Method for mobile security via multi-factor context authentication
First Claim
Patent Images
1. A computer-based multi-factor user authentication method across a mobile network, the steps comprising:
- providing a server and one or more applications,wherein said server includes a profile algorithm;
receiving a request for an access to a host by a main user at a presentation over a user channel;
receiving a requesting said-serve to perform a context verification decision from said host over a host channel;
creating two or more template objects by said profile algorithm of said server;
wherein said two or more template objects are a first template and a second template;
sending an code object to said host over said host channel by said server;
wherein said code object is presented to a device of said main user at said presentation and over said user channel by said host;
wherein said device comprises said one or more applications;
wherein said code object triggers said one or more applications to contact said server, such that said server and said one or more applications mutually interrogate each other, such that one or more one-time signatures are algorithmically computed;
processing said first template by said server;
wherein said processing step of said first template is based upon one or more contextual factors;
populating said first template by said server;
creating and storing a first signature by said server;
wherein said creating step of said first signature is based upon said processing step of said first template;
wherein said code object is consumed by said main user on said device through said one or more applications;
requesting said second template on said server over a smart channel by said one or more applications;
sending said second template to said one or more applications on said device over said smart channel by said server;
processing said second template by said one or more applications;
populating said second template by said one or more applications;
creating and storing a second signature by said one or more applications;
wherein said creating step of said second signature is based upon said second template; and
performing said context verification decision when comparing said first signature and said second signature over said smart channel.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention is a system and a method for improving the authentication security across a network from a mobile electronic computing device in the context of one or more users, devices, sites/sessions, servers, locations, proximity, motion and/or behavioral attributes within a defined session lifecycle. The authentication method and system utilizes a strong, elegant, private, definitive and real-time, triangulated verification, which requires mutual authentication between the parties.
75 Citations
20 Claims
-
1. A computer-based multi-factor user authentication method across a mobile network, the steps comprising:
-
providing a server and one or more applications, wherein said server includes a profile algorithm; receiving a request for an access to a host by a main user at a presentation over a user channel; receiving a requesting said-serve to perform a context verification decision from said host over a host channel; creating two or more template objects by said profile algorithm of said server; wherein said two or more template objects are a first template and a second template; sending an code object to said host over said host channel by said server; wherein said code object is presented to a device of said main user at said presentation and over said user channel by said host; wherein said device comprises said one or more applications; wherein said code object triggers said one or more applications to contact said server, such that said server and said one or more applications mutually interrogate each other, such that one or more one-time signatures are algorithmically computed; processing said first template by said server; wherein said processing step of said first template is based upon one or more contextual factors; populating said first template by said server; creating and storing a first signature by said server; wherein said creating step of said first signature is based upon said processing step of said first template; wherein said code object is consumed by said main user on said device through said one or more applications; requesting said second template on said server over a smart channel by said one or more applications; sending said second template to said one or more applications on said device over said smart channel by said server; processing said second template by said one or more applications; populating said second template by said one or more applications; creating and storing a second signature by said one or more applications; wherein said creating step of said second signature is based upon said second template; and performing said context verification decision when comparing said first signature and said second signature over said smart channel. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer-based multi-factor user authentication method across a mobile network, the steps comprising:
-
providing a-hose a server and one or more applications, wherein said server includes a profile algorithm; receiving a request for an access to a host by a main user at a presentation over a user channel; receiving a request said-serve to perform a context verification decision from said host over a host channel; creating a first template and a second template by said profile algorithm of said server; sending an code object to said host over said host channel by said server; wherein said code object is presented to a device of said main user at said presentation and over said user channel by said host; wherein said device comprises said one or more applications; wherein said code object triggers said one or more applications to contact said server, such that said server and said one or more applications mutually interrogate each other, such that one or more one-time signatures are algorithmically computed; processing said first template by said server; wherein said processing step of said first template is based upon a first set of one or more contextual factors; populating said first template by said server; creating and storing a first signature by said server; wherein said creating step of said first signature is based upon said processing step of said first template; wherein said code object is consumed by said main user on said device through said one or more applications; requesting said second template of said server over a smart channel by said one or more applications; sending said second template to said one or more applications on said device over said smart channel by said server; processing said second template by said one or more applications; populating said second template by said one or more applications; creating and storing a second signature by said one or more applications; wherein said creating step of said second signature is based upon said second template; performing said context verification decision when comparing said first signature and said second signature over said smart channel; and
authenticating said device when said first signature is identical to said second signature. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A computer-based multi-factor user authentication method across a mobile network, the steps comprising:
-
providing a server and one or more applications, wherein said server includes a profile algorithm; receiving a request for an access to a host by a main user at a presentation over a user channel; receiving a request said-serve to perform a context verification decision from said host over a host channel; creating a first template and a second template by said profile algorithm of said server; sending an code object to said host over said host channel by said server; wherein said code object is presented to a device of said main user at said presentation and over said user channel by said host; wherein said device comprises said one or more applications; wherein said code object triggers said one or more applications to contact said server, such that said server and said one or more applications mutually interrogate each other, such that one or more one-time signatures are algorithmically computed; processing said first template by said server; wherein said processing step of said first template is based upon one or more contextual factors; populating said first template by said server; creating and storing a first signature by said server; wherein said creating step of said first signature is based upon said processing step of said first template; wherein said code object is consumed by said main user on said device through said one or more applications; wherein said creating and storing step of said first signature is based upon said consuming of said code object; requesting said second template of said server over a smart channel by said one or more applications; sending said second template to said one or more applications on said device over said smart channel by said server; processing said second template by said one or more applications; wherein said processing step of said second template is based upon of one or more contextual factors; populating said second template by said one or more applications; creating and storing a second signature by said one or more applications; deleting said one or more contextual factors by said server; wherein said creating step of said second signature is based upon said second template; performing said context verification decision when comparing said first signature and said second signature over said smart channel by said server and said one or more applications; and authenticating said device when said first signature is identical to said second signature.
-
Specification