System and method for user authentication interface

US 7,188,314 B2
Filed: 01/29/2003
Issued: 03/06/2007
Est. Priority Date: 12/23/2002
Status: Active Grant

First Claim

Patent Images

1. A graphical user interface for display by a data processing system, the data processing system including a display and one or more user input devices, comprising:

a graphical input construct adapted for display to a user to support entry of a pattern, the pattern comprising a plurality of data fields having respective field contents, the field contents in at least one of the respective data fields comprising a set of storage units having more than one member, wherein said storage units represent one or more of alpha-numeric characters, images and colors;

said input construct including a plurality of graphical fields for user entry of said storage units for matching with corresponding data fields in the plurality of data fields of the pattern, in which upon entry by a user of one of said storage units in one of said plurality of graphical fields, a corresponding icon is displayed in the graphical field, and wherein at least one of the graphical fields is adapted for user entry of said set of storage units having more than one member; and

wherein said input construct comprises a graphical object indicating status of a login session, including a first state in which a user name has been indicated accepted by an authentication server, a second state in which a user authentication pattern has been indicated as accepted by the remote service, and at least one intermediate state between the first and second states, in which the data processing system is awaiting a reply from the authentication server.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A graphical user interface supports an interactive client-server authentication based on Random Partial Pattern Recognition algorithm (RPPR). In RPPR, an ordered set of data fields is stored for a client to be authenticated in secure memory on the server side. A graphical user interface presents a clue generated at the server to the client, such positions in the ordered set of a random subset of data fields from the ordered set. The client enters input data in multiple fields of the interface according to the clue, and the server accepts the input data from the client. The input data includes storage units representing alpha-numeric characters, images and colors corresponding to the field contents for the data fields. The interface includes indicators for elapsed time and status of the authentication session.

87 Citations

View as Search Results

33 Claims

1. A graphical user interface for display by a data processing system, the data processing system including a display and one or more user input devices, comprising:
- a graphical input construct adapted for display to a user to support entry of a pattern, the pattern comprising a plurality of data fields having respective field contents, the field contents in at least one of the respective data fields comprising a set of storage units having more than one member, wherein said storage units represent one or more of alpha-numeric characters, images and colors;
  
  said input construct including a plurality of graphical fields for user entry of said storage units for matching with corresponding data fields in the plurality of data fields of the pattern, in which upon entry by a user of one of said storage units in one of said plurality of graphical fields, a corresponding icon is displayed in the graphical field, and wherein at least one of the graphical fields is adapted for user entry of said set of storage units having more than one member; and
  
  wherein said input construct comprises a graphical object indicating status of a login session, including a first state in which a user name has been indicated accepted by an authentication server, a second state in which a user authentication pattern has been indicated as accepted by the remote service, and at least one intermediate state between the first and second states, in which the data processing system is awaiting a reply from the authentication server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The interface of claim 1, wherein said plurality of graphical fields respectively include a first window for storage units representing alphanumeric characters, and a second window for storage units representing images.
  - 3. The interface of claim 1, wherein said plurality of graphical fields respectively include a first window for storage units representing alphanumeric characters, and a second window for storage units representing images, and wherein said storage units representing color are indicated in one of said first and second windows.
  - 4. The interface of claim 1, wherein said plurality of graphical fields respectively include a first window for alphanumeric characters in response to keyboard inputs, and a second window for storage units representing images and storage units representing colors, said second window being coupled with a graphical menu presenting a set of candidate colors selectable by user input, and a graphical menu presenting a set of candidate images selectable by user input.
  - 5. The interface of claim 1, wherein said plurality of graphical fields respectively include a first window for alphanumeric characters in response to keyboard inputs, and a second window for storage units representing images and storage units representing colors, said second window being coupled with a graphical menu displayed in response to input selecting the second window for input of a storage unit, the graphical menu presenting a set of candidate colors selectable by user input and a set of candidate images selectable by user input.
  - 6. The interface of claim 1, wherein the graphical input construct comprises instructions executable by the data processing system, stored in a memory readable by the data processing system.
  - 7. The interface of claim 1, wherein said input construct comprises a graphical object indicating elapsed time for a user session involving entry of said pattern, and acceptance of said pattern by an authentication server.
  - 8. The interface of claim 1, wherein said input construct comprises a graphical object indicating status of a user session involving entry of said pattern, and acceptance of said pattern by an authentication server.
  - 9. The interface of claim 1, wherein said input construct comprises a field indicating a clue to a user concerning field contents of said pattern.
  - 10. The interface of claim 1, wherein the graphical input construct comprises instructions executable by the data processing system, accessed by the data processing system from an authentication server.

11. A graphical user interface supporting a login session by a user having a user name and a user authentication pattern for accessing protected network resources, the graphical user interface for display by a data processing system, the data processing system including a display and one or more user input devices, comprising:
- a graphical input construct adapted for display to a user to support entry of the user name and said user authentication pattern, said user name and said user authentication pattern comprising respective data fields having field contents, the field contents in the data fields comprising a set of storage units, wherein said storage units represent one or more of alpha-numeric characters, images and colors; and
  
  said input construct including a graphical field including a first graphical window for user entry of storage units representing said user name and a second graphical window for user entry of storage units representing said user authentication pattern, in which upon entry by a user of one of said storage units, a corresponding icon is displayed, wherein said input construct comprises a graphical object indicating status of a login session, including a first state in which a user name has been indicated accepted by an authentication server, a second state in which a user authentication pattern has been indicated as accepted by the remote service, and at least one intermediate state between the first and second states, in which the data processing system is awaiting a reply from the authentication server.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 12. The interface of claim 11, wherein said input construct comprises a graphical object indicating elapsed time for a login session.
  - 13. The interface of claim 11, wherein said input construct comprises a field indicating a clue to a user concerning field contents of said user authentication pattern.
  - 14. The interface of claim 11, wherein the graphical input construct comprises instructions executable by the data processing system, accessed by the data processing system from an authentication server.
  - 15. The interface of claim 11, wherein said second graphical window includes a first window for storage units representing alphanumeric characters, and a second window for storage units representing images.
  - 16. The interface of claim 11, wherein said second graphical window includes a first window for storage units representing alphanumeric characters, and a second window for storage units representing images, and wherein said storage units representing color are indicated in one of said first and second windows.
  - 17. The interface of claim 11, wherein said second graphical window includes a first window for alphanumeric characters in response to keyboard inputs, and a second window for storage units representing images and storage units representing colors, said second window being coupled with a graphical menu presenting a set of candidate colors selectable by user input, and a graphical menu presenting a set of candidate images selectable by user input.
  - 18. The interface of claim 11, wherein said second graphical window includes a first window for alphanumeric characters in response to keyboard inputs, and a second window for storage units representing images and storage units representing colors, said second window being coupled with a graphical menu displayed in response to input selecting the second window for input of a storage unit, the graphical menu presenting a set of candidate colors selectable by user input and a set of candidate images selectable by user input.
  - 19. The interface of claim 11, wherein said pattern comprises a plurality of data fields having respective field contents, and said input construct supports entry of said plurality of data fields.
  - 20. The interface of claim 11, wherein said pattern comprises a plurality of data fields having respective field contents, and said graphical field comprises said second graphical window and at least one additional graphical window supporting entry of corresponding data fields in said plurality of data fields.
  - 21. The interface of claim 11, wherein the graphical input construct comprises instructions executable by the data processing system, stored in a memory readable by the data processing system.
  - 22. The interface of claim 11, wherein said first and second graphical windows in said graphical field are displayed simultaneously.
  - 23. The interface of claim 11, wherein said user authentication pattern includes a random subset of data fields requested by the authentication server from an ordered set of data fields.

24. A graphical user interface supporting a login session by a user having a user authentication pattern for access protected network resources, the graphical user interface for display by a data processing system, the data processing system including a display and one or more user input devices, comprising:
- a graphical input construct adapted for display to a user to support entry of said user authentication pattern, said user authentication pattern including a random subset of data fields from an ordered set of data fields, said data fields in said random subset having respective field contents, the field contents in the data fields comprising a set of storage units having more than one member, wherein said storage units represent one or more of alpha-numeric characters, images and colors;
  
  said input construct including a graphical field including a plurality of graphical windows for user entry of said storage units representing respective data fields in said user authentication pattern, in which upon entry by a user of one of said storage units, a corresponding icon is displayed, anda field indicating a clue to a user indicating which fields in said ordered set comprise said random subset; and
  
  wherein at least one of the graphical fields is adapted for user entry of said set of storage units having more than one member, wherein said input construct comprises a graphical object indicating status of a login session, including a first state in which a user name has been indicated accepted by an authentication server, a second state in which a user authentication pattern has been indicated as accepted by the remote service, and at least one intermediate state between the first and second states, in which the data processing system is awaiting a reply from the authentication server.
- View Dependent Claims (25, 26, 27, 28)
- - 25. The interface of claim 24, wherein at least one graphical window in said plurality of graphical windows includes a first window for storage units representing alphanumeric characters, and a second window for storage units representing images.
  - 26. The interface of claim 24, wherein at least one graphical window in said plurality of graphical windows includes a first window for storage units representing alphanumeric characters, and a second window for storage units representing images, and wherein said storage units representing color are indicated in one of said first and second windows.
  - 27. The interface of claim 24, wherein at least one graphical window in said plurality of graphical windows includes a first window for alphanumeric characters in response to keyboard inputs, and a second window for storage units representing images and storage units representing colors, said second window being coupled with a graphical menu presenting a set of candidate colors selectable by user input, and a graphical menu presenting a set of candidate images selectable by user input.
  - 28. The interface of claim 24, wherein at least one graphical window in said plurality of graphical windows includes a first window for alphanumeric characters in response to keyboard inputs, and a second window for storage units representing images and storage units representing colors, said second window being coupled with a graphical menu displayed in response to input selecting the second window for input of a storage unit, the graphical menu presenting a set of candidate colors selectable by user input and a set of candidate images selectable by user input.

29. A method for interactive authentication of a user, comprising:
- presenting a graphical use interface to the user, the graphical user interface prompting the user to enter a user authentication pattern comprising a random subset of data fields from an ordered set of data fields with data entry fields, each of the data fields in the random subset having field contents comprising a set of storage units having more than one member;
  
  presenting a clue in the graphical user interface to the user indicating which of data fields in the ordered set are included in the random subset;
  
  accepting user input of storage units in said data entry fields, the storage units representing more than one of alpha-numeric characters, images and colors; and
  
  displaying icons corresponding to the storage units input by the user in the data entry fields; and
  
  wherein said authentication method comprises a graphical object indicating status of a login session, including a first state in which a user name has been indicated accepted by an authentication server, a second state in which a user authentication pattern has been indicated as accepted by the remote service, and at least one intermediate state between the first and second states, in which the data processing system is awaiting a reply from the authentication server.
- View Dependent Claims (30, 31, 32, 33)
- - 30. The method of claim 29, including responding to user input to display a graphical menu supporting entry of storage units corresponding to colors and images, the graphical menu presenting a set of candidate colors selectable by user input, and presenting a set of candidate images selectable by user input.
  - 31. The method of claim 29, including presenting a graphical object prompting a user to enter a user name.
  - 32. The method of claim 29, including displaying a graphical object indicating elapsed time of an authentication session.
  - 33. The method of claim 29, including displaying a graphical object indicating status of an authentication session.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Authernative
Original Assignee
Authernative
Inventors
Mizrah, Len L.
Primary Examiner(s)
Bayerl; Raymond J.
Assistant Examiner(s)
Bonshock; Dennis

Application Number

US10/353,500
Publication Number

US 20040119746A1
Time in Patent Office

1,497 Days
Field of Search

715/741, 715/742, 715/743, 715/772, 726/21
US Class Current

715/741
CPC Class Codes

G06F 21/31   User authentication

G06F 21/36   by graphic or iconic repres...

H04L 63/08   for authentication of entit...

System and method for user authentication interface

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

87 Citations

33 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for user authentication interface

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

87 Citations

33 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links