Single system for authenticating entities across different third party platforms

US 8,955,154 B2
Filed: 08/20/2013
Issued: 02/10/2015
Est. Priority Date: 07/08/2011
Status: Active Grant

First Claim

Patent Images

1. For an authentication system comprising at least one server device, a computer-implemented method for authenticating entities across a plurality of online service providers, the computer-implemented method comprising:

receiving from an online service provider of the plurality of online service providers, an authentication request for authenticating on behalf of the online service provider, whether a particular individual purchasing a good or service of the online service provider using a code is eligible to receive a promotion associated with the code, the authentication request providing identifying information used by the particular individual;

obtaining at least one qualifying parent-child relationship from the online service provider, the qualifying parent-child relationship identifying a particular parent business entity whose child entities are eligible to receive the promotion using the code;

querying a database using the identifying information, the database comprising a plurality of entity records, each entity record of the plurality of entity records containing previously verified information about a different individual or business;

selecting a particular entity record from the plurality of entity records containing previously verified information for the particular individual that matches the identifying information from the authentication request;

generating a series of challenge questions from the previously verified information of the particular entity record;

submitting the series of challenge questions from the authentication system to the online service provider for presentation to the particular individual;

receiving from the online service provider, a set of answers provided by the particular individual that are responsive to the series of challenge questions; and

authenticating by the authentication system on behalf of the online service provider, eligibility of the particular individual to receive the promotion associated with the code, said authenticating comprising performing a first authentication based on the set of answers correctly answering a specified number of the series of challenge questions and performing a second authentication based on the previously verified information from the particular entity record satisfying the qualifying parent-child relationship by identifying the particular individual as a child of the particular business entity, wherein said authenticating ensues from the user providing the code as part of purchasing the good or service from the online service provider and prior to the online service provider completing sale of the good or service to the entity.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Some embodiments provide an independent authentication system for authenticating entities that have registered accounts across different online service providers on behalf of the service providers. The authentication system maintains a database of previously verified entity information. A service provider requests authentication by providing the authentication system with unverified and basic identifying information used by an entity when registering with the service provider. The authentication system attempts to match the registration information against previously verified information for a known entity. When a match is found, the authentication system generates a series of challenge questions. The questions are submitted to the entity through the service provider and answers are processed in order to authenticate the entity. Authentication is thus provided on behalf of the service provider without the service provider accessing the previously verified information and without the service provider independently verifying the information within the generated challenge questions.

Citations

26 Claims

1. For an authentication system comprising at least one server device, a computer-implemented method for authenticating entities across a plurality of online service providers, the computer-implemented method comprising:
- receiving from an online service provider of the plurality of online service providers, an authentication request for authenticating on behalf of the online service provider, whether a particular individual purchasing a good or service of the online service provider using a code is eligible to receive a promotion associated with the code, the authentication request providing identifying information used by the particular individual;
  
  obtaining at least one qualifying parent-child relationship from the online service provider, the qualifying parent-child relationship identifying a particular parent business entity whose child entities are eligible to receive the promotion using the code;
  
  querying a database using the identifying information, the database comprising a plurality of entity records, each entity record of the plurality of entity records containing previously verified information about a different individual or business;
  
  selecting a particular entity record from the plurality of entity records containing previously verified information for the particular individual that matches the identifying information from the authentication request;
  
  generating a series of challenge questions from the previously verified information of the particular entity record;
  
  submitting the series of challenge questions from the authentication system to the online service provider for presentation to the particular individual;
  
  receiving from the online service provider, a set of answers provided by the particular individual that are responsive to the series of challenge questions; and
  
  authenticating by the authentication system on behalf of the online service provider, eligibility of the particular individual to receive the promotion associated with the code, said authenticating comprising performing a first authentication based on the set of answers correctly answering a specified number of the series of challenge questions and performing a second authentication based on the previously verified information from the particular entity record satisfying the qualifying parent-child relationship by identifying the particular individual as a child of the particular business entity, wherein said authenticating ensues from the user providing the code as part of purchasing the good or service from the online service provider and prior to the online service provider completing sale of the good or service to the entity.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. The computer-implemented method of claim 1, wherein the identifying information comprises a name that the particular individual uses in registering for the service of the online service provider.
  - 3. The computer-implemented method of claim 1, wherein selecting the particular entity record comprises identifying a set of the plurality of entity records that contain some previously verified information matching to the identifying information.
  - 4. The computer-implemented method of claim 3, wherein selecting the particular entity record further comprises presenting the set of entity records to the particular individual through an interface of the online service provider for selection of the particular entity record from the set of entity records by the particular individual.
  - 5. The computer-implemented method of claim 1 further comprising performing an alternative authentication of the particular individual when the set of answers fail to correctly answer the specified number of the series of challenge questions.
  - 6. The computer-implemented method of claim 5, wherein performing the alternative authentication comprises receiving official documentation from the particular individual with geolocation information identifying a location from which the official documentation is transmitted.
  - 7. The computer-implemented method of claim 6, wherein performing the alternative authentication further comprises authenticating the particular individual when address information in the official documentation matches to the location identified from the geolocation information.
  - 8. The computer-implemented method of claim 1, wherein the particular individual is a first individual, the computer-implemented method further comprising contacting a second individual that is different than the first individual using contact information contained within the particular entity record when authentication fails by the first individual.
  - 9. The computer-implemented method of claim 8, wherein contacting the second individual comprises notifying the second individual that authentication has failed for an account registered in the name of the second individual at the online service provider.
  - 10. The computer-implemented method of claim 1, wherein the authentication system provides a central authenticating authority for authenticating usage of a promotional code at each of the plurality of online service providers.
  - 11. The computer-implemented method of claim 1 further comprising retrieving contact information from the particular entity record that does not overlap with the identifying information when the set of answers do not correctly answer a specified number of the series of challenge questions.
  - 12. The computer-implemented method of claim 11 further comprising providing direct notification to the particular individual using the content information from the particular entity record that an authentication attempt for the particular individual at the online service provider has failed.
  - 13. The computer-implemented method of claim 1 further comprising receiving from a second different online service provider of the plurality of online service providers, an authentication request for authenticating the same entity.
  - 14. The computer-implemented method of claim 13 further comprising generating and issuing a different set of challenge questions from the particular entity record to authenticate usage of a second different code by the particular individual at the second different online service provider.
  - 15. The computer-implemented method of claim 1, wherein each challenge question from the series of challenge questions is a question directed to some previously verified information of the particular entity record that does not overlap with the identifying information used by the entity in registering for the service of the online service provider.

16. For an authentication system, a computer-implemented method for authenticating entities across a plurality of online service providers, the computer-implemented method comprising:
- managing a database with a plurality of entity records, a plurality of codes, and a plurality of eligibility requirements, wherein each entity record of the plurality of entity records stores information about a different entity, wherein each code of the plurality of codes is associated with a different eligibility requirement from the plurality of eligibility requirements, and wherein the plurality of eligibility requirements specify different qualifications that the plurality of online service providers have set in order for the entities to qualify for different promotions offered by the plurality of online service providers;
  
  receiving (i) first registration information identifying a first entity that provides a first code in order to redeem a first promotion from a first online service provider of the plurality of online service providers and (ii) second registration information identifying a second entity that is different than the first entity and that provides a second code in order to redeem a second promotion from a second online service provider of the plurality of online service providers;
  
  retrieving from the database (i) a first eligibility requirement from the plurality of eligibility requirements that is associated with the first code and (ii) a second eligibility requirement from the plurality of eligibility requirements that is associated with the second code;
  
  retrieving from the database (i) a first entity record of the plurality of entity records storing previously verified information that is a match for the first registration information and (ii) a second entity record of the plurality of entity records storing previously verified information that is a match for the second registration information;
  
  generating (i) a first series of challenge questions from other previously verified information of the first entity record that is different than the first registration information and (ii) a second series of challenge questions from other previously verified information of the second entity record that is different than the second registration information;
  
  validating (i) usage of the first code at the first online service provider by the first entity when a specified number of responses provided by the first entity correctly answer the first series of challenge questions and when the previously verified information from the first entity record satisfies the at least first eligibility requirement and (ii) usage of the second code at the second online service provider by the second entity when a specified number of the responses provided by the second entity correctly answer the second series of challenge questions and when the previously verified information from the second entity record satisfies the at least second eligibility requirement; and
  
  providing notification that the first entity is eligible for a different third promotion from a third online service provider of the plurality of service providers, wherein providing the notification comprises (i) querying the plurality of eligibility requirements in the database using the previously verified information from the first entity record and (ii) identifying that the previously verified information from the first entity record satisfies at least a third eligibility requirement that the third online service provider sets for the third promotion.
- View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
- - 17. The computer-implemented method of claim 16, wherein the first online service provider operates independent of the second online service provider and registrations with the first online service provider are unavailable to the second online service provider.
  - 18. The computer-implemented method of claim 16 further comprising issuing (i) the first series of challenge questions to the first online service provider for presentation to the first entity through an interface hosted by the first online service provider and (ii) the second series of challenge questions to the second online service provider for presentation to the second entity through an interface hosted by the second online service provider.
  - 19. The computer-implemented method of claim 16, wherein issuing (i) the first series of challenge questions and (ii) the second series of challenge questions comprises withholding the previously verified information of the first entity record and the previously verified information of the second entity record from the first and second online service providers.
  - 20. The computer-implemented method of claim 16 further comprising notifying the first online service provider that the first entity has fraudulently registered with the first online service provider when a specified number of responses provided by the first entity do not correctly answer the first series of challenge questions.
  - 21. The computer-implemented method of claim 16 further comprising notifying an entity other than the first entity using previously verified contact information of the first entity record when a specified number of responses provided by the first entity do not correctly answer the first series of challenge questions.
  - 22. The computer-implemented method of claim 16, wherein providing the notification further comprises providing the third online service provider with contact information of the first entity and notice that the first entity is eligible for the third promotion of the third online service provider.
  - 23. The computer-implemented method of claim 16, wherein providing the notification further comprises providing the first entity with notice that it is eligible for the third promotion of the third online service provider and with a third code for redeeming the third promotion.

24. A non-transitory computer-readable storage medium with an executable program stored thereon, wherein the program instructs a microprocessor to perform sets of instructions for:
- receiving from an online service provider of the plurality of online service providers, an authentication request for authenticating on behalf of the online service provider, whether a particular individual purchasing a good or service of the online service provider using a code is eligible for an incentive associated with the code, the authentication request providing identifying information used by the entity when purchasing the good or service;
  
  obtaining from the online service provider, at least one parent-child relationship qualifying child entities of a particular parent business entity as eligible to receive the incentive when using the code;
  
  retrieving a particular entity record from a plurality of entity records containing previously verified information that is a match for the identifying information from the authentication request, wherein each entity record of the plurality of entity records contains previously verified information about a different individual or business;
  
  generating a series of challenge questions from the previously verified information of the particular entity record, each challenge question from the series of challenge questions being derived from previously verified information of the particular entity record that does not overlap with the identifying information used by the particular individual in registering for the service of the online service provider;
  
  issuing the series of challenge questions;
  
  receiving a set of answers provided by the particular individual that are responsive to the series of challenge questions; and
  
  notifying the online service provider that the particular individual has been authenticated to receive said incentive when the set of answers correctly answer a specified number of the series of challenge questions and the previously verified information of the particular entity record satisfies the parent-child relationship by identifying the particular individual as a child of the particular business entity.
- View Dependent Claims (25, 26)
- - 25. The non-transitory computer-readable storage medium of claim 24, wherein the program further instructs the microprocessor to perform a set of instructions for retrieving a plurality of marketing campaigns, each marketing campaign of the plurality of marketing campaigns specifying an eligibility requirement.
  - 26. The non-transitory computer-readable storage medium of claim 25, wherein the program further instructs the microprocessor to perform a set of instructions for presenting a set of the plurality of marketing campaigns that the individual is eligible for based on the previously verified information from the particular entity record satisfying the eligibility requirement that is specified for each marketing campaign of the set of marketing campaigns.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Dun & Bradstreet Corp., DUN & Bradstreet Incorporated (Dun & Bradstreet Corp.), Hoover's Incorporated (Dun & Bradstreet Holdings, Inc.)
Original Assignee
Credibility Corp. (Dun & Bradstreet Corp.)
Inventors
Buechler, Chad Michael, Landgraf, Raymond, Delgrosso, Peter, Stibel, Aaron B., Stibel, Jeffrey M.
Primary Examiner(s)
Najjar, Saleh
Assistant Examiner(s)
Pan, Peiliang

Application Number

US13/971,445
Publication Number

US 20130339141A1
Time in Patent Office

539 Days
Field of Search

726/2, 726/5, 726/28, 713/168, 713/170
US Class Current

726/28
CPC Class Codes

G06F 21/00   Security arrangements for p...

G06F 21/31   User authentication

G06F 2221/2103   Challenge-response

G06F 2221/2111   Location-sensitive, e.g. ge...

G06Q 10/107   Computer-aided management o...

G06Q 30/0207   Discounts or incentives, e....

G06Q 30/0222   During e-commerce, i.e. onl...

G06Q 30/0239   Online discounts or incentives

G06Q 30/0251   Targeted advertisements

G06Q 30/0253   During e-commerce, i.e. onl...

G06Q 50/01   Social networking

H04L 12/16   Arrangements for providing ...

H04L 2463/082   applying multi-factor authe...

H04L 63/08   for authentication of entit...

H04L 63/0815   providing single-sign-on or...

H04L 63/107   wherein the security polici...

Single system for authenticating entities across different third party platforms

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Single system for authenticating entities across different third party platforms

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links