Apparatus and method for authenticating access to a network resource
First Claim
1. A device for providing a user with a secure access to a network resource, comprising:
- a memory storing data related to at least one of accounts and preferences; and
a processor coupled to the memory, the processor authenticating the user with the device by verifying a device password and a user biometric that are specific to the device and transmitting a resource password to establish a connection to the network resource, the resource password being unknown to the user and specific to the network resource, wherein if a duress password is entered for authenticating the user, the processor replaces the data of the memory with non-sensitive data.
6 Assignments
0 Petitions
Accused Products
Abstract
A device for providing access to a remote site is disclosed. Access to the device is gained through an authentication process during which a user password and biometrics are provided to the device. The device also includes a security feature such that only authorized users of the specific device can gain access to it. Once authenticated, the device authorizes access to a remote site (e.g., a web site or a server on a local area network). The communications from the device to the remote site is encrypted and further the hand-held device uses a computer generated password to gain access to the site. In this way, user generated passwords, which are typically simple and infrequently changed, are avoided in favor of a more complex and frequently changed computer generated passwords for site access.
58 Citations
17 Claims
-
1. A device for providing a user with a secure access to a network resource, comprising:
-
a memory storing data related to at least one of accounts and preferences; and a processor coupled to the memory, the processor authenticating the user with the device by verifying a device password and a user biometric that are specific to the device and transmitting a resource password to establish a connection to the network resource, the resource password being unknown to the user and specific to the network resource, wherein if a duress password is entered for authenticating the user, the processor replaces the data of the memory with non-sensitive data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for authenticating a user to a device for contacting a network resource, comprising:
-
verifying a device password and a user biometric that are specific to the device; transmitting a resource password to establish a connection to the network resource, the resource password being unknown to the user, the resource password being specific to the network resource; receiving a duress password for authenticating the user; and replacing data of the memory with non-sensitive data when the duress password is received. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A device for providing a user with a secure access to a network resource, comprising:
-
a storage means for storing data related to at least one of accounts and preferences; and a processing means for authenticating the user with the device by verifying a device password and a user biometric that are specific to the device and for transmitting a resource password to establish a connection to the network resource, the resource password being unknown to the user and specific to the network resource, the processing means being coupled to the storage means, wherein if a duress password is entered for authenticating the user, the processing means replaces the data of the storage means with non-sensitive data.
-
Specification