User authentication management

US 8,832,806 B2
Filed: 10/15/2012
Issued: 09/09/2014
Est. Priority Date: 10/20/2008
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

enabling a third-party website to utilize a multi-factor authentication service;

registering a user of the third-party website with the multi-factor authentication service, the registering comprising at least one of;

providing an indication of an availability of the multi-factor authentication service to the user;

providing a short-code to the user;

orregistering a mobile device of the user;

providing a user account revocation service comprising a user interface (UI) that enables the user to revoke user designation of the mobile device for multi-factor authentication; and

providing a user account reporting service comprising a UI that enables the user to access a report, the report indicative of at least one of a domain of a second third-party website initiating the multi-factor authentication service in association with the user or an internet protocol (IP) address of a second user engaging the multi-factor authentication service in association with the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

End users of a multi-factor authentication service can utilize an account management service, and third-party website can register to utilize the multi-factor authentication service. Registering a third-party website can comprise the multi-factor authentication service receiving a valid digital identity certificate for the third-party website, and receiving an agreement to terms of use of the multi-factor authentication service for the third-party website. Once received, the multi-factor authentication service can enable the third-party website to utilize the service (e.g., switch the service on, or send an authorization key to the third-party website). Further, registering a user to the multi-factor authentication service can comprise determining availability of service, and providing a location-specific access code. Additionally, registering the user can comprise registering the user'"'"'s mobile device, for example, to provide multi-factor authentication. Also, an Internet-based user account management user interface can be provided that allows a user to view transactions on their account, and an ability to shut off a designated mobile device'"'"'s ability to authenticate.

Citations

20 Claims

1. A method, comprising:
- enabling a third-party website to utilize a multi-factor authentication service;
  
  registering a user of the third-party website with the multi-factor authentication service, the registering comprising at least one of;
  
  providing an indication of an availability of the multi-factor authentication service to the user;
  
  providing a short-code to the user;
  
  orregistering a mobile device of the user;
  
  providing a user account revocation service comprising a user interface (UI) that enables the user to revoke user designation of the mobile device for multi-factor authentication; and
  
  providing a user account reporting service comprising a UI that enables the user to access a report, the report indicative of at least one of a domain of a second third-party website initiating the multi-factor authentication service in association with the user or an internet protocol (IP) address of a second user engaging the multi-factor authentication service in association with the user.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, the enabling performed based upon at least one of a digital identity certificate or an acquiescence to terms of use of the multi-factor authentication service.
  - 3. The method of claim 1, the providing an indication performed based upon a locality of the user.
  - 4. The method of claim 1, the providing a short-code performed based upon a locality of the user.
  - 5. The method of claim 1, the report corresponding to one or more transactions.
  - 6. The method of claim 1, the report indicative of both the domain and the IP address.
  - 7. The method of claim 1, the report indicative of at least one of a transaction date or a transaction time.

8. A system, comprising:
- one or more processing units; and
  
  memory comprising instructions that when executed by at least some of the one or more processing units, perform a method comprising;
  
  enabling a third-party website to utilize a multi-factor authentication service;
  
  registering a user of the third-party website with the multi-factor authentication service, the registering comprising at least one of;
  
  providing an indication of an availability of the multi-factor authentication service to the user;
  
  providing a short-code to the user;
  
  orregistering a mobile device of the user;
  
  providing a user account revocation service comprising a user interface (UI) that enables the user to revoke user designation of the mobile device for multi-factor authentication; and
  
  providing a user account reporting service comprising a UI that enables the user to access a report, the report indicative of a domain of a second third-party website initiating the multi-factor authentication service in association with the user.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system of claim 8, the enabling performed based upon at least one of a digital identity certificate or an acquiescence to terms of use of the multi-factor authentication service.
  - 10. The system of claim 8, the providing an indication performed based upon a locality of the user.
  - 11. The system of claim 8, the providing a short-code performed based upon a locality of the user.
  - 12. The system of claim 8, the report corresponding to one or more transactions.
  - 13. The system of claim 8, the report indicative of an internet protocol (IP) address of a second user engaging the multi-factor authentication service in association with the user.
  - 14. The system of claim 8, the report indicative of at least one of a transaction date or a transaction time.

15. A computer readable storage medium, excluding signals, comprising instructions that when executed, perform a method, comprising:
- enabling a third-party website to utilize a multi-factor authentication service;
  
  registering a user of the third-party website with the multi-factor authentication service, the registering comprising at least one of;
  
  providing an indication of an availability of the multi-factor authentication service to the user;
  
  providing a short-code to the user;
  
  orregistering a mobile device of the user;
  
  providing a user account revocation service comprising a user interface (UI) that enables the user to revoke user designation of the mobile device for multi-factor authentication; and
  
  providing a user account reporting service comprising a UI that enables the user to access a report, the report indicative of an internet protocol (IP) address of a second user engaging the multi-factor authentication service in association with the user.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The computer readable storage medium of claim 15, the method comprising displaying a code for the user via the third-party website.
  - 17. The computer readable storage medium of claim 15, the method comprising sending a code to the user via a message to the mobile device of the user.
  - 18. The computer readable storage medium of claim 15, the method comprising receiving a code from the user via the third-party website.
  - 19. The computer readable storage medium of claim 15, the method comprising receiving a code from the user via a message from the mobile device of the user.
  - 20. The computer readable storage medium of claim 15, the report indicative of a domain of a second third-party website initiating the multi-factor authentication service in association with the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Ozzie, Raymond E., Ozzie, Jack E., Galvin, Thomas A., Patey, Eric M.
Primary Examiner(s)
Chen, Shin-Hon

Application Number

US13/652,025
Publication Number

US 20130042309A1
Time in Patent Office

694 Days
Field of Search

None
US Class Current

726/5
CPC Class Codes

G06F 21/35   communicating wirelessly

G06F 21/88   Detecting or preventing the...

G06Q 20/02   involving a neutral party, ...

G06Q 20/38215   Use of certificates or encr...

G06Q 20/3829   involving key management

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4014   Identity check for transact...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless

H04L 63/0853   using an additional device,...

H04L 63/18   using different networks or...

H04L 63/205   involving negotiation or de...

H04L 9/321   involving a third party or ...

H04L 9/3263   involving certificates, e.g...

User authentication management

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

User authentication management

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links