Systems and methods for securely transferring authentication information between a user and an electronic resource
First Claim
1. A method of authenticating a user for access to an electronic resource from a user interface, the method comprising:
- receiving an authentication query from the user interface, wherein the receiving the authentication query includes receiving a user name from the user interface;
receiving authentication information that corresponds to the user name from the user interface, wherein the receiving the authentication information includes;
providing an authentication image to the user interface, wherein the authentication image is associated with a resource-side coordinate system that uniquely defines a plurality of locations within the authentication image, wherein the authentication image includes a map, and further wherein the providing includes;
(i) encoding the resource-side coordinate system using a session-specific coordinate transformation to generate a user-side coordinate system that is different from the resource-side coordinate system; and
(ii) transmitting the authentication image and the user-side coordinate system to the user interface;
receiving an encoded coordinate set from the user interface, wherein the encoded coordinate set uniquely specifies a single authentication location that is user-selected from the plurality of locations within the authentication image and that is identified in the user-side coordinate system; and
decoding the encoded coordinate set by reversing the session-specific coordinate transformation to generate a decoded coordinate set that uniquely specifies the authentication location and that is identified in the resource-side coordinate system; and
comparing the decoded coordinate set to a previously defined user-specific authentication data set; and
one of;
(i) selectively granting the user access to the electronic resource responsive to determining that the decoded coordinate set corresponds to the user-specific authentication data set; and
(ii) selectively denying the user access to the electronic resource responsive to determining that the decoded coordinate set does not correspond to the user-specific authentication data set.
0 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for securely transferring authentication information between a user and an electronic resource are disclosed herein. The methods include providing an authentication image to a user interface. The authentication image is associated with a resource-side coordinate system and the providing includes encoding the resource-side coordinate system to generate a user-side coordinate system that is different from the resource-side coordinate system and transmitting the authentication image and the user-side coordinate system to the user interface. The methods further include receiving an encoded coordinate set, which uniquely identifies an authentication location in the user-side coordinate set and that is user-selected from the authentication image, from the user interface and decoding the encoded coordinate set to generate a decoded coordinate set that uniquely identifies the authentication location in the resource-side coordinate set. The systems include systems that perform the methods.
-
Citations
17 Claims
-
1. A method of authenticating a user for access to an electronic resource from a user interface, the method comprising:
-
receiving an authentication query from the user interface, wherein the receiving the authentication query includes receiving a user name from the user interface; receiving authentication information that corresponds to the user name from the user interface, wherein the receiving the authentication information includes; providing an authentication image to the user interface, wherein the authentication image is associated with a resource-side coordinate system that uniquely defines a plurality of locations within the authentication image, wherein the authentication image includes a map, and further wherein the providing includes; (i) encoding the resource-side coordinate system using a session-specific coordinate transformation to generate a user-side coordinate system that is different from the resource-side coordinate system; and (ii) transmitting the authentication image and the user-side coordinate system to the user interface; receiving an encoded coordinate set from the user interface, wherein the encoded coordinate set uniquely specifies a single authentication location that is user-selected from the plurality of locations within the authentication image and that is identified in the user-side coordinate system; and decoding the encoded coordinate set by reversing the session-specific coordinate transformation to generate a decoded coordinate set that uniquely specifies the authentication location and that is identified in the resource-side coordinate system; and comparing the decoded coordinate set to a previously defined user-specific authentication data set; and
one of;(i) selectively granting the user access to the electronic resource responsive to determining that the decoded coordinate set corresponds to the user-specific authentication data set; and (ii) selectively denying the user access to the electronic resource responsive to determining that the decoded coordinate set does not correspond to the user-specific authentication data set.
-
-
2. A method of transferring authentication information between a user and an electronic resource, the method comprising:
-
providing an authentication image to a user interface, wherein the authentication image is associated with a resource-side coordinate system that uniquely defines a plurality of locations within the authentication image, wherein the authentication image includes a map, and further wherein the providing includes; (i) encoding the resource-side coordinate system using a session-specific coordinate transformation to generate a user-side coordinate system that is different from the resource-side coordinate system; and (ii) transmitting the authentication image and the user-side coordinate system to the user interface; receiving an encoded coordinate set from the user interface, wherein the encoded coordinate set uniquely specifies a single authentication location that is user-selected from the plurality of locations within the authentication image and that is identified in the user-side coordinate system; and decoding the encoded coordinate set by reversing the session-specific coordinate transformation to generate a decoded coordinate set that uniquely specifies the authentication location and that is identified in the resource-side coordinate system. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. Non-transitory computer readable storage media including computer-executable instructions that, when executed, direct an electronic resource to transfer authentication information between a user and the electronic resource by:
-
providing an authentication image to a user interface, wherein the authentication image is associated with a resource-side coordinate system that uniquely defines a plurality of locations within the authentication image, wherein the authentication image includes a map, and further wherein the providing includes; (i) encoding the resource-side coordinate system using a session-specific coordinate transformation to generate a user-side coordinate system that is different from the resource-side coordinate system; and (ii) transmitting the authentication image and the user-side coordinate system to the user interface; receiving an encoded coordinate set from the user interface, wherein the encoded coordinate set uniquely specifies a single authentication location that is user-selected from the plurality of locations within the authentication image and that is identified in the user-side coordinate system; and decoding the encoded coordinate set by reversing the session-specific coordinate transformation to generate a decoded coordinate set that uniquely specifies the authentication location and that is identified in the resource-side coordinate system.
-
-
17. An information transfer system, comprising:
-
a user interface; an electronic resource including a memory device including computer-executable instructions that, when executed, direct the electronic resource to receive authentication information from the user interface by; providing an authentication image to the user interface, wherein the authentication image is associated with a resource-side coordinate system that uniquely defines a plurality of locations within the authentication image, wherein the authentication image includes a map, and further wherein the providing includes; (i) encoding the resource-side coordinate system using a session-specific coordinate transformation to generate a user-side coordinate system that is different from the resource-side coordinate system; and (ii) transmitting the authentication image and the user-side coordinate system to the user interface; receiving an encoded coordinate set from the user interface, wherein the encoded coordinate set uniquely specifies a single authentication location that is user-selected from the plurality of locations within the authentication image and that is identified in the user-side coordinate system; and decoding the encoded coordinate set by reversing the session-specific coordinate transformation to generate a decoded coordinate set that uniquely specifies the authentication location and that is identified in the resource-side coordinate system; and an information transfer mechanism that is configured to transfer information between the user interface and the electronic resource.
-
Specification