Two-factor authentication systems and methods
First Claim
1. A method of authentication/authorization, comprising:
- receiving an authentication request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device;
sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system;
sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically;
enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and
automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for authenticating defined user actions over a computer network. An authentication service receives an authentication request from an authenticating service to perform an action on behalf of a user. The authentication service then sends a permission request to a mobile device associated with the user, asking the user whether or not the action should be allowed. The user sends a permission response via the mobile device to the authentication service, granting or denying the action. The user may automate future similar responses so long as at least one automation criterion is met (e.g., the physical location of the mobile device), eliminating the need to manually provide a response to future permission requests. Information necessary to determine whether the automation criterion is met is stored locally on the mobile device.
-
Citations
19 Claims
-
1. A method of authentication/authorization, comprising:
-
receiving an authentication request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device; sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system; sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically; enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for authentication/authorization, comprising:
-
at least one processor; at least one memory element storing instructions for controlling said at least one processor to perform steps comprising; receiving an authentication/authorization request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device; sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system; sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically; enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate. - View Dependent Claims (16)
-
-
17. A non-transitory computer-readable medium including one or more sequences of instructions which, when executed by one or more processors, causes said one or more processors to perform the steps comprising:
-
receiving an authentication/authorization request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device; sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system; sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically; enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate. - View Dependent Claims (18)
-
-
19. A mobile device for authenticating/authorizing a permission request from an authenticating service system, said mobile device including a processor and operable to perform operations comprising:
-
receiving a permission request from an authentication service system after an authentication/authorization request has been received by said authentication service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using said mobile device; presenting information related to said permission request, wherein said mobile device is paired with said authenticating service system; receiving sensory input from a user to determine a permission response; sending said permission response from said mobile device to said authentication service terminal, wherein said permission response can be generated manually or automatically; and receiving sensory input from a user that selects whether to automate a permission response for future permission requests when at least one automation criterion is met, such that future permission responses do not require sensory input from said user to eliminate a need to manually grant or deny any future permission requests for said action, wherein information necessary to determine whether said at least one automation criterion is met is stored on said mobile device.
-
Specification