Persistent authentication
First Claim
1. A computer-assisted method comprising:
- receiving, by a processor through a communications interface, a persistent authentication request from a first communication device of a first customer;
authenticating, by the processor, the first customer based on authentication information provided by the first customer;
registering, by the processor, the first communication device with a device identification, wherein the registering includes linking the device identification to non-actionable information that is associated with the first communication device;
receiving, by the processor through the communications interface, during a call that is initiated subsequent to the authenticating and the registering, a first subsequent request from the first customer for the non-actionable information, wherein the first subsequent request is generated through the first communication device and contains a first calling identification;
verifying, by the processor, that the first communication device is registered based on the first calling identification during the call without user authentication;
when the first communication device is verified as being registered, sending, by the processor through the communications interface, the non-actionable information to the first communication device without further authentication; and
when the first communication device is verified as being registered and a second subsequent request is for action on an account for the first customer, requiring, by the processor, the further authentication to execute the action on the account.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for supporting a mobile financial service that enables a customers to enroll the customer'"'"'s mobile phone number and register accounts are disclosed. A persistent authentication request is received from a customer, and the customer is authenticated based on authentication information provided by the customer. The customer enters a device identification of the communication device so that the device identification is registered and linked to the customer'"'"'s profile. When the customer requests non-actionable information (e.g., account balance and transaction history information) by calling a customer service center with a registered communication device, the calling identification is provided to the customer service center by the incoming call. The customer service determines whether the calling identification corresponds to a registered number. If so, the customer service center provides the requested non-actionable information to the communication device without further authentication.
24 Citations
18 Claims
-
1. A computer-assisted method comprising:
-
receiving, by a processor through a communications interface, a persistent authentication request from a first communication device of a first customer; authenticating, by the processor, the first customer based on authentication information provided by the first customer; registering, by the processor, the first communication device with a device identification, wherein the registering includes linking the device identification to non-actionable information that is associated with the first communication device; receiving, by the processor through the communications interface, during a call that is initiated subsequent to the authenticating and the registering, a first subsequent request from the first customer for the non-actionable information, wherein the first subsequent request is generated through the first communication device and contains a first calling identification; verifying, by the processor, that the first communication device is registered based on the first calling identification during the call without user authentication; when the first communication device is verified as being registered, sending, by the processor through the communications interface, the non-actionable information to the first communication device without further authentication; and when the first communication device is verified as being registered and a second subsequent request is for action on an account for the first customer, requiring, by the processor, the further authentication to execute the action on the account. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An apparatus comprising:
-
a memory; and a processor coupled to the memory and configured to perform, based on instructions stored in the memory; receiving a persistent authentication request from a first customer; authenticating the first customer based on authentication information provided by the first customer; registering a communication device with a device identification, wherein the registering includes linking the device identification to non-actionable information that is associated with the communication device; receiving, during a call that is initiated subsequent to the authenticating and the registering, a first subsequent request from the first customer for non-actionable information, wherein the first subsequent request is generated through the communication device and contains a first calling identification; verifying that the communication device is registered based on the first calling identification during the call without user authentication; when the non-actionable information cannot be provided within a predetermined time duration, initiating a callback to the registered communication device; providing the non-actionable information when the callback has been established; and when the communication device is verified as being registered and a second subsequent request is for action on an account for the first customer, requiring, by the processor, the further authentication to execute the action on the account. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable storage medium storing computer-executable instructions that, when executed, cause a processor to perform:
-
receiving a persistent authentication request from a first customer; authenticating the first customer based on authentication information provided by the first customer; registering a communication device with a device identification, wherein the registering includes linking the device identification to non-actionable information that is associated with the communication device; receiving, during a call that is initiated subsequent to the authenticating and the registering, a first subsequent request for account information for an account of the first customer, wherein the first subsequent request is generated through the communication device and contains a first calling identification; verifying that the communication device is registered based on the first calling identification during the call without user authentication; when the communication device is verified as being registered, providing the account information without further authentication; and when the communication device is verified as being registered and a second subsequent request is for action on an account for the first customer, requiring the further authentication to execute the action on the account. - View Dependent Claims (15, 16, 17, 18)
-
Specification