Methods and systems for secure key entry via communication networks

US 9,118,673 B2
Filed: 08/06/2013
Issued: 08/25/2015
Est. Priority Date: 07/22/2008
Status: Active Grant

First Claim

Patent Images

1. A member authentication method, comprising:

receiving, at a security server from a client server, a member authentication request associated with a member attempting to access confidential information from the client server via a first member device associated with the member;

determining at the security server a secure key associated with the member, wherein the secure key comprises an ordered sequence of symbols;

determining a one-time plurality of symbol sets associated with the secure key, wherein the ordered sequence of symbols is included within the plurality of symbol sets;

transmitting data associated with the secure key from the security server to an authentication device associated with the member, wherein the data associated with the secure key comprises a matrix having columns and rows, each column in the matrix representing one of the symbol sets, and further wherein said authentication device includes a display, said secure key information entered using a touch screen keypad on said display, wherein a matrix size of said matrix is selected by the security server based at least in part on a size of said display;

entering, by the member, secure key information into the authentication device, wherein said entered secure key information comprises one of;

(i) a sequence of matrix row selections entered by the member without including matrix column selections, or (ii) a sequence of matrix column selections entered by the member without including matrix row selections;

receiving, at the security server from the authentication device, the entered secure key information;

validating the entered secure key information at the security server;

based on the validated entered secure key information, authenticating the member; and

responsive to said authentication, transmitting, by the client server, the confidential information from the client server to the first member device.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to some embodiments, a member authentication request is received at a security server from a client server. The member authentication request may be associated with, for example, a member attempting to access confidential information from the client server. A secure key associated with the member may be determined and data associated with that key may be transmitted to the member (e.g., via his or her wireless device or computer). Secure key information may be received from the member and validated. Based on the validated secure key information, it may be arranged for the member to receive the confidential information from the client server.

9 Citations

View as Search Results

20 Claims

1. A member authentication method, comprising:
- receiving, at a security server from a client server, a member authentication request associated with a member attempting to access confidential information from the client server via a first member device associated with the member;
  
  determining at the security server a secure key associated with the member, wherein the secure key comprises an ordered sequence of symbols;
  
  determining a one-time plurality of symbol sets associated with the secure key, wherein the ordered sequence of symbols is included within the plurality of symbol sets;
  
  transmitting data associated with the secure key from the security server to an authentication device associated with the member, wherein the data associated with the secure key comprises a matrix having columns and rows, each column in the matrix representing one of the symbol sets, and further wherein said authentication device includes a display, said secure key information entered using a touch screen keypad on said display, wherein a matrix size of said matrix is selected by the security server based at least in part on a size of said display;
  
  entering, by the member, secure key information into the authentication device, wherein said entered secure key information comprises one of;
  
  (i) a sequence of matrix row selections entered by the member without including matrix column selections, or (ii) a sequence of matrix column selections entered by the member without including matrix row selections;
  
  receiving, at the security server from the authentication device, the entered secure key information;
  
  validating the entered secure key information at the security server;
  
  based on the validated entered secure key information, authenticating the member; and
  
  responsive to said authentication, transmitting, by the client server, the confidential information from the client server to the first member device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method of claim 1, wherein the authentication device comprises a second member device.
  - 3. The method of claim 1, wherein the authentication device comprises the first member device.
  - 4. The method of claim 1, wherein at least one of the symbols in the one of the symbol sets comprises an advertising image.
  - 5. The method of claim 4, wherein said advertising image is selected based at least in part on a preference indicated by said member.
  - 6. The method of claim 4, wherein said advertising image is formed as an animated image, said animating image displaying a plurality of different images.
  - 7. The method of claim 4, wherein said advertising image is associated with an advertising message, said advertising message displayed to said member if said member selects said advertising image.
  - 8. The method of claim 1, wherein said first member device comprises at least one of:
    - (i) a computer;
      
      (ii) a Personal Digital Assistant, (iii) a mobile telephone, or (iv) an automated teller device.
  - 9. The method of claim 1, further comprising:
    - receiving, from said member, a selection of said secure key information;
      
      wherein said selection is received from said member prior to said receiving said member authentication request.
  - 10. The method of claim 9, wherein said selection of said secure key information includes a selection of at least one brand preference.
  - 11. The method of claim 1, wherein the secure key information received from the member comprises an ordered list of column identifiers and said validating the secure key information comprises:
    - comparing the ordered list of columns identifiers, the symbol sets associated with those columns, and the ordered sequence of symbols representing the secure key.
  - 12. The method of claim 1, wherein the first member device communicates with the client server via a first communication band and the authentication device communicates with the security server via a second communication band different than the first communication band.
  - 13. The method of claim 12, wherein the first member device comprises a personal computer executing a web browser application, the first communication band comprises the Internet, the authentication device comprises a wireless telephone, and the second communication band comprises a wireless telephone network.
  - 14. The method of claim 1, further comprising prior to said receiving of the member authentication request:
    - transmitting, from a member device associated with the member to the client server, a primary key; and
      
      validating the primary key at the client server.
  - 15. The method of claim 1, further comprising:
    - enabling a highlight feature for at least one symbol.
  - 16. The method of claim 1, wherein said receiving is associated with a security application display and further comprising:
    - associating a user-selected background with the security application display.

17. A plurality of non-transient computer-readable medium storing instructions adapted to be executed by processors to perform a method, said method comprising:
- receiving, at a security server from a client server, a member authentication request associated with a member attempting to access confidential information from the client server via a first member device associated with the member;
  
  determining at the security server a secure key associated with the member, wherein the secure key comprises an ordered sequence of symbols;
  
  determining a one-time plurality of symbol sets associated with the secure key, wherein the ordered sequence of symbols is included within the plurality of symbol sets;
  
  transmitting data associated with the secure key from the security server to an authentication device associated with the member, wherein the data associated with the secure key comprises a matrix having columns and rows, each column in the matrix representing one of the symbol sets, and further wherein said authentication device includes a display, said secure key information entered using a touch screen keypad on said display, wherein a matrix size of said matrix is selected by the security server based at least in part on a size of said display;
  
  entering, by the member, secure key information into the authentication device, wherein said entered secure key information comprises one of;
  
  (i) a sequence of matrix row selections entered by the member without including matrix column selections, or (ii) a sequence of matrix column selections entered by the member without including matrix row selections;
  
  receiving, at the security server from the authentication device, the entered secure key information;
  
  validating the entered secure key information at the security server;
  
  based on the validated entered secure key information, authenticating the member; and
  
  responsive to said authentication, transmitting, by the client server, the confidential information from the client server to the first member device.
- View Dependent Claims (18, 19, 20)
- - 18. The medium of claim 17, wherein the authentication device comprises a second member device.
  - 19. The medium of claim 17, wherein the authentication device comprises the first member device.
  - 20. The medium of claim 17, wherein at least one of the symbols in the one of the symbol sets comprises an advertising image.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Next Access Technologies LLC
Original Assignee
Next Access Technologies LLC
Inventors
Wells, David L., Loop, Jack, Bakes, Charles
Primary Examiner(s)
Abyaneh, Ali

Application Number

US13/960,282
Publication Number

US 20130347066A1
Time in Patent Office

749 Days
Field of Search

726/2, 713/182, 713/170
US Class Current

1/1
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0838   using one-time-passwords

H04L 63/0884   by delegation of authentica...

H04L 9/3226   using a predetermined code,...

H04W 12/069   using certificates or pre-s...

Methods and systems for secure key entry via communication networks

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

9 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for secure key entry via communication networks

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

9 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links