Remote verification of user presence and identity

US 9,197,635 B2
Filed: 10/27/2014
Issued: 11/24/2015
Est. Priority Date: 10/21/2010
Status: Active Grant

First Claim

Patent Images

1. A system for verifying presence and identity of a user on a remote computer, comprising:

a server connected to a networked communication system;

a remote computer including a client program, wherein said client program is a secure web browser that communicates with a microcontroller, said microcontroller being a USB device, wherein said USB device is registered with said server, said USB device having an encryption and authentication program that creates an encrypted key and verifies whether said USB device remains connected to said remote computer, wherein a user can access information via a session of said secure web browser upon authentication being verified by said system, and wherein said remote computer is connected to said networked communication systemwherein said remote computer acquires said encrypted key from said USB device and transmits said encrypted key to said server, said server then uses said encrypted key to verify that said USB device is registered;

wherein said server and said USB device each have an algorithm that generates respective encrypted random integers and time stamps, wherein said server periodically checks whether said respective random integers match;

said server allowing the user to access web pages from said server via the session using said secure web browser upon said respective integers matching;

said server and said USB device each further configured to send instructions to said secure web browser to terminate the session when said time stamp generated by said encryption program is outside of a predetermined time frame;

wherein said server sends instructions to said secure web browser to terminate the session when said USB device is disconnected from said remote computer; and

both said server and said USB device send instructions to said secure web browser to terminate session when said integers do not match.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for verifying the presence and identity of a user on a remote computer having a server connected to a network, the network being connected to one or more remote computers. The system further includes a microcontroller connected to the remote computer by means such as USB, and registered with the server. The USB microcontroller is authenticated upon being inserted into a remote computer and is continuously authenticated thereafter until the user disconnects the USB microcontroller from the computer. When the proper authentication is satisfied, the system runs a secure web browser that is used to access websites that may have a user'"'"'s confidential and sensitive data. Upon disconnecting the USB device, the secure web browser closes and none of the session data is stored locally on the computer.

54 Citations

View as Search Results

18 Claims

1. A system for verifying presence and identity of a user on a remote computer, comprising:
- a server connected to a networked communication system;
  
  a remote computer including a client program, wherein said client program is a secure web browser that communicates with a microcontroller, said microcontroller being a USB device, wherein said USB device is registered with said server, said USB device having an encryption and authentication program that creates an encrypted key and verifies whether said USB device remains connected to said remote computer, wherein a user can access information via a session of said secure web browser upon authentication being verified by said system, and wherein said remote computer is connected to said networked communication systemwherein said remote computer acquires said encrypted key from said USB device and transmits said encrypted key to said server, said server then uses said encrypted key to verify that said USB device is registered;
  
  wherein said server and said USB device each have an algorithm that generates respective encrypted random integers and time stamps, wherein said server periodically checks whether said respective random integers match;
  
  said server allowing the user to access web pages from said server via the session using said secure web browser upon said respective integers matching;
  
  said server and said USB device each further configured to send instructions to said secure web browser to terminate the session when said time stamp generated by said encryption program is outside of a predetermined time frame;
  
  wherein said server sends instructions to said secure web browser to terminate the session when said USB device is disconnected from said remote computer; and
  
  both said server and said USB device send instructions to said secure web browser to terminate session when said integers do not match.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The system of claim 1, wherein said server further includes a database for storing user records and user credentials.
  - 3. The system of claim 1, wherein said client program captures the user'"'"'s activity while using said client program.
  - 4. The system of claim 1, wherein said secure web browser is an exe file.
  - 5. The system of claim 1, wherein said secure web browser is a script within a browser.
  - 6. The system of claim 1, wherein said script is served to said remote computer by said server.
  - 7. The system of claim 1, wherein said secure web browser is installed on said remote computer.
  - 8. The system of claim 1, wherein said remote computer acquires said encrypted key from said USB device at the time that said USB device is connected to said remote computer.
  - 9. The system of claim 1, wherein said secure web browser is a custom browser.

10. A system for verifying presence and identity of a user on a remote computer, comprising:
- a server connected to a networked communication system;
  
  a remote computer including a client program, wherein said client program is a secure web browser that communicates with a microcontroller, wherein said microcontroller is registered with said server, said microcontroller having an encryption and authentication program that creates an encrypted key and verifies whether said microcontroller remains connected to said remote computer, wherein a user can access information via a session of said secure web browser upon authentication being verified by said system, and wherein said remote computer is connected to said networked communication system;
  
  wherein said remote computer acquires said encrypted key from said microcontroller device and transmits saidencrypted key to said server, said server then uses said encrypted key to verify that said USB device is registered;
  
  wherein said server and said microcontroller device each have an algorithm that generates respective encrypted random integers and time stamps, wherein said server periodically checks whether said respective random integers match;
  
  said server allowing the user to access web pages from said server via the session using said secure web browser upon said respective integers matching;
  
  said server and said microcontroller each further configured to send instructions to said secure web browser to terminate the session when said time stamp generated by said encryption program is outside of a predetermined time frame;
  
  wherein said server sends instructions to said secure web browser to terminate the session when said microcontroller is disconnected from said remote computer; and
  
  both said server and said microcontroller send instructions to said secure web browser to terminate session when said integers do not match.

11. A system for verifying presence and identity of a user on a remote computer, comprising:
- a server connected to a networked communication system;
  
  a remote computer including a client program, wherein said client program is a secure web browser that communicates with a microcontroller, wherein said microcontroller is registered with said server, said microcontroller having an encryption and authentication program that creates an encrypted key and verifies whether said microcontroller remains connected to said remote computer, wherein a user can access information via a session of said secure web browser upon authentication being verified by said system, and wherein said remote computer is connected to said networked communication system;
  
  wherein said remote computer acquires said encryption program from said microcontroller;
  
  said remote computer transmitting a random array of integers and a time stamp to said server, said server running a copy of said encryption program, said copy generating said random array of integers at the time of said time stamp, said server verifying that said microcontroller is registered with said server by comparing said random array of integers to said random array of integers received from said remote computer, said server rejecting said remote computer if said microcontroller is not registered at said server;
  
  wherein said server allows the user to access web pages via the session on said server when said microcontroller has been verified to be registered with said server; and
  
  wherein said server instruct said secure web browser to close its windows when said microcontroller is disconnected from said remote computer; and
  
  both said server and said microcontroller send instructions to said secure web browser to terminate session when said integers do not match.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
- - 12. The system of claim 11, wherein said secure web browser comprises a script within a browser and said script is served to said remote computer by said server.
  - 13. The system of claim 11, wherein said remote computer acquires encrypted key from said microcontroller at the time of the connection of said microcontroller with said remote computer.
  - 14. The system of claim 11, wherein said microcontroller is connected to said remote computer using near-filed communication.
  - 15. The system of claim 11, wherein said server further includes a database for storing user records and user credentials.
  - 16. The system of claim 11, wherein said client program captures the user'"'"'s activity while using said client program.
  - 17. The system of claim 11, wherein said secure web browser is an exe file and said secure web browser is installed on said remote computer.
  - 18. The system of claim 11, wherein said secure web browser is a custom browser.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Laz Rod Inc., NOA, Inc. (Simmons Harold C Family Trust)
Original Assignee
NOA, Inc. (Simmons Harold C Family Trust)
Inventors
Rodriguez, Lazaro, McNeely, Michael
Primary Examiner(s)
Zecher, Dede
Assistant Examiner(s)
MCCOY, RICHARD ANTHONY

Application Number

US14/525,206
Publication Number

US 20150113273A1
Time in Patent Office

393 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

H04L 63/067   using one-time keys cryptog...

H04L 63/0853   using an additional device,...

H04L 9/321   involving a third party or ...

H04L 9/3228   One-time or temporary data,...

Remote verification of user presence and identity

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

54 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Remote verification of user presence and identity

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

54 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links