Systems and methods for authenticating users accessing unsecured WiFi access points
First Claim
1. A method for authenticating a user device accessing an unsecure WiFi access point, comprising:
- receiving by a server from the unsecure WiFi access point a first access request including a media access control (MAC) address of the user device;
when it is determined by the server that the MAC address is unknown;
returning an access reject message by the server to the unsecure WiFi access point,receiving by the server from a web portal a second access request associated with the first access request including a username associated with the user device, a password associated with the user device, the MAC address of the user device, and an identifier for a memorable information element, including one or more of an image and a phrase,authenticating by the server the username and password from the second access request,storing by the server the MAC address and the identifier for the memorable information element, andreturning by the server to the web portal an access accept message indicating that the user has been authenticated; and
when it is determined that the MAC address is known;
authenticating by the server the first access request,determining by the server the identifier for the memorable information element for the user that is stored at the server, andreturning by the server to the unsecure WiFi access point an access accept message including the identifier for the memorable information element.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods system for a user accessing an unsecure Wifi access point are provided. In an embodiment, the present invention requests that the customer perform authentication of the access point to which he is connected. On initial connection to the access point, the customer provides his username/password and chooses a memorable information element (e.g., image or phrase). A site specific cookie is delivered to the customer device after a successful authentication. On subsequent connections, the site specific cookie is validated and the MAC address of the customer device is used to retrieve the memorable information element. If the customer recognizes his memorable image, he confirms that he is on a bona fide access point. In a further embodiment, if the customer connects at a location and/or time of day which breaks a previously observed pattern, MAC authentication is not accepted and a full authentication (e.g., user/password) is required.
25 Citations
7 Claims
-
1. A method for authenticating a user device accessing an unsecure WiFi access point, comprising:
-
receiving by a server from the unsecure WiFi access point a first access request including a media access control (MAC) address of the user device; when it is determined by the server that the MAC address is unknown; returning an access reject message by the server to the unsecure WiFi access point, receiving by the server from a web portal a second access request associated with the first access request including a username associated with the user device, a password associated with the user device, the MAC address of the user device, and an identifier for a memorable information element, including one or more of an image and a phrase, authenticating by the server the username and password from the second access request, storing by the server the MAC address and the identifier for the memorable information element, and returning by the server to the web portal an access accept message indicating that the user has been authenticated; and when it is determined that the MAC address is known; authenticating by the server the first access request, determining by the server the identifier for the memorable information element for the user that is stored at the server, and returning by the server to the unsecure WiFi access point an access accept message including the identifier for the memorable information element. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification