Accessing data based on authenticated user, provider and system

US 8,752,153 B2
Filed: 07/18/2011
Issued: 06/10/2014
Est. Priority Date: 02/05/2009
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method comprising:

authenticating an authentication system, a user, and a service provider;

generating, by a computer system, an access code based on a one way permutation of data related to the authenticated user and data related to the authenticated service provider, where the one way permutation is a function in which the data related to the authenticated user and the data related to the authenticated service provider cannot be determined by knowing the access code;

determining one or more data storage locations based on the access code;

using the access code to access at least some of the data storage locations; and

retrieving the data from the accessed data storage locations.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method that includes authenticating an authentication system, a user, and a service provider, generating an access code based on a combination of data related to the authenticated user and data related to the authenticated service provider, and using the access code to access at least some of data storage locations is described herein.

228 Citations

23 Claims

1. A computer-implemented method comprising:
- authenticating an authentication system, a user, and a service provider;
  
  generating, by a computer system, an access code based on a one way permutation of data related to the authenticated user and data related to the authenticated service provider, where the one way permutation is a function in which the data related to the authenticated user and the data related to the authenticated service provider cannot be determined by knowing the access code;
  
  determining one or more data storage locations based on the access code;
  
  using the access code to access at least some of the data storage locations; and
  
  retrieving the data from the accessed data storage locations.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 2. The method of claim 1, further comprising storing data received from the user or the service provider at the one or more data storage locations determined based on an access code generated based on the one way permutation of data related to the user and data related to the service provider.
  - 3. The method of claim 1, further comprising transmitting data from the user or the service provider to the one or more data storage locations, the locations being determined based on an access code generated based on the one way permutation of data related to the user and data related to the service provider.
  - 4. The method of claim 3, further comprising encrypting the data prior to transmitting the data.
  - 5. The method of claim 1, wherein retrieving data from the one or more data storage locations comprises retrieving data from multiple data storage areas with each of the multiple storage areas located in a geographical area that is different from the geographical area of the other ones of the multiple storage areas.
  - 6. The method of claim 1, wherein retrieving data from the one or more data storage locations comprises retrieving data from multiple data storage areas with each of the multiple storage areas existing under a set of legal jurisdictions that is different from legal jurisdictions of each of the other ones of the multiple storage areas.
  - 7. The method of claim 1, wherein retrieving data from the one or more data storage locations comprises retrieving data from multiple data storage locations with each of the multiple storage locations existing under the control of a single organization.
  - 8. The method of claim 1, wherein retrieving data from the multiple data storage locations comprises retrieving the data from multiple geographically dispersed data storage locations that are separated such that a single natural disaster would not simultaneously affect any two of the storage locations.
  - 9. The method of claim 1, wherein retrieving data from the multiple data storage locations comprises retrieving data from multiple data storage areas with locations that are separated by at least 10 miles.
  - 10. The method of claim 1, wherein retrieving data from the multiple data storage locations comprises retrieving data from multiple data storage areas located on different continents.
  - 11. The method of claim 1, wherein retrieving data from the multiple data storage locations comprises retrieving data from multiple data storage areas located in different countries.
  - 12. The method of claim 1, wherein the data related to the authenticated user comprises a user ID identifying the authenticated user and the data related to the authenticated service provider comprises a service provider ID identifying the authenticated service provider.
  - 13. The method of claim 12, wherein generating the access code comprises:
    - receiving, by the authentication system, the user ID and the service provider ID, andderiving the access code using a one way function based on the user ID and the service provider ID.
  - 14. The method of claim 12, wherein generating the access code comprises performing a one way function on the user ID, the service provider ID, and one or more additional inputs.
  - 15. The method of claim 1, wherein authenticating the authentication system comprises exchanging results of mathematical calculations based on a shared secret between the authentication system and the user or service provider.
  - 16. The method of claim 1, wherein authenticating the user comprises authenticating the user based on the presence of a physical token.
  - 17. The method of claim 1, wherein authenticating the user comprises authenticating the user based on the presence of information resident on a user'"'"'s mobile computing device.
  - 18. The method of claim 1, wherein the user comprises a human.
  - 19. The method of claim 1, wherein the user comprises a non-human entity.
  - 20. The method of claim 1, wherein generating the access code comprises generating the access code based on the data related to the authenticated user, the data related to the authenticated service provider, and one or more additional inputs.
  - 21. The method of claim 1, wherein authenticating the service provider comprises authenticating the service provider based on the presence of a physical token.
  - 22. The method of claim 1, wherein authenticating the service provider comprises authenticating the service provider based on information resident on a computing device associated with the service provider.

23. A computer-implemented method for authenticating transactions with multiple, different service providers based on the presence of a single physical token associated with a user, the method comprising:
- authenticating the user based on the presence of the physical token and authenticating a first service provider;
  
  generating, by a computer system, a first access code based on a one way permutation of data related to the authenticated user and data related to the authenticated first service provider,determining one or more data storage locations based on the first access code;
  
  using the first access code to access at least some of the data storage locations;
  
  authenticating the user based on the presence of the physical token and authenticating a second service provider, the second service provider being different than the first service provider;
  
  generating, by a computer system, a first access code based on a one way permutation of data related to the authenticated user and data related to the authenticated second service provider,determining one or more data storage locations based on the second access code; and
  
  using the second access code to access at least some of the data storage locations.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
WwPass Corp.
Original Assignee
WwPass Corp.
Inventors
Vysogorets, Mikhail, Shablygin, Eugene
Primary Examiner(s)
Yalew, Fikremariam A

Application Number

US13/184,910
Publication Number

US 20120066757A1
Time in Patent Office

1,058 Days
Field of Search

None
US Class Current

726/9
CPC Class Codes

G06F 21/34 involving the use of extern...

Accessing data based on authenticated user, provider and system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

228 Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Accessing data based on authenticated user, provider and system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

228 Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links