Mass storage device with automated credentials loading
First Claim
1. A portable device capable of mass storage of user files and of user credential management, the portable device having a physical interface for removably coupling the device to a host device, and comprising:
- mass storage solid state memory used to store user files and programs;
a micro controller that controls read and write operations of the mass storage solid state memory;
a one time password generator;
a client application residing in the mass storage solid state memory, the client application executable by a processor of the host to retrieve a one time password from the password generator of the device; and
a first seed and counter pair,the first pair to authenticate the device to a first institution, wherein the portable device comprises a portable memory card or a portable USB drive, wherein the client application is launched, wherein the client application is executed by the processor of the host, and wherein the one time password generator is implemented within the portable device and generates the one time password within the portable device in response to the request.
3 Assignments
0 Petitions
Accused Products
Abstract
A portable mass storage device for use in two factor authentication systems and methods. A secure portable mass storage device protects content from being freely copied with security mechanisms and firmware. The security functionality also protects confidential user credentials and passwords, as well as algorithms and seeds needed for two factor authentication or asymmetric authentication methods. A client application residing in the mass storage device acts as both a password manager and an authentication manager that seamlessly performs the authentication procedures in the background while signing a user into various institutions of his choosing. A very high level of security is integrated into a mass storage device the user has for purposes other than two factor authentication, and the convenience of highly secure password management also comes in a convenient pocket sized package easy for the user to transport. This facilitates the acceptance of two factor authentication, and increases security for a wide variety of online transactions.
385 Citations
18 Claims
-
1. A portable device capable of mass storage of user files and of user credential management, the portable device having a physical interface for removably coupling the device to a host device, and comprising:
-
mass storage solid state memory used to store user files and programs; a micro controller that controls read and write operations of the mass storage solid state memory; a one time password generator; a client application residing in the mass storage solid state memory, the client application executable by a processor of the host to retrieve a one time password from the password generator of the device; and a first seed and counter pair, the first pair to authenticate the device to a first institution, wherein the portable device comprises a portable memory card or a portable USB drive, wherein the client application is launched, wherein the client application is executed by the processor of the host, and wherein the one time password generator is implemented within the portable device and generates the one time password within the portable device in response to the request.
-
-
2. A system for controlling access to data sites, the system comprising:
-
a mass storage device that can be removably coupled to a host computing device, wherein the mass storage device comprises a portable memory card or a portable USB drive; a first electronic entity that loads a seed and a device identifier to the host computing device and mass storage device, while the mass storage device is coupled to the host computing device; a one time password generator implemented within the portable mass storage device; a client application; and a second electronic entity with which the mass storage device passes a user identifier of a user of the mass storage device, the device identifier, and a one time password value, wherein the client application is launched, wherein the client application is executed by a processor of the host computing device, wherein the client application sends a request to the mass storage device, and wherein the one time password value is generated within the portable device by the one time password generator in response to the request. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A portable device capable of mass storage of user files and of user credential management, the portable device having a physical interface for removably coupling the device to a host device, and comprising:
-
mass storage solid state memory used to store user files and programs; a micro controller that controls read and write operations of the mass storage solid state memory; a one time password generator; an application residing in the mass storage solid state memory, the application executable by a processor of the host to retrieve a one time password from the password generator of the device; and a first seed and counter pair, the first pair to authenticate the device to a first institution, wherein the portable device comprises a portable memory card or a portable USB drive and wherein the one time password generator is implemented within the portable device and generates the one time password within the portable device, wherein the application is configured to present to the user plural institutions for the user to access and wherein the one time password generator is configured to generate one time passwords for each of the institutions.
-
-
18. A system for controlling access to data sites, the system comprising:
-
a mass storage device that can be removably coupled to a host computing device, wherein the mass storage device comprises a portable memory card or a portable USB drive; a first electronic entity that loads a seed and a device identifier to the host computing device and mass storage device, while the mass storage device is coupled to the host computing device; a one time password generator implemented within the portable mass storage device; and a second electronic entity with which the mass storage device passes a user identifier of a user of the mass storage device, the device identifier, and a one time password value, wherein the one time password value is generated within the portable device by the one time password generator, wherein the mass storage device includes an application launched from the mass storage device, executable by the host computing device, and configured to present to the user plural institutions for the user to access and wherein the one time password generator is configured to generate one time password values for each of the institutions.
-
Specification