System and method for accomplishing two-factor user authentication using the internet
First Claim
Patent Images
1. A method of accomplishing two-factor user authentication, comprising:
- providing first and second user authentication methods, wherein the first user authentication method is an authentication method selected from authentication methods based on what a user knows and authentication methods based on a characteristic of the user and the second user authentication method is based on a token distributed to the user;
communicating authentication data for both user authentication methods to a first web site using the internet;
authenticating the user at the first web site using the first user authentication method;
if the user is successfully authenticated at the first web site, enabling the communication of token-based authentication data corresponding to the token from the first web site to a second web site using the internet, the authentication data including a token code;
authenticating the user at the second web site based on the token-based authentication data transferred from the first web site;
transmitting results of the authentication at the second web site to the first web site; and
if the authentication at the second web site is unsuccessful, restricting access to sensitive web content on the first web site.
14 Assignments
0 Petitions
Accused Products
Abstract
A method of accomplishing two-factor user authentication, comprising providing two separate user authentication methods, enabling a user to communicate authentication data for both authentication methods to a first web site using the internet, and enabling the communication of at least some of the authentication data from the first web site to a second web site also using the internet. Both web sites are thus involved in user authentication using the authentication data.
70 Citations
14 Claims
-
1. A method of accomplishing two-factor user authentication, comprising:
-
providing first and second user authentication methods, wherein the first user authentication method is an authentication method selected from authentication methods based on what a user knows and authentication methods based on a characteristic of the user and the second user authentication method is based on a token distributed to the user; communicating authentication data for both user authentication methods to a first web site using the internet; authenticating the user at the first web site using the first user authentication method; if the user is successfully authenticated at the first web site, enabling the communication of token-based authentication data corresponding to the token from the first web site to a second web site using the internet, the authentication data including a token code; authenticating the user at the second web site based on the token-based authentication data transferred from the first web site; transmitting results of the authentication at the second web site to the first web site; and if the authentication at the second web site is unsuccessful, restricting access to sensitive web content on the first web site. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method of adding a second method of authentication to a first web site performing a first method of authentication, the method including:
-
distributing a token to a user, the token producing a token code; providing a second website to authorize the user based on the token code; receiving the token code and authentication data for the first method of authentication at the first web site; receiving authorization data at the second web site from the first website, the authorization data including user identification data and the token code from the first web site upon the first web site successfully authorizing the user using the first authentication method; authorizing the user at the second web site based on the token code and the user identification data; and if the authorization at the second website is successful, transmitting data to the first web site indicating the user has been successfully authenticated using at least two methods of authentication, wherein the user is granted access to web content on the first web site only if the user has been authenticated using at least two methods of authentication.
-
-
14. A method of adding a second method of authentication to a plurality of web sites performing a first method of authentication, the method including:
-
distributing a token to a user, the token producing a token code; providing an authentication web site to authorize the user based on the token code; receiving the token code and authentication data for the first method of authentication at a first web site from the plurality of web sites; receiving authorization data from the first web site, the authorization data including user identification data and the token code from the first web site upon the first web site successfully authorizing the user using the first authentication method; authorizing the user at the authentication web site based on the token code and the user identification data; and if the authorization at the authentication website is successful, transmitting data to the first web site indicating the user has been successfully authenticated using at least two methods of authentication, wherein the user is granted access to web content on the plurality of web sites only if the user has been authenticated using at least two methods of authentication.
-
Specification