Two-factor authentication systems and methods
First Claim
Patent Images
1. A method of authentication/authorization, comprising:
- receiving an authentication request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device;
sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system;
sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically;
enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and
automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for authenticating defined user actions over a computer network. An authentication service receives an authentication request from an authenticating service to perform an action on behalf of a user. The authentication service then sends a permission request to a mobile device associated with the user, asking the user whether or not the action should be allowed. The user sends a permission response via the mobile device to the authentication service, granting or denying the action. The user may automate future similar responses so long as at least one automation criterion is met (e.g., the physical location of the mobile device), eliminating the need to manually provide a response to future permission requests. Information necessary to determine whether the automation criterion is met is stored locally on the mobile device.
-
Citations
19 Claims
-
1. A method of authentication/authorization, comprising:
-
receiving an authentication request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device; sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system; sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically; enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for authentication/authorization, comprising:
-
at least one processor; at least one memory element storing instructions for controlling said at least one processor to perform steps comprising; receiving an authentication/authorization request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device; sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system; sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically; enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate. - View Dependent Claims (16)
-
-
17. A non-transitory computer-readable medium including one or more sequences of instructions which, when executed by one or more processors, causes said one or more processors to perform the steps comprising:
-
receiving an authentication/authorization request from an authenticating service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using at least one mobile device; sending a permission request to said at least one mobile device associated with said user to grant or deny permission to perform said action, wherein said at least one mobile device is paired with said authenticating service system; sending a permission response from said at least one mobile device to said authenticating service system, wherein said permission response can be generated manually or automatically; enabling said user to select a feature to automate said permission response to allow said user to eliminate a need to manually grant or deny any future permission request for said action, wherein said future permission requests meet at least one automation criterion; and automating said permission response to said future permission requests without prompting said user to grant or deny said future permission requests if said user has selected said feature to automate. - View Dependent Claims (18)
-
-
19. A mobile device for authenticating/authorizing a permission request from an authenticating service system, said mobile device including a processor and operable to perform operations comprising:
-
receiving a permission request from an authentication service system after an authentication/authorization request has been received by said authentication service system to verify an action to be performed on behalf of a user based on an authentication/authorization process using said mobile device; presenting information related to said permission request, wherein said mobile device is paired with said authenticating service system; receiving sensory input from a user to determine a permission response; sending said permission response from said mobile device to said authentication service terminal, wherein said permission response can be generated manually or automatically; and receiving sensory input from a user that selects whether to automate a permission response for future permission requests when at least one automation criterion is met, such that future permission responses do not require sensory input from said user to eliminate a need to manually grant or deny any future permission requests for said action, wherein information necessary to determine whether said at least one automation criterion is met is stored on said mobile device.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeSalesforce.com, Inc.
-
Original AssigneeToopher, Inc. (Salesforce.com, Inc.)
-
InventorsGrim, Evan Tyler
-
Primary Examiner(s)Chai, Longbit
-
Application NumberUS13/660,976Publication NumberTime in Patent Office376 DaysField of Search726/4US Class Current726/4CPC Class CodesH04L 2463/082 applying multi-factor authe...H04L 63/08 for authentication of entit...H04W 12/06 AuthenticationH04W 12/50 Secure pairing of devicesH04W 4/023 using mutual or relative lo...
