Systems and methods for completing multi-factor authentication via mobile devices
First Claim
1. A computer-implemented method for completing multi-factor authentication via mobile devices, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising:
- identifying a request to communicate with a user'"'"'s mobile device to complete multi-factor authentication of the user to an online service;
determining that authentication notifications are disabled for attempts made by the user to login to the online service;
in response to determining that authentication notifications are disabled, preventing an authentication notification from being displayed on the user'"'"'s mobile device;
receiving an out-of-band authentication communication from the user'"'"'s mobile device that was prevented from displaying the authentication notification;
determining that the user'"'"'s mobile device that sent the out-of-band authentication communication is the same user'"'"'s mobile device that was prevented from displaying the authentication notification and is therefore trusted to complete the multi-factor authentication of the user to the online service;
in response to determining that the out-of-band authentication communication was received from a device trusted to complete the multi-factor authentication of the user to the online service, enabling the user to login to the online service.
2 Assignments
0 Petitions
Accused Products
Abstract
The disclosed computer-implemented method for completing multi-factor authentication via mobile devices may include (1) identifying a request to communicate with a user'"'"'s mobile device to complete multi-factor authentication of the user to an online service, (2) determining that authentication notifications are disabled for attempts made by the user to login to the online service, (3) preventing an authentication notification from being displayed on the user'"'"'s mobile device, (4) receiving an out-of-band authentication communication from a mobile device, (5) determining that the mobile device that sent the out-of-band authentication communication is the user'"'"'s mobile device and is therefore trusted to complete the multi-factor authentication of the user to the online service, and (6) enabling the user to login to the online service and automatically receive future notification. Various other methods, systems, and computer-readable media are also disclosed.
30 Citations
20 Claims
-
1. A computer-implemented method for completing multi-factor authentication via mobile devices, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising:
-
identifying a request to communicate with a user'"'"'s mobile device to complete multi-factor authentication of the user to an online service; determining that authentication notifications are disabled for attempts made by the user to login to the online service; in response to determining that authentication notifications are disabled, preventing an authentication notification from being displayed on the user'"'"'s mobile device; receiving an out-of-band authentication communication from the user'"'"'s mobile device that was prevented from displaying the authentication notification; determining that the user'"'"'s mobile device that sent the out-of-band authentication communication is the same user'"'"'s mobile device that was prevented from displaying the authentication notification and is therefore trusted to complete the multi-factor authentication of the user to the online service; in response to determining that the out-of-band authentication communication was received from a device trusted to complete the multi-factor authentication of the user to the online service, enabling the user to login to the online service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for completing multi-factor authentication via mobile devices, the system comprising:
-
an identification module, stored in memory, that identifies a request to communicate with a user'"'"'s mobile device to complete multi-factor authentication of the user to an online service; a notification determination module, stored in memory, that determines that authentication notifications are disabled for attempts made by the user to login to the online service; a prevention module, stored in memory, that prevents, in response to determining that authentication notifications are disabled, an authentication notification from being displayed on the user'"'"'s mobile device; a receiving module, stored in memory, that receives an out-of-band authentication communication from the user'"'"'s mobile device that was prevented from displaying the authentication notification; a device determination module, stored in memory, that determines that the mobile device that sent the out-of-band authentication communication is the same user'"'"'s mobile device that was prevented from displaying the authentication notification and is therefore trusted to complete the multi-factor authentication of the user to the online service; an enabling module, stored in memory, that, in response to determining that the out-of-band authentication communication was received from a device trusted to complete the multi-factor authentication of the user to the online service, enables the user to login to the online service; at least one physical processor configured to execute the identification module, the notification determination module, the prevention module, the receiving module, the device determination module, and the enabling module. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A non-transitory computer-readable medium comprising one or more computer-readable instructions that, when executed by at least one processor of a computing device, cause the computing device to:
-
identify a request to communicate with a user'"'"'s mobile device to complete multi-factor authentication of the user to an online service; determine that authentication notifications are disabled for attempts made by the user to login to the online service; in response to determining that authentication notifications are disabled, prevent an authentication notification from being displayed on the user'"'"'s mobile device; receive an out-of-band authentication communication from the user'"'"'s mobile device that was prevented from displaying the authentication notification; determine that the mobile device that sent the out-of-band authentication communication is the same user'"'"'s mobile device that was prevented from displaying the authentication notification and is therefore trusted to complete the multi-factor authentication of the user to the online service; in response to determining that the out-of-band authentication communication was received from a device trusted to complete the multi-factor authentication of the user to the online service, enable the user to login to the online service.
-
Specification