System and method for single sign on process for websites with multiple applications and services

US 7,444,672 B2
Filed: 02/09/2006
Issued: 10/28/2008
Est. Priority Date: 07/02/1999
Status: Active Grant

First Claim

Patent Images

1. A method for user-serviceable re-authentication for access to one or more financial accounts using a single sign on procedure, the method comprising:

establishing a user identification;

establishing a user password associated with the user identification;

presenting a user with pre-determined challenge questions;

prompting the user to create one or more original answers to one or more of the pre-determined challenge questions;

associating the one or more original answers with the respective one or more pre-determined challenge questions;

providing access to the one or more financial accounts by;

prompting the user to provide the user identification,receiving the user identification from the user,prompting the user to provide the user password,providing a first mode of access to the one or more financial accounts in the event the user password from the user is received; and

providing a second mode of access to the one or more financial accounts in the event the user password is not received, wherein the second mode provides access to the one or more financial accounts by;

selecting and presenting to the user at least one of the pre-determined challenge questions having an original answer associated therewith, andreceiving the original answer associated with each of the at least one selected pre-determined challenge questions from the user;

prompting the user to provide ownership verification information; and

receiving the ownership verification information from the user;

wherein the one or more financial accounts comprise a plurality of financial accounts, and the method further comprises;

ranking the relative ownership verification information requirements for each of the plurality of financial accounts based on the stringency of the ownership verification requirements for each financial account;

providing the user with access to a first financial account having the most stringent ownership verification information requirements that are satisfied by the ownership verification information; and

providing the user with access to the all of the plurality of financial accounts having less stringent ownership verification information requirements than the first financial account.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for integrating the Internet front end-sign on processes of the various systems of a financial institution which allows a customer to view and access its various financial accounts with the institution.

During the initial sign up for the online access, to its accounts, a customer creates his/her User ID and password online during the same session. Once the customer has signed on (password) and verified ownership of at least one account, the system displays all of the customer'"'"'s accounts that are available for access via the Internet website. The online ownership verification uses only a single account of the customer and the ownership verification criteria associated with the account. The account used for verifying a customer is first determined based on the accounts selected by the customer for accessing online. From the selected accounts, the system of the present invention creates a verification hierarchy with respect to the accounts. When determining the verification to use for the single ownership verification, the present invention selects the account from the hierarchy with the most stringent requirements.

619 Citations

13 Claims

1. A method for user-serviceable re-authentication for access to one or more financial accounts using a single sign on procedure, the method comprising:
- establishing a user identification;
  
  establishing a user password associated with the user identification;
  
  presenting a user with pre-determined challenge questions;
  
  prompting the user to create one or more original answers to one or more of the pre-determined challenge questions;
  
  associating the one or more original answers with the respective one or more pre-determined challenge questions;
  
  providing access to the one or more financial accounts by;
  
  prompting the user to provide the user identification,receiving the user identification from the user,prompting the user to provide the user password,providing a first mode of access to the one or more financial accounts in the event the user password from the user is received; and
  
  providing a second mode of access to the one or more financial accounts in the event the user password is not received, wherein the second mode provides access to the one or more financial accounts by;
  
  selecting and presenting to the user at least one of the pre-determined challenge questions having an original answer associated therewith, andreceiving the original answer associated with each of the at least one selected pre-determined challenge questions from the user;
  
  prompting the user to provide ownership verification information; and
  
  receiving the ownership verification information from the user;
  
  wherein the one or more financial accounts comprise a plurality of financial accounts, and the method further comprises;
  
  ranking the relative ownership verification information requirements for each of the plurality of financial accounts based on the stringency of the ownership verification requirements for each financial account;
  
  providing the user with access to a first financial account having the most stringent ownership verification information requirements that are satisfied by the ownership verification information; and
  
  providing the user with access to the all of the plurality of financial accounts having less stringent ownership verification information requirements than the first financial account.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein:
    - prompting the user to create one or more original answers to one or more of the pre-determined challenge questions comprises prompting the user to create respective original answers to at least three of the pre-determined challenge questions; and
      
      randomly selecting and presenting to the user at least one of the pre-determined challenge questions having an original answer associated therewith comprises randomly selecting and presenting to the user at least two of the pre-determined challenge questions having an original answer associated therewith.
  - 3. The method of claim 1, further comprising:
    - prompting the user to provide one or more user-defined cue questions associated with the user password; and
      
      receiving the one or more user-defined cue questions from the user.
  - 4. The method of claim 3, further comprising providing a third mode of access to the one or more financial accounts by:
    - prompting the user to provide the user identification;
      
      receiving the user identification from the user;
      
      prompting the user to provide the user password;
      
      receiving an incorrect user password from the user;
      
      presenting to the user at least one of the one or more user-defined cue questions in response to receiving an incorrect user password from the user; and
      
      receiving the user password from the user.
  - 5. The method of claim 1, further comprising:
    - prompting the user to provide ownership verification information; and
      
      receiving the ownership verification information from the user.
  - 6. The method of claim 5, wherein the one or more financial accounts comprise a plurality of financial accounts, and the method further comprises:
    - comparing the ownership verification information with the ownership verification information requirements of a first one of the plurality of financial accounts; and
      
      granting access to the first one of the plurality of financial accounts if the ownership verification information satisfies the ownership verification information requirements of the first one of the plurality of financial accounts.

7. A system for user-serviceable re-authentication for access to one or more financial accounts using a single sign on procedure, the system comprising one or more processors adapted to:
- establish a user identification;
  
  establish a user password associated with the user identification;
  
  interface with a user terminal to present a user with pre-determined challenge questions;
  
  interface with the user terminal to prompt the user to create one or more original answers to one or more of the pre-determined challenge questions;
  
  associate the one or more original answers with the respective one or more pre-determined challenge questions;
  
  provide access to the one or more financial accounts in which the one or more processors are adapted to;
  
  interface with the user terminal to prompt the user to provide the user identification,interface with the user terminal to receive the user identification from the user,interface with the user terminal to prompt the user to provide the user password,interface with the user terminal to provide a first mode of access to the one or more financial accounts in the event the user password is received from the user, andinterface with the user terminal to provide a second mode of access to the one or more financial accounts in the event the user password is not received from the user, wherein the second mode provides access to the one or more financial accounts by;
  
  selecting at least one of the pre-determined challenge questions having an original answer associated therewith,interfacing with the user terminal to prompt the user to provide the original answer associated with the at least one of the pre-determined challenge questions, andinterfacing with the user terminal to receive the original answer associated with each of the at least one selected pre-determined challenge questions from the user;
  
  prompting the user to provide ownership verification information; and
  
  receiving the ownership verification information from the user;
  
  wherein the one or more financial accounts comprise a plurality of financial accounts, and the one or more processors are further adapted to;
  
  rank the relative ownership verification information requirements for each of the plurality of financial accounts based on the stringency of the ownership verification requirements for each financial account;
  
  interface with the user terminal to receive provide the user with access to a first financial account having the most stringent ownership verification information requirements that are satisfied by the ownership verification information; and
  
  interface with the user terminal to provide the user with access to the all of the plurality of financial accounts having less stringent ownership verification information requirements than the first financial account.
- View Dependent Claims (8, 9, 10, 11, 12, 13)
- - 8. The system of claim 7, wherein the one or more processors are adapted to:
    - prompt the user to create respective original answers to at least three of the pre-determined challenge questions; and
      
      randomly select and present to the user at least two of the pre-determined challenge questions having an original answer associated therewith.
  - 9. The system of claim 7, wherein the one or more processors are further adapted to:
    - interface with the user terminal to prompt the user to provide one or more user-defined cue questions associated with the user password; and
      
      interface with the user terminal to receive the one or more user-defined cue questions from the user.
  - 10. The system of claim 9, wherein the one or more processors are further adapted to providing a third mode of access to the one or more financial accounts in which the one or more processors are adapted to:
    - interface with the user terminal to prompt the user to provide the user identification;
      
      interface with the user terminal to receive the user identification from the user;
      
      interface with the user terminal to prompt the user to provide the user password;
      
      interface with the user terminal to receive an incorrect user password from the user;
      
      interface with the user terminal to present to the user at least one of the one or more user-defined cue questions in response to receiving an incorrect user password from the user; and
      
      interface with the user terminal to receive the user password from the user.
  - 11. The system of claim 7, wherein the one or more processors are further adapted to:
    - interface with the user terminal to prompt the user to provide ownership verification information; and
      
      interface with the user terminal to receive the ownership verification information from the user.
  - 12. The system of claim 11, wherein the one or more financial accounts comprise a plurality of financial accounts, and the one or more processors are further adapted to:
    - compare the ownership verification information with the ownership verification information requirements of a first one of the plurality of financial accounts; and
      
      interface with the user terminal to grant access to the first one of the plurality of financial accounts if the ownership verification information satisfies the ownership verification information requirements of the first one of the plurality of financial accounts.
  - 13. The system of claim 7, wherein the user terminal is connected to the one or more processors by an internet.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
JP Morgan Chase Bank, N.A. (JP Morgan Chase & Co)
Original Assignee
JP Morgan Chase Bank, N.A. (JP Morgan Chase & Co)
Inventors
Ellmore, Kimberly
Primary Examiner(s)
NGUYEN, MINH DIEU T

Application Number

US11/350,103
Publication Number

US 20060129834A1
Time in Patent Office

992 Days
Field of Search

726 2- 4, 726/8, 713/182, 705/42
US Class Current

726/8
CPC Class Codes

G06Q 20/108   Remote banking, e.g. home b...

H04L 63/0815   providing single-sign-on or...

H04L 63/168   above the transport layer

System and method for single sign on process for websites with multiple applications and services

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

619 Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for single sign on process for websites with multiple applications and services

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

619 Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links