Secure user authentication with improved one-time-passcode verification
First Claim
1. A method for secure user authentication, said method comprising:
- receiving one or more attributes associated with a client device and further configured to receive a user identification (ID) indicating the identity of a user of said client device;
generating a device record comprising a pairing of said one or more attributes and said user ID;
generating a device ID uniquely referencing said device record;
transmitting said device ID to said client device;
calculating a trust level associated with said client device, said trust level based on said user ID and said one or more attributes; and
transmitting said device ID to an authentication server based on said trust level, wherein said authentication server is configured to authenticate said user of said client device.
1 Assignment
0 Petitions
Accused Products
Abstract
Generally, this disclosure provides systems, devices, methods and computer readable media for secure user authentication with improved OTP verification. The device may include an attribute collection module configured to collect attributes associated with the device; a client trust module configured to identify a user of the device, associate a user ID with the user and transmit the user ID and the collected attributes to a trust broker system; the client trust module further configured to receive a device ID from the trust broker system, the device ID associated with a pairing of the user ID and the attributes; and a client OTP generation module configured to generate an OTP and further configured to transmit the OTP and the device ID to an authentication server.
-
Citations
26 Claims
-
1. A method for secure user authentication, said method comprising:
-
receiving one or more attributes associated with a client device and further configured to receive a user identification (ID) indicating the identity of a user of said client device; generating a device record comprising a pairing of said one or more attributes and said user ID; generating a device ID uniquely referencing said device record; transmitting said device ID to said client device; calculating a trust level associated with said client device, said trust level based on said user ID and said one or more attributes; and transmitting said device ID to an authentication server based on said trust level, wherein said authentication server is configured to authenticate said user of said client device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for secure user authentication, said method comprising:
-
collecting attributes associated with a device; identifying a user of said device; associating a user identification (ID) with said user and transmitting said user ID and said collected attributes to a trust broker system; receiving a device ID from said trust broker system, said device ID associated with a pairing of said user ID and said attributes; and generating an OTP and further configured to transmit said OTP and said device ID to an authentication server. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory computer-readable storage medium having instructions stored thereon which when executed by a processor result in the following operations for secure user authentication, said operations comprising:
-
receiving one or more attributes associated with a client device; receiving a user identification (ID) indicating the identity of a user of said client device; generating a device record comprising a pairing of said one or more attributes and said user ID; generating a device ID uniquely referencing said device record; causing said device ID to be transmitted to said client device; calculating a trust level associated with said client device, said trust level based on said user ID and said one or more attributes; and causing said device ID to be transmitted to an authentication server based on said trust level, wherein said authentication server is configured to authenticate said user of said client device. - View Dependent Claims (17, 18, 19)
-
-
20. A non-transitory computer-readable storage medium having instructions stored thereon which when executed by a processor result in the following operations for secure user authentication, said operations comprising:
-
collecting attributes associated with a device; identifying a user of said device; associating a user identification (ID) with said user; causing said user ID and said attributes to be transmitted to a trust broker system; receiving a device ID from said trust broker system, said device ID associated with a pairing of said user ID and said attributes; generating an One-Time-Passcode (OTP); and causing said OTP and said device ID to be transmitted to an authentication server. - View Dependent Claims (21, 22, 23, 24, 25, 26)
-
Specification