Using service request ticket for multi-factor authentication
First Claim
Patent Images
1. In a service environment wherein a front end computer system receives a service request, a back end computer system responds to the service request, and a user must be authenticated to access a specified target endpoint to take action in response to the service request, a computer program product comprising computer executable instructions stored on a non-transitory computer recordable storage medium for execution by a computer, the computer executable instructions comprising:
- instructions for assigning a specified identification code to the service request received by the front end computer system for use by the back end computer system, wherein the specified identification code is unique;
instructions responsive to a prespecified initiating action of the user pertaining to one of the front end computer system and the back end computer system, selectively, for generating a virtual token using the specified identification code wherein the virtual token has a specified relationship with the specified identification code including one of being derived from the specified identification code or comprises the specified identification code, wherein a ticket record associated with the specified identification code is updated to include the virtual token and wherein the virtual token generated is unique;
instructions for delivering the virtual token to the user, wherein the user accumulates one or more of the unique virtual tokens generated using the specified identification code;
instructions for prompting a dialog with the user to present the delivered virtual token to a validating component associated with at least one of the front end computer system and the back end computer system, wherein the validating component is configured to verify the validity of the delivered virtual token; and
instructions responsive to the validity of the delivered virtual token being verified, for authenticating the user to access the specified target endpoint.
6 Assignments
0 Petitions
Accused Products
Abstract
In an environment wherein a front end system receives a service request, and a back end system responds to the request, a user of a target endpoint must be authenticated. A ticket ID is assigned to the service request, and responsive to an initiating action of the user, a virtual token is generated that has a specified relationship with the ticket ID. The virtual token is delivered to the user, and the user is prompted to present the token to a validating component associated with one of the front end or back end systems, wherein the validating component is configured to verify the token validity. If the token is found to be valid, the user is authenticated to access the specified target endpoint.
44 Citations
7 Claims
-
1. In a service environment wherein a front end computer system receives a service request, a back end computer system responds to the service request, and a user must be authenticated to access a specified target endpoint to take action in response to the service request, a computer program product comprising computer executable instructions stored on a non-transitory computer recordable storage medium for execution by a computer, the computer executable instructions comprising:
-
instructions for assigning a specified identification code to the service request received by the front end computer system for use by the back end computer system, wherein the specified identification code is unique; instructions responsive to a prespecified initiating action of the user pertaining to one of the front end computer system and the back end computer system, selectively, for generating a virtual token using the specified identification code wherein the virtual token has a specified relationship with the specified identification code including one of being derived from the specified identification code or comprises the specified identification code, wherein a ticket record associated with the specified identification code is updated to include the virtual token and wherein the virtual token generated is unique; instructions for delivering the virtual token to the user, wherein the user accumulates one or more of the unique virtual tokens generated using the specified identification code; instructions for prompting a dialog with the user to present the delivered virtual token to a validating component associated with at least one of the front end computer system and the back end computer system, wherein the validating component is configured to verify the validity of the delivered virtual token; and instructions responsive to the validity of the delivered virtual token being verified, for authenticating the user to access the specified target endpoint. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. In a service environment wherein a front end computer system receives a service request, a back end computer system responds to the service request, and a user must be authenticated to access a specified target endpoint in order to take action in response to the service request, a data processing system comprising:
-
a bus; a memory connected to the bus, wherein computer executable program code is stored on the memory; and a processor unit connected to the bus, wherein the processor unit executes the computer executable program code; to assign a specified identification code to the service request received by the front end computer system for use by the back end computer system, wherein the specified identification code is unique; responsive to a prespecified initiating action of the user pertaining to one of the front end computer system and the back end computer system, selectively, to generate a virtual token using the specified identification code wherein the virtual token has a specified relationship with the specified identification code including one of being derived from the specified identification code or comprises the specified identification code, and wherein a ticket record associated with the specified identification code is updated to include the virtual token and wherein the virtual token generated is unique; to deliver the virtual token to the user, wherein the user accumulates one or more of the unique virtual tokens generated using the specified identification code; to prompt a dialog with the user to present the delivered virtual token to a validating component associated with at least one of the front end computer system and the back end computer system, wherein the validating component is configured to verify the validity of the delivered virtual token; and responsive to the validity of the delivered virtual token being verified, to authenticate the user to access the specified target endpoint.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeGlobalFoundries, Inc.
-
Original AssigneeInternational Business Machines Corporation
-
InventorsDriscoll, Paul, Hernandez, Milton H., Jennings, Paul, Low, Chee Meng, Ruan, Yaoping, Shwartz, Larisa
-
Primary Examiner(s)MOORTHY, ARAVIND K
-
Application NumberUS14/021,921Publication NumberTime in Patent Office680 DaysField of Search726/9, 726/5, 726/26, 713/168, 713/170US Class Current1/1CPC Class CodesH04L 2463/082 applying multi-factor authe...H04L 63/08 for authentication of entit...H04L 63/0807 using tickets, e.g. Kerbero...H04L 63/083 using passwords cryptograph...
