×

Comprehensive authentication and identity system and method

  • US 9,166,967 B2
  • Filed: 09/26/2012
  • Issued: 10/20/2015
  • Est. Priority Date: 09/26/2012
  • Status: Active Grant
First Claim
Patent Images

1. A method in a computing system for enabling a user to create and login to an account with a website in a secure fashion, the method comprising:

  • maintaining, in a storage area associated with a computing system, a telephone number associated with a mobile communication device of a user and user information associated with the user, the user information including contact information and personal information associated with the user;

    following a request by the user to create a new account with a website hosted by a third-party computing system distinct from the computing system, the request including the telephone number of the user, performing a mobile communication device verification by;

    utilizing the telephone number to send a verification message to the user'"'"'s mobile communication device, the verification message requesting the user to perform a verification action;

    receiving a response from the user to the verification message; and

    comparing the user'"'"'s response to the requested verification action in order to verify that the user is in possession of the mobile communication device;

    if the possession of the mobile communication device by the user has been successfully verified, retrieving at least a portion of the user information from the storage area and providing the retrieved user information to the website to enable the creation of the new account with the website; and

    subsequently performing a login process for the website by;

    utilizing the telephone number to send a login verification message to the user'"'"'s mobile communication device, the login verification message requesting the user to perform a login verification action, the login verification action comprising pressing a button on the user'"'"'s mobile communication device, sending a confirmation message from the mobile communication device, or providing a response to a verification question that only the user is intended to know the answer to;

    receiving a response from the user to the login verification message;

    comparing the user'"'"'s response to the requested login verification action in order to verify that the user is in possession of the mobile communication device; and

    allowing the user to access the website if the possession of the mobile communication device by the user has been verified.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×