Mass storage device with automated credentials loading
First Claim
1. A method for accessing an account with a portable mass storage device, the method comprising:
- detecting a connecting of the portable mass storage device with a host, the portable mass storage device comprising a portable memory device or a portable USB drive;
executing a client application using the host;
sending a request from the client application to the portable mass storage device;
generating, in response to the request and within the portable mass storage device, a one time password; and
causing the one time password to be transmitted to an institution along with identifying information, thereby logging into an account.
2 Assignments
0 Petitions
Accused Products
Abstract
A portable mass storage device for use in two factor authentication systems and methods. A secure portable mass storage device protects content from being freely copied with security mechanisms and firmware. The security functionality also protects confidential user credentials and passwords, as well as algorithms and seeds needed for two factor authentication or asymmetric authentication methods. A client application residing in the mass storage device acts as both a password manager and an authentication manager that seamlessly performs the authentication procedures in the background while signing a user into various institutions of his choosing. A very high level of security is integrated into a mass storage device the user has for purposes other than two factor authentication, and the convenience of highly secure password management also comes in a convenient pocket sized package easy for the user to transport. This facilitates the acceptance of two factor authentication, and increases security for a wide variety of online transactions.
404 Citations
38 Claims
-
1. A method for accessing an account with a portable mass storage device, the method comprising:
-
detecting a connecting of the portable mass storage device with a host, the portable mass storage device comprising a portable memory device or a portable USB drive; executing a client application using the host; sending a request from the client application to the portable mass storage device; generating, in response to the request and within the portable mass storage device, a one time password; and causing the one time password to be transmitted to an institution along with identifying information, thereby logging into an account. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for accessing an account with a portable mass storage device, the system comprising:
-
a portable mass storage device comprising a portable memory device or a portable USB drive that is configured to connect with a host computing device; a client application configured to execute on the host and to send a request for a one time password to the portable mass storage device; wherein the portable mass storage device is configured to generate, in response to the request and within the portable mass storage device, a one time password; and wherein the client application causes the one time password to be transmitted to an institution along with identifying information, thereby logging into an account. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A portable device capable of mass storage of user files and of user credential management, the portable device having a physical interface for removably coupling the device to a host device, and comprising:
-
mass storage solid state memory used to store user data; a controller that controls read and write operations of the mass storage solid state memory; a one time password generator; an application residing in the mass storage solid state memory, the application executable by a processor to retrieve a one time password from the one time password generator of the portable device; and a first seed and counter pair usable to authenticate the portable device to a first institution, wherein the portable device comprises a portable memory card or a portable USB drive and wherein the one time password generator is implemented within the portable device and generates the one time password within the portable device. - View Dependent Claims (22, 23)
-
-
24. A system for controlling access to data sites, the system comprising:
-
A portable mass storage device that can be removably coupled to a host computing device, wherein the portable mass storage device comprises a portable memory card or a portable USB drive; a first electronic entity that loads a seed and a device identifier to the host computing device and the portable mass storage device while the mass storage device is coupled to the host computing device; a one time password generator implemented within the portable mass storage device; and a second electronic entity with which the portable mass storage device passes a user identifier of a user of the portable mass storage device, the device identifier, and a one time password value, wherein the one time password value is generated within the portable device by the one time password generator. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
-
Specification