Simplified login for mobile devices
First Claim
1. A method implemented at least in part by a computer, the method comprising:
- in conjunction with a first logon activity, receiving a PIN from a user interface of a mobile device;
sending the PIN and user credentials to a server outside the mobile device;
receiving encrypted data that includes the PIN and the user credentials at the mobile device;
storing the encrypted data on the mobile device;
in conjunction with a second logon activity, receiving the PIN from the user interface; and
sending the PIN, unencrypted, and the encrypted data to the server to enable the server to compare the PIN, unencrypted, and the PIN that is included in the encrypted data to determine whether to grant the mobile device access to a resource, the encrypted data being sent as a parameter of a resource locator associated with the resource, the encrypted data including a revalidation date after which a password is to be supplied to obtain access to the resource via the mobile device.
2 Assignments
0 Petitions
Accused Products
Abstract
Aspects of the subject matter described herein relate to a simplified login for mobile devices. In aspects, on a first logon, a mobile device asks a user to enter credentials and a PIN. The credentials and PIN are sent to a server which validates user credentials. If the user credentials are valid, the server encrypts data that includes at least the user credentials and the PIN and sends the encrypted data to the mobile device. In subsequent logons, the user may logon using only the PIN. During login, the mobile device sends the PIN in conjunction with the encrypted data. The server can then decrypt the data and compare the received PIN with the decrypted PIN. If the PINs are equal, the server may grant access to a resource according to the credentials.
12 Citations
20 Claims
-
1. A method implemented at least in part by a computer, the method comprising:
-
in conjunction with a first logon activity, receiving a PIN from a user interface of a mobile device; sending the PIN and user credentials to a server outside the mobile device; receiving encrypted data that includes the PIN and the user credentials at the mobile device; storing the encrypted data on the mobile device; in conjunction with a second logon activity, receiving the PIN from the user interface; and sending the PIN, unencrypted, and the encrypted data to the server to enable the server to compare the PIN, unencrypted, and the PIN that is included in the encrypted data to determine whether to grant the mobile device access to a resource, the encrypted data being sent as a parameter of a resource locator associated with the resource, the encrypted data including a revalidation date after which a password is to be supplied to obtain access to the resource via the mobile device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 15)
-
-
9. A computer storage medium having computer-executable instructions, which when executed perform actions, comprising:
-
receiving credentials and a first number from a mobile device, the credentials including a username and a password, the first number comprising a string of numeric digits, each digit enterable on the mobile device by pressing a single key; authenticating the credentials, said authenticating including validating the password; encrypting, in data, the first number and evidence of authentication of the credentials; sending the data to the mobile device for use in subsequent logons, said sending including sending a revalidation date to the mobile device, the revalidation date being a date after which the password is to be revalidated prior to granting access to the resource; receiving a second number, unencrypted, and the data from the mobile device; decrypting the data to obtain the credentials and the first number; comparing the second number to the first number to determine whether the first number and the second number match; determining whether to grant access to a resource based on the credentials, the first number, and the second number; and in response to determining whether to grant the access, performing actions comprising; granting access to the resource based on the credentials if the first number and the second number match but not if the first number and the second number do not match; and generating a message to cause an invalid logon attempt to be recorded in a log and recording the invalid logon attempt in the log if the first number and the second number do not match but not if the first number and the second number match. - View Dependent Claims (10, 16, 17, 18)
-
-
11. In a mobile device having a display, a method comprising:
-
receiving input for a first logon, comprising; displaying a first field for accepting a username, displaying a second field for accepting a password, displaying a third field for accepting a PIN, and displaying a user interface element that when activated sets the PIN; receiving second input for a second logon, the second input including the PIN and not including the username and password; and displaying a revalidation screen, the revalidation screen including the username and a field for receiving the password, the revalidation screen being displayed after a revalidation date occurs. - View Dependent Claims (12, 13, 14, 19, 20)
-
Specification