Systems and methods for generating and authenticating one time dynamic password based on context information
First Claim
1. A method for generating and authenticating a one time dynamic password based on context information comprising:
- receiving, by an authentication server, from a user device and without providing any variable to the user device a first one time dynamic password and at least one of an application identifier or a device identifier for the user device, wherein the first one time dynamic password is generated based on a first dynamic value and a user personal identification number (PIN) of a user of the user device and the first dynamic value is generated based on context information related to the user;
generating, by the authentication server, a second one time dynamic password based on a second dynamic value received from a separate context management server and the user PIN, wherein the second dynamic value is generated based on the context information used to generate the first dynamic value and the context information used to generate the first and second dynamic values is only accessible by the user device and the context management server; and
authenticating, by the authentication server, the first one time dynamic password when the first one time dynamic password matches with the second one time dynamic password.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to a system and method for generating and authenticating one time dynamic password based on the context information related to a user. It involves retrieving user context information and generating a dynamic value based on that. The first one time dynamic password is generated at the user device using the first dynamic value and the user PIN. The first dynamic value along with the user identifier is sent to the authentication server. The authentication server sends the user identifier to the context management server. The context management server has access the context information used to generate the first dynamic value and based on that they generate a second dynamic value. The authentication server receives this value and generates the second one time dynamic password and if it matches with the first one time dynamic password then the authentication server authenticates the first one time dynamic password.
19 Citations
11 Claims
-
1. A method for generating and authenticating a one time dynamic password based on context information comprising:
-
receiving, by an authentication server, from a user device and without providing any variable to the user device a first one time dynamic password and at least one of an application identifier or a device identifier for the user device, wherein the first one time dynamic password is generated based on a first dynamic value and a user personal identification number (PIN) of a user of the user device and the first dynamic value is generated based on context information related to the user; generating, by the authentication server, a second one time dynamic password based on a second dynamic value received from a separate context management server and the user PIN, wherein the second dynamic value is generated based on the context information used to generate the first dynamic value and the context information used to generate the first and second dynamic values is only accessible by the user device and the context management server; and authenticating, by the authentication server, the first one time dynamic password when the first one time dynamic password matches with the second one time dynamic password. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A non-transitory computer readable medium having stored thereon instructions for generating and authenticating an one time dynamic password based on context information which when executed by a processor, cause the processor to perform steps comprising:
-
receiving, from a user device and without providing any variable to the user device a first one time dynamic password and at least one of an application identifier or a device identifier for the user device, wherein the first one time dynamic password is generated based on a first dynamic value and a user personal identification number (PIN) of a user of the user device and the first dynamic value is generated based on context information related to the user; generating a second one time dynamic password based on a second dynamic value received from a separate context management server and the user PIN, wherein the second dynamic value is generated based on the context information used to generate the first dynamic value and the context information used to generate the first and second dynamic values is only accessible by the user device and the context management server; and authenticating the first one time dynamic password when the first one time dynamic password matches with the second one time dynamic password. - View Dependent Claims (8, 9, 10, 11)
-
Specification