Online data encryption and decryption

US 7,596,701 B2
Filed: 01/25/2006
Issued: 09/29/2009
Est. Priority Date: 07/07/2004
Status: Active Grant

First Claim

Patent Images

1. An authentication system comprising:

a server computer communicatively coupled with one or more user computers via a computer network, wherein the server computer is configured to;

receive, from a user computer in the one or more user computers, an identifier that uniquely identifies a user;

retrieve, based on the identifier, a first image associated with the user, wherein the first image was previously selected by the user;

retrieve a second image that represents an entry interface;

modify the second image to generate a third image, wherein the second and third images are visually substantially similar but have different file sizes;

generate a personalized graphical interface that includes the first image and the third image; and

transmit the personalized graphical interface to the user computer.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for providing encryption and decryption of data transmitted on a computer implemented network, preferably user authentication identifier data, such as a password, at the point of entry into the user'"'"'s computer. The systems and methods enable an end user to mentally select a marker from one of the randomly arranged elements on a first portion of a graphical image. A second portion of the graphical image includes an arrangement of possible elements of any individual authentication identifier sequence, and is positioned adjacent to the first portion. The systems and methods prompt a user to enter each element of the identifier by moving the selected marker and the first portion as necessary to substantially align the selected marker with a chosen element of the authentication identifier appearing on the outer portion. According to one embodiment, the image portions are concentric wheels. According to another embodiment, the image portions are arranged in adjacent rows.

152 Citations

View as Search Results

19 Claims

1. An authentication system comprising:
- a server computer communicatively coupled with one or more user computers via a computer network, wherein the server computer is configured to;
  
  receive, from a user computer in the one or more user computers, an identifier that uniquely identifies a user;
  
  retrieve, based on the identifier, a first image associated with the user, wherein the first image was previously selected by the user;
  
  retrieve a second image that represents an entry interface;
  
  modify the second image to generate a third image, wherein the second and third images are visually substantially similar but have different file sizes;
  
  generate a personalized graphical interface that includes the first image and the third image; and
  
  transmit the personalized graphical interface to the user computer.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 9, 10, 11, 15, 16)
- - 2. The authentication system of claim 1, wherein the second image is superimposed on the first image.
  - 3. The authentication system of claim 1, wherein the personalized graphical interface further includes a text element previously selected by the user.
  - 4. The authentication system of claim 1, wherein the entry interface is in the form of a keypad or a keyboard.
  - 5. The authentication system of claim 1, wherein the first image includes animated elements or a photograph.
  - 6. The authentication system of claim 1, wherein the third image is check-sum encrypted by the server.
  - 7. The authentication system of claim 1, wherein the third image is shift encrypted by the server.
  - 9. The authentication system of claim 1, wherein the personalized graphical interface further includes a fourth image of a document associated with the user.
  - 10. The authentication system of claim 9, wherein at least part of the fourth image is initially obscured, and wherein the obscured portions of the fourth image become visible in response an entry of a specific identifier via the entry interface of the personalized graphical interface.
  - 11. The authentication system of claim 10, wherein the entry interface is in the form of a keyboard, and wherein the personalized graphical interface further includes one or more text elements previously selected by the user.
  - 15. The authentication system of claim 1, wherein the first image was previously selected by the user at a time of registering an account with a service provider operating the server computer.
  - 16. The authentication system of claim 1, wherein altering the second image to generate the third image comprises padding extra values to the second image in a random fashion.

8. An authentication system comprising:
- a server computer communicatively coupled with one or more user computers via a computer network, wherein the server computer is configured to;
  
  receive, from a user computer in the one or more user computers, a user identifier that uniquely identifies a user and a user computer identifier that uniquely identifies the user computer;
  
  compare the user computer identifier with a predefined list of user computer identifiers associated with the user identifier;
  
  if the user computer identifier is included in the predefined list;
  
  retrieve, based on the user identifier, a first image associated with the user, wherein the first image was previously selected by the user;
  
  generate a personalized graphical interface that includes the first image and a second image, the second image representing an entry interface; and
  
  transmit the personalized graphical interface to the user computer;
  
  else if the user computer identifier is not included in the predefined list;
  
  transmit a set of challenge questions to the user computer.

12. An authentication system comprising:
- a server computer communicatively coupled with one or more user computers via a computer network, wherein the server computer is configured to;
  
  receive, from a user computer in the one or more user computers, an identifier that uniquely identifies a user;
  
  retrieve, based on the identifier, a first image associated with the user, wherein the first image was previously selected by the user;
  
  retrieve a second image that represents an entry interface and shift encrypt the second image to generate a third image;
  
  generate a personalized graphical interface that includes the first image and the third image; and
  
  transmit the personalized graphical interface to the user computer.
- View Dependent Claims (13, 14)
- - 13. The authentication system of claim 12, wherein the personalized graphical interface further includes a text element that was previously selected by the user.
  - 14. The authentication system of claim 12, wherein the personalized graphical interface is encrypted by the server computer prior to being transmitted to the user computer.

17. A method performed by a server computer for authenticating one or more users, the method comprising:
- receiving, by the server computer from a user computer, an identifier that uniquely identifies a user;
  
  retrieving, by the server computer based on the identifier, a first image associated with the user, wherein the first image was previously selected by the user;
  
  retrieving, by the server computer, a second image that represents an entry interface;
  
  modifying, by the server computer, the second image to generate a third image, wherein the second and third images are visually substantially similar but have different file sizes;
  
  generating, by the server computer, a personalized graphical interface that includes the first image and the third image; and
  
  transmitting, by the server computer, the personalized graphical interface to the user computer.

18. A method performed by a server computer for authenticating one or more users, the method comprising:
- receiving, by the server computer from a user computer, a user identifier that uniquely identifies a user and a user computer identifier that uniquely identifies the user computer;
  
  comparing, by the server computer, the user computer identifier with a predefined list of user computer identifiers associated with the user identifier;
  
  if the user computer identifier is included in the predefined list;
  
  retrieving, by the server computer based on the user identifier, a first image associated with the user, wherein the first image was previously selected by the user;
  
  generating, by the server computer, a personalized graphical interface that includes the first image and a second image, the second image representing an entry interface; and
  
  transmitting, by the server computer, the personalized graphical interface to the user computer;
  
  else if the user computer identifier is not included in the predefined list;
  
  transmitting, by the server computer, a set of challenge questions to the user computer.

19. A method performed by a server computer for authenticating one or more users, the method comprising:
- receiving, by the server computer from a user computer, an identifier that uniquely identifies a user;
  
  retrieving, by the server computer based on the identifier, a first image associated with the user, wherein the first image was previously selected by the user;
  
  retrieving, by the server computer, a second image that represents an entry interface and shift encrypting the second image to generate a third image;
  
  generating, by the server computer, a personalized graphical interface that includes the first image and the third image; and
  
  transmitting, by the server computer, the personalized graphical interface to the user computer.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Durai, Don Bosco, Varghese, Thomas Emmanual, Harris, Steven Lucas, Fisher, Jon Bryan
Primary Examiner(s)
Truong; Thanhnga B.

Application Number

US11/340,376
Publication Number

US 20070192615A1
Time in Patent Office

1,343 Days
Field of Search

713/182, 713/168, 713/171, 713/165, 726/2, 726/4, 726/22, 715/700, 715/835, 707/9, 380/255, 382/118, 382/311, 382/263, 600/407
US Class Current

713/182
CPC Class Codes

G06F 21/36   by graphic or iconic repres...

G06F 21/83   input devices, e.g. keyboar...

G06Q 30/06   Buying, selling or leasing ...

H04L 63/08   for authentication of entit...

H04L 63/1441   Countermeasures against mal...

H04L 63/1483   service impersonation, e.g....

Online data encryption and decryption

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

152 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Online data encryption and decryption

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

152 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links