user identifier and sending the request for a confirmation code to the selected confirmation-channel address.
-
-
19. A method for authenticating users of a service, comprising:
-
receiving from a service, over an access communication channel, a request for a user to access the service; sending a valid pass code to the user over a confirmation communication channel different from the access communication channel; receiving, over the access communication channel, a confirmation message associated with the user; testing the confirmation message to determine whether the confirmation message includes the valid pass code; and enabling the user to access the service only after the confirmation message is determined to include the valid pass code wherein receiving a service request includes intercepting request messages and testing request messages for requests requiring authentication; and wherein receiving a request for a user to access a service includes receiving a user identifier, and sending a valid pass code includes selecting a confirmation-channel address associated with the user identifier and sending the valid pass code to the selected confirmation-channel address.
-
Specification