Systems and methods for multifactor authentication
First Claim
1. A method for performing a multifactor authentication between an authenticating entity and a customer remote from the authenticating entity, utilizing a primary communication channel and a secondary communication channel, the method comprising:
- receiving from the customer, by a processing machine of the authenticating entity, primary authentication information via the primary communication channel;
processing the primary authentication information by the processing machine of the authenticating entity, and retrieving customer information based on the primary authentication information;
presenting a message to the customer regarding a desired mode of communication through which the customer would like to perform a secondary authentication;
receiving from the customer a selection of the desired mode of communication, which desired mode of communication comprises the secondary communication channel;
transmitting, by the processing machine of the authenticating entity, secondary authentication information to the customer via the secondary communication channel, the secondary communication channel being different than the primary communication channel;
receiving from the customer via the primary communication channel at least a portion of the secondary authentication information;
processing the secondary authentication information received from the customer by the processing machine of the authenticating entity to authenticate the customer; and
based on successful authentication of the primary authentication information and receipt of the at least a portion of the secondary authentication information from the customer, the processing machine of the authenticating entity authenticating the customer.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention provides a method for performing an authentication (and a system for performing the method), in conjunction with a transaction, utilizing a primary channel and a secondary channel. The method may include an authenticating entity, such as a bank, (1) receiving from a customer primary authentication information via a primary channel; (2) the authenticating entity processing the primary authentication information, and retrieving customer information based on the primary authentication information; (3) the authenticating entity transmitting secondary authentication information to the customer via a secondary channel, the secondary channel being different than the primary channel; (4) the authenticating entity receiving from the customer at least a portion of the secondary authentication information; and (5) the authenticating entity performing authentication processing on the secondary authentication information received from the customer. Based on the successful authentication of the primary authentication information and the secondary authentication information received from the customer, the authenticating entity approves the customer for the transaction.
-
Citations
24 Claims
-
1. A method for performing a multifactor authentication between an authenticating entity and a customer remote from the authenticating entity, utilizing a primary communication channel and a secondary communication channel, the method comprising:
-
receiving from the customer, by a processing machine of the authenticating entity, primary authentication information via the primary communication channel; processing the primary authentication information by the processing machine of the authenticating entity, and retrieving customer information based on the primary authentication information; presenting a message to the customer regarding a desired mode of communication through which the customer would like to perform a secondary authentication; receiving from the customer a selection of the desired mode of communication, which desired mode of communication comprises the secondary communication channel; transmitting, by the processing machine of the authenticating entity, secondary authentication information to the customer via the secondary communication channel, the secondary communication channel being different than the primary communication channel; receiving from the customer via the primary communication channel at least a portion of the secondary authentication information; processing the secondary authentication information received from the customer by the processing machine of the authenticating entity to authenticate the customer; and based on successful authentication of the primary authentication information and receipt of the at least a portion of the secondary authentication information from the customer, the processing machine of the authenticating entity authenticating the customer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method for performing a multifactor authentication between an authenticating entity and a customer remote from the authenticating entity, utilizing a primary communication channel and a secondary communication channel, the method comprising:
-
receiving from the customer, by a processing machine of the authenticating entity, primary authentication information via the primary communication channel; processing the primary authentication information by the processing machine of the authenticating entity, and retrieving customer information based on the primary authentication information; transmitting, by the processing machine of the authenticating entity, secondary authentication information to the customer via the secondary communication channel, the secondary communication channel being different than the primary communication channel; receiving from the customer via the primary communication channel at least a portion of the secondary authentication information; processing the secondary authentication information received from the customer by the processing machine of the authenticating entity to authenticate the customer; and based on successful authentication of the primary authentication information and receipt of the at least a portion of the secondary authentication information from the customer, the processing machine of the authenticating entity authenticating the customer; and wherein the authentication times out upon expiration of a time-out period, which time-out period starts after receipt of the primary authentication information via the primary communication channel.
-
-
19. A system that performs authentication processing, the system including:
-
a communication interface portion configured to interface with a customer and receive primary authentication information from the customer via a primary communication channel; an authenticating portion that is located remote from the customer, the authenticating portion configured to; authenticate the primary authentication information received from the customer, and based on the primary authentication information, retrieve customer information, the customer information verifying at least in part the primary authentication information, present a message to the customer regarding a desired mode of communication through which the customer would like to perform a secondary authentication; receive from the customer a selection of the desired mode of communication, which desired mode of communication comprises a secondary communication channel; output secondary authentication information to the customer via the secondary communication channel that is different than the primary communication channel, the secondary authentication information comprising at least one selected from the group consisting of a password and an authentication code; process the secondary authentication information, received from the customer via the primary communication channel, to authenticate the customer, and based on successful receipt of the primary authentication information and the secondary authentication information from the customer, output an approval for the transaction. - View Dependent Claims (20, 21, 22, 23, 24)
-
Specification