Out of band system and method for authentication
First Claim
Patent Images
1. A method for authentication of a user with a device who is attempting a first transaction comprising the steps of:
- establishing the asserted identity of the user;
informing an authentication server that the user is attempting to conduct a transaction;
conducting a second transaction with the user'"'"'s device and the authentication server to verify that the user is in possession of the device, wherein the second transaction comprises;
providing, via an out of band channel used for establishing the asserted identify of the user, an authentication notification message indicating that the transaction is being conducted and prompting entry of a token, andreceiving, via the out of band channel, the token;
in response to receiving the token, sending an out of band one-time passcode to the device registered to the user;
entering the one-time passcode into the dialogue;
validating the one-time passcode; and
authorizing the first transaction.
4 Assignments
0 Petitions
Accused Products
Abstract
A method and system for out of band authentication for ensuring a user is in possession of a device.
186 Citations
19 Claims
-
1. A method for authentication of a user with a device who is attempting a first transaction comprising the steps of:
-
establishing the asserted identity of the user; informing an authentication server that the user is attempting to conduct a transaction; conducting a second transaction with the user'"'"'s device and the authentication server to verify that the user is in possession of the device, wherein the second transaction comprises; providing, via an out of band channel used for establishing the asserted identify of the user, an authentication notification message indicating that the transaction is being conducted and prompting entry of a token, and receiving, via the out of band channel, the token; in response to receiving the token, sending an out of band one-time passcode to the device registered to the user; entering the one-time passcode into the dialogue; validating the one-time passcode; and authorizing the first transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for authentication of a user with a device who is attempting a transaction comprising the steps of:
-
establishing the asserted identity of the user; receiving, via an out of band channel used for establishing the asserted identity of the user, a secure message from an application provided at the device verifying that the user is in possession of the device; sending an out of band one-time passcode to the device registered to the user; validating the one-time passcode; and authorizing the transaction via the release of a key, wherein the key (i) is symmetric or asymmetric, (ii) is representative of the individual conducting the transaction and the server on which the transaction was conducted, and (iii) can be tied to the unique user through non-repudiatory log and audit capabilities. - View Dependent Claims (12, 13)
-
-
14. A method for authentication of a user with a device who is attempting a first transaction comprising the steps of:
-
establishing the asserted identity of the user; conducting a second transaction with the user'"'"'s device and the authentication server to verify that the user is in possession of the device, wherein the second transaction comprises providing, via an out of band channel used for establishing the asserted identify of the user, an authentication notification message to the device indicating that the transaction is being conducted and prompting entry of a token, receiving, via the out of band channel, the token, and receiving a secure message from an application provided at the device verifying that the user is in possession of the device; sending an out of band one-time passcode to the device registered to the user; and entering the one-time passcode into the dialogue to authorize the transaction. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification