Method and system of user authentication using a portable authenticator

US 8,474,029 B2
Filed: 03/19/2012
Issued: 06/25/2013
Est. Priority Date: 04/07/2003
Status: Active Grant

First Claim

Patent Images

1. A method in an electronic device of facilitating access to the electronic device, the method comprising:

detecting at the electronic device an attempt to access the electronic device;

in response to detecting the attempt, prompting for password entry at the electronic device;

receiving an entered password at the electronic device;

performing at the electronic device a first determination whether the entered password corresponds to a stored electronic device password;

transmitting the entered password to a portable authenticator that is communicably coupled to the electronic device, in order for the portable authenticator to perform a second determination whether the entered password corresponds to a stored portable authenticator password;

receiving the second determination from the portable authenticator; and

controlling access to the electronic device in accordance with the first determination and the second determination.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are provided for facilitating access to an electronic device. Password information is stored on the electronic device, and on a portable authenticator. When a user attempts to access the electronic device, the user is prompted to enter a password at the electronic device. The portable authenticator determines the validity of the entered password. The electronic device receives the results of the validity determination from the portable authenticator, and provides access to the electronic device based on the received validity determination.

19 Citations

View as Search Results

29 Claims

1. A method in an electronic device of facilitating access to the electronic device, the method comprising:
- detecting at the electronic device an attempt to access the electronic device;
  
  in response to detecting the attempt, prompting for password entry at the electronic device;
  
  receiving an entered password at the electronic device;
  
  performing at the electronic device a first determination whether the entered password corresponds to a stored electronic device password;
  
  transmitting the entered password to a portable authenticator that is communicably coupled to the electronic device, in order for the portable authenticator to perform a second determination whether the entered password corresponds to a stored portable authenticator password;
  
  receiving the second determination from the portable authenticator; and
  
  controlling access to the electronic device in accordance with the first determination and the second determination.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method as claimed in claim 1, wherein the first determination is that the entered password corresponds to the stored electronic device password and the second determination is that the entered password corresponds to the stored portable authenticator password, the method further comprising:
    - providing access to the electronic device.
  - 3. The method as claimed in claim 2, further comprising:
    - maintaining access to the electronic device after detecting decoupling of the portable authenticator from the electronic device.
  - 4. The method as claimed in claim 2, further comprising:
    - terminating access to the electronic device after detecting decoupling of the portable authenticator from the electronic device.
  - 5. The method as claimed in claim 2, further comprising:
    - activating one or more security functions after detecting decoupling of the portable authenticator from the electronic device.
  - 6. The method as claimed in claim 5, wherein the one or more security functions comprise clearing information from a display of the electronic device.
  - 7. The method as claimed in claim 5, wherein the one or more security functions comprise erasing previously encrypted information that was decrypted and stored at the electronic device after providing access to the electronic device.
  - 8. The method as claimed in claim 1, wherein the second determination is that the entered password does not correspond to the stored portable authenticator password, the method further comprising:
    - denying unrestricted access to the electronic device.
  - 9. The method as claimed in claim 8, the method further comprising:
    - performing one or more error processing operations.
  - 10. The method as claimed in claim 9, wherein the one or more error processing operations comprise erasing one or more data items stored at the electronic device or erasing one or more data items stored at the portable authenticator or both.
  - 11. The method as claimed in claim 9, wherein the first determination is that the entered password corresponds to the stored electronic device password and wherein the error processing operations comprise providing access only to one or more low-security functions of the electronic device.

12. A method in an electronic device of facilitating access to the electronic device, the method comprising:
- detecting an attempt to access the electronic device;
  
  in response to detecting the attempt, prompting for entry of a first password and a second password at the electronic device;
  
  receiving a first entered password and a second entered password at the electronic device;
  
  performing at the electronic device a first determination whether the first entered password corresponds to a stored electronic device password;
  
  transmitting the second entered password to a portable authenticator that is communicably coupled to the electronic device, in order for the portable authenticator to perform a second determination whether the second entered password corresponds to a first stored portable authenticator password;
  
  receiving the second determination from the portable authenticator; and
  
  controlling access to the electronic device in accordance with the first determination and the second determination.
- View Dependent Claims (13, 14, 15)
- - 13. The method as claimed in claim 12, wherein the first determination is that the first entered password corresponds to the stored electronic device password and the second determination is that the second entered password corresponds to the first stored portable authenticator password, the method further comprising:
    - providing access to the electronic device.
  - 14. The method as claimed in claim 13, further comprising:
    - replacing the electronic device password with the second entered password.
  - 15. The method as claimed in claim 13, wherein the electronic device stores a second stored portable authenticator password, the method further comprising:
    - receiving the first stored portable authenticator password from the portable authenticator; and
      
      wherein the first stored portable authenticator password does not correspond to the second stored portable authenticator password, replacing the second stored portable authenticator password stored at the electronic device with the first stored portable authenticator password received from the portable authenticator.

16. An electronic device comprising:
- a portable authenticator interface through which the electronic device is configured to be communicably coupled to a portable authenticator;
  
  an input device through which the electronic device is configured to receive an entered password;
  
  a processor communicably coupled to the portable authenticator interface and to the input device; and
  
  a memory communicably coupled to the processor, the memory to store software arranged;
  
  to prompt for password entry at the electronic device in response to detecting at the electronic device an attempt to access the electronic device;
  
  to receive the entered password via the input device;
  
  to perform at the electronic device a first determination whether the entered password corresponds to a stored electronic device password;
  
  to transmit the entered password to the portable authenticator via the portable authenticator interface, in order for the portable authenticator to perform a second determination whether the entered password corresponds to a stored portable authenticator password;
  
  to receive the second determination from the portable authenticator via the portable authenticator interface; and
  
  to control access to the electronic device in accordance with the first determination and the second determination.
- View Dependent Claims (17, 18)
- - 17. The electronic device as claimed in claim 16, wherein the first determination is that the entered password does not correspond to the stored electronic device password and the second determination is that the entered password corresponds to the stored portable authenticator password, the software further arranged:
    - to receive portable authenticator information from the portable authenticator via the portable authenticator interface; and
      
      where a portion of the portable authenticator information matches a corresponding portion of portable authenticator information stored in the memory of the electronic device, to provide access to a subset of functions of the electronic device and to deny unrestricted access to the electronic device.
  - 18. The electronic device as claimed in claim 16, wherein the first determination is that the entered password does not correspond to the stored electronic device password and the second determination is that the entered password corresponds to the stored portable authenticator password, the software further arranged:
    - to receive portable authenticator information from the portable authenticator via the portable authenticator interface; and
      
      where the portable authenticator information matches portable authenticator information stored in the memory of the electronic device, to provide access to the electronic device.

19. An electronic device comprising:
- a portable authenticator interface through which the electronic device is configured to be communicably coupled to a portable authenticator;
  
  an input device through which the electronic device is configured to receive a first entered password and a second entered password;
  
  a processor communicably coupled to the portable authenticator interface and to the input device; and
  
  a memory communicably coupled to the processor, the memory to store software arranged;
  
  to prompt for entry of a first password and a second password at the electronic device in response to detecting an attempt to access the electronic device;
  
  to receive the first entered password and the second entered password via the input device;
  
  to perform at the electronic device a first determination whether the first entered password corresponds to a stored electronic device password;
  
  to transmit the second entered password to a portable authenticator via the portable authenticator interface, in order for the portable authenticator to perform a second determination whether the second entered password corresponds to a stored portable authenticator password;
  
  to receive the second determination from the portable authenticator via the portable authenticator interface; and
  
  to control access to the electronic device in accordance with the first determination and the second determination.
- View Dependent Claims (20, 21, 22)
- - 20. The electronic device as claimed in claim 19, wherein the first determination is that the first entered password corresponds to the stored electronic device password and the second determination is that the second entered password corresponds to the stored portable authenticator password, the software further arranged:
    - to provide access to the electronic device.
  - 21. The electronic device as claimed in claim 19, wherein the second determination is that the second entered password does not correspond to the stored portable authenticator password, the software further arranged:
    - to deny unrestricted access to the electronic device.
  - 22. The electronic device as claimed in claim 21, wherein the first determination is that the first entered password corresponds to the stored electronic device password, the software further arranged:
    - to provide access only to one or more low-security functions of the electronic device.

23. A non-transitory computer readable medium able to be communicably coupled to a processor of an electronic device, the computer readable medium storing software arranged:
- to prompt for password entry at the electronic device in response to detecting at the electronic device an attempt to access the electronic device;
  
  to receive an entered password via an input device of the electronic device;
  
  to perform at the electronic device a first determination whether the entered password corresponds to a stored electronic device password;
  
  to transmit the entered password from the electronic device to a portable authenticator via a portable authenticator interface of the electronic device, in order for the portable authenticator to perform a second determination whether the entered password corresponds to a stored portable authenticator password;
  
  to receive the second determination from the portable authenticator via the portable authenticator interface; and
  
  to control access to the electronic device in accordance with the first determination and the second determination.
- View Dependent Claims (24, 25)
- - 24. The non-transitory computer readable medium as claimed in claim 23, wherein the first determination is that the entered password does not correspond to the stored electronic device password and the second determination is that the entered password corresponds to the stored portable authenticator password, the software further arranged:
    - to receive portable authenticator information from the portable authenticator via the portable authenticator interface; and
      
      a portion of the portable authenticator information matches a corresponding portion of portable authenticator information stored in the memory of the electronic device, to provide access to a subset of functions of the electronic device and to deny unrestricted access to the electronic device.
  - 25. The non-transitory computer readable medium as claimed in claim 23, wherein the first determination is that the entered password does not correspond to the stored electronic device password and the second determination is that the entered password corresponds to the stored portable authenticator password, the software further arranged:
    - to receive portable authenticator information from the portable authenticator via the portable authenticator interface; and
      
      where the portable authenticator information matches portable authenticator information stored in the memory of the electronic device, to provide access to the electronic device.

26. A non-transitory computer readable medium able to be communicably coupled to a processor of an electronic device, the computer readable medium storing software arranged:
- to prompt for entry of a first password and a second password at the electronic device in response to detecting an attempt to access the electronic device;
  
  to receive a first entered password and a second entered password via an input device of the electronic device;
  
  to perform at the electronic device a first determination whether the first entered password corresponds to a stored electronic device password;
  
  to transmit the second entered password from the electronic device to a portable authenticator via a portable authenticator interface of the electronic device, in order for the portable authenticator to perform a second determination whether the second entered password corresponds to a stored portable authenticator password;
  
  to receive the second determination from the portable authenticator via the portable authenticator interface; and
  
  to control access to the electronic device in accordance with the first determination and the second determination.
- View Dependent Claims (27, 28, 29)
- - 27. The non-transitory computer readable medium as claimed in claim 26, wherein the first determination is that the first entered password corresponds to the stored electronic device password and the second determination is that the second entered password corresponds to the stored portable authenticator password, the software further arranged:
    - to provide access to the electronic device.
  - 28. The non-transitory computer readable medium as claimed in claim 26, wherein the second determination is that the second entered password does not correspond to the stored portable authenticator password, the software further arranged:
    - to deny unrestricted access to the electronic device.
  - 29. The non-transitory computer readable medium as claimed in claim 28, wherein the first determination is that the first entered password corresponds to the stored electronic device password, the software further arranged:
    - provide access only to one or more low-security functions of the electronic device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
Adams, Neil Patrick, Tapuska, David Francis, Brown, Michael Stephen, Little, Herbert Anthony
Primary Examiner(s)
Chea, Philip
Assistant Examiner(s)
Traore, Fatoumata

Application Number

US13/423,966
Publication Number

US 20120233681A1
Time in Patent Office

463 Days
Field of Search

None
US Class Current

726/9
CPC Class Codes

G06F 1/1626   with a single-body enclosur...

G06F 1/1632   External expansion units, e...

G06F 1/1656   Details related to function...

G06F 21/34   involving the use of extern...

Method and system of user authentication using a portable authenticator

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

19 Citations

29 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system of user authentication using a portable authenticator

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

19 Citations

29 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links