Selective complex data entry from one time passwords for authentication

US 9,077,711 B2
Filed: 09/05/2013
Issued: 07/07/2015
Est. Priority Date: 09/05/2013
Status: Active Grant

First Claim

Patent Images

1. An apparatus comprising:

a memory storing a one time password (OTP); and

a processor configured to;

receive information received from a client device,the information identifying a portion of a padded OTP, andthe padded OTP including the OTP and additional data,compare the portion of the padded OTP and the OTP,determine that the client device is authenticated when the portion of the padded OTP corresponds to the OTP,determine, when the portion of the padded OTP does not correspond to the OTP, whether the portion of the padded OTP includes at least a threshold amount of the padded OTP, andperform an action when the portion of the padded OTP includes at least the threshold amount of the padded OTP,wherein the action includes at least one of;

determining that the client device is lost,determining that the client device is partially authenticated, orperforming additional authentication of the client device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A one time password (OTP) associated with a client device, and a padding rule, of a plurality of possible padding rules, associated with the client device may be determined. A padded OTP that includes the OTP and additional data may be formed based on the padding rule. The padding rule may be associated with at least one of a position of the OTP within the padded OTP, a characteristic of the additional data, or a characteristic of the padded OTP. The padded OTP may be provided to the client device. A selection of a portion of the padded OTP may be received from the client device, and the client device may be authenticated when the selected portion of the padded OTP corresponds to the OTP. If the selected portion of the padded OTP does not correspond to the OTP, other actions may be performed based on the selected portion.

6 Citations

View as Search Results

20 Claims

1. An apparatus comprising:
- a memory storing a one time password (OTP); and
  
  a processor configured to;
  
  receive information received from a client device,the information identifying a portion of a padded OTP, andthe padded OTP including the OTP and additional data,compare the portion of the padded OTP and the OTP,determine that the client device is authenticated when the portion of the padded OTP corresponds to the OTP,determine, when the portion of the padded OTP does not correspond to the OTP, whether the portion of the padded OTP includes at least a threshold amount of the padded OTP, andperform an action when the portion of the padded OTP includes at least the threshold amount of the padded OTP,wherein the action includes at least one of;
  
  determining that the client device is lost,determining that the client device is partially authenticated, orperforming additional authentication of the client device.
- View Dependent Claims (2, 3, 4)
- - 2. The apparatus of claim 1, wherein the processor is further configured to:
    - receive the padded OTP and a rule for determining the OTP from the padded OTP, anddetermine the OTP from the padded OTP using the rule.
  - 3. The apparatus of claim 1, wherein the padded OTP includes a communication code, andwherein the processor is further configured to:
    - determine, when the portion of the padded OTP does not correspond to the OTP, whether the portion of the padded OTP corresponds to the communication code, andperform an appropriate response based on the when the portion of the padded OTP corresponds to the communication code.
  - 4. The apparatus of claim 1, wherein the processor is further configured to:
    - receive, from the client device, another selection of another portion of the padded OTP,determine whether the other portion corresponds to the OTP, anddetermine that the client device is authenticated when the other portion corresponds to the OTP.

5. A non-transitory computer readable medium for storing instructions, the instructions comprising:
- one or more instructions that, when executed by a processor associated with a computing device, cause the processor to;
  
  provide for display, at a first time, information associated with a rule for extracting a password from a padded password that includes the password and additional data;
  
  receive, at a second time, the padded password;
  
  provide for display, information associated with the padded password;
  
  receive, from a user associated with the computing device, a selection associated with a portion of the padded password; and
  
  forward, to an authentication device, data regarding the selection,wherein the authentication device determines that the computing device is authenticated when the portion of the padded password corresponds to the password.
- View Dependent Claims (6, 7, 8, 9, 10)
- - 6. The non-transitory computer readable medium of claim 5, wherein the instructions further comprise:
    - one or more instructions to;
      
      receive an input related to rule, anddetermine the rule based on the input.
  - 7. The non-transitory computer readable medium of claim 5, wherein the padded password corresponds to a character string, andwherein the one or more instructions to receive the selection further include:
    - one or more instructions to receive, as the selection, an input associated identifying one or more characters included in the character string.
  - 8. The non-transitory computer readable medium of claim 5, wherein the padded password corresponds to an image, andwherein the one or more instructions to receive the selection further include:
    - one or more instructions to receive, as the selection, an input associated identifying a section of the image.
  - 9. The non-transitory computer readable medium of claim 8, wherein the image corresponds to a geometric pattern associated with a character string, andwherein the instructions further comprise:
    - one or more instructions to identify a portion of the character string associated with selection.
  - 10. The non-transitory computer readable medium of claim 5, whereinthe padded password is associated with audio data,the password is associated with a first portion of the audio data, andthe additional data is associated with a second portion of the audio data that differs from the first portion.

11. A method comprising:
- providing for display, by processor associated with a computing device and at a first time, information associated with a rule for extracting a password from a padded password that includes the password and additional data;
  
  receiving, by the processor and at a second time, the padded password;
  
  providing for display, by the processor, information associated with the padded password;
  
  receiving, by the processor and from a user associated with the computing device, a selection associated with a portion of the padded password; and
  
  forwarding, by the processor and to an authentication device, data regarding the selection, wherein the authentication device determines that the computing device is authenticated when the portion of the padded password corresponds to the password.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 12. The method of claim 11, further comprising:
    - receiving information associated with the rule in a first communication,receiving the padded password in a second communication that differs from the first communication.
  - 13. The method of claim 11, wherein:
    - the password is associated with a first string of characters, andthe padded password is associated with a second string of characters that includes the first string of characters and one or more additional characters.
  - 14. The method of claim 11, wherein:
    - the padded password is associated with a bar code,the password is associated with a first portion of the bar code, andthe additional data is associated with a second portion of the bar code that differs from the first portion.
  - 15. The method of claim 14, wherein the password is associated with a character string and the first portion of the bar code corresponds to the character string, and wherein the additional data includes one or more additional characters and the second portion of the bar code corresponds to the one or more additional characters.
  - 16. The method of claim 11, wherein:
    - the padded password is associated with an image,the password is associated with a first portion of the image, andthe additional data is associated with a second portion of the image that differs from the first portion.
  - 17. The method of claim 16, wherein the rule identifies a subject associated with the password, the first portion of the image includes a representation of the subject, and the second portion of the image includes a representations of at of least one other subject.
  - 18. The method of claim 11, wherein:
    - the padded password is associated with audio data,the password is associated with a first portion of the audio data, andthe additional data is associated with a second portion of the audio data that differs from the first portion.
  - 19. The method of claim 11, wherein the password is associated with a characteristic, and wherein the additional data causes the padded password to be associated with the characteristic.
  - 20. The method of claim 19, wherein the characteristic includes a particular checksum value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Verizon Patent and Licensing Incorporated (Verizon Communications Inc.)
Original Assignee
Verizon Patent and Licensing Incorporated (Verizon Communications Inc.)
Inventors
McCown, Jonathan, Hubner, Paul V., Archer, Steven T., Hubbard, Paul
Primary Examiner(s)
Song, Hosuk

Application Number

US14/019,017
Publication Number

US 20150067798A1
Time in Patent Office

670 Days
Field of Search

380/44, 713168-170, 713183-184, 726 2- 6, 726 16- 20
US Class Current

1/1
CPC Class Codes

G06F 21/31 User authentication

H04L 63/0838 using one-time-passwords

Selective complex data entry from one time passwords for authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

6 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Selective complex data entry from one time passwords for authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

6 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links