Password-less login
First Claim
1. A computer-implemented method for providing access control to user profiles without a password, comprising:
- detecting an attempt to access a user profile, wherein the user profile has been functionally handicapped to prevent normal use, whether the use is authorized or not, wherein the user profile has been functionally handicapped by an enabling device that encrypted the digital data portion with at least data related to unique human input;
in response to the detection, displaying information that uniquely identifies the user profile;
receiving a digital data portion from an enabling device that has read the information that uniquely identifies the user profile and decrypted the digital data portion with data from a unique human input received from the user attempting to access the user profile; and
reconstituting the user profile using the digital data portion to functionally enable the user profile for normal use.
0 Assignments
0 Petitions
Accused Products
Abstract
User profiles stored on a server control access to private data. Access control to the user profiles themselves is provided without a password. In more detail, the user profile is functionally handicapped by at least a portion of digital data (or a cryptographic key) associated with the user profile being removed and discarded after being sent to an enabling device. A human gesture from the user first provides a key to reconstitute the key or restore the missing data portion in the enabling device which is then transmitted to the server to reconstitute the key or restore the missing data portion in order to reconstitute the user profile for access.
-
Citations
18 Claims
-
1. A computer-implemented method for providing access control to user profiles without a password, comprising:
-
detecting an attempt to access a user profile, wherein the user profile has been functionally handicapped to prevent normal use, whether the use is authorized or not, wherein the user profile has been functionally handicapped by an enabling device that encrypted the digital data portion with at least data related to unique human input; in response to the detection, displaying information that uniquely identifies the user profile; receiving a digital data portion from an enabling device that has read the information that uniquely identifies the user profile and decrypted the digital data portion with data from a unique human input received from the user attempting to access the user profile; and reconstituting the user profile using the digital data portion to functionally enable the user profile for normal use. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer-implemented method for providing access control to user profiles without a password, comprising:
-
detecting an attempt to access a user profile, wherein the user profile has been functionally handicapped to prevent normal use, whether the use is authorized or not, wherein the user profile has been functionally handicapped by; generating at least two derivative sub-portions of the digital data portion, the two derivative sub-portion corresponding to two keys; and sending one of the at least two keys to an enabling device; in response to the detection, displaying machine-readable information that is unique; receiving a digital data portion from the enabling device that has read the machine-readable information along with an indication of the machine-readable information, the digital data portion being specific to the user attempting to access the user profile; and reconstituting the user profile using the digital data portion to functionally enable the user profile for normal use. - View Dependent Claims (14, 15)
-
-
16. A computer-implemented method for protecting a digital asset, comprising:
-
receiving at least a portion of digital data associated with the digital asset that has been substantially functionally handicapped by removal of the digital data portion, from an secure web site server; receiving a unique human input from an owner of the digital asset; substantially functionally handicapping the digital data portion with data from the unique human input; responsive to receiving a notification for a request for access to the digital asset, requesting the unique human input from the owner of the digital asset; reconstituting the digital data portion with the unique human input; and sending the digital data portion to the secure web site server to reconstitute the digital asset for normal use.
-
-
17. A non-transitory computer-readable medium storing executable code that, when executed by a processor, performs a method in a secure web site server for providing access control to user profiles without a password, the method comprising:
-
detecting an attempt to access a user profile, wherein the user profile has been functionally handicapped to prevent normal use, whether the use is authorized or not, wherein the user profile has been functionally handicapped by an enabling device that encrypted the digital data portion with at least data related to unique human input; in response to the detection, displaying information that uniquely identifies the user profile; receiving a digital data portion from an enabling device that has read the information that uniquely identifies the user profile and decrypted the digital data portion with data from a unique human input received from the user attempting to access the user profile; and reconstituting the user profile using the digital data portion to functionally enable the user profile for normal use.
-
-
18. A system to protect a digital asset, comprising:
-
a processor; and a memory, storing; a login SODA agent detecting an attempt to access a user profile, wherein the user profile has been functionally handicapped to prevent normal use, whether the use is authorized or not, wherein the user profile has been functionally handicapped by an enabling device that encrypted the digital data portion with at least data related to unique human input, in response to the detection, displaying information that uniquely identifies the user profile, and receiving a digital data portion from an enabling device that has read the information that uniquely identifies the user profile and decrypted the digital data portion with data from a unique human input received from the user attempting to access the user profile; and a SODA engine reconstituting the user profile using the digital data portion to functionally enable the user profile for normal use.
-
Specification