Methods and systems for authenticating users

US 9,485,251 B2
Filed: 12/15/2015
Issued: 11/01/2016
Est. Priority Date: 08/05/2009
Status: Active Grant

First Claim

Patent Images

1. A method of authenticating users comprising:

conducting, by a computing device, a first authentication transaction with data from a memory included in the computing device, the data being a template generated from biometric data captured from the user, the computing device capable of being carried by a user;

conducting a second authentication transaction with a template generated from biometric data captured from the user to authenticate the user when the first authentication transaction is successful, the biometric data for the second transaction being different than the biometric data for the first transaction; and

transmitting a message to an electronic lock system after the user is successfully authenticated in the second authentication transaction, the electronic lock system causes a door lock to unlock after receiving the message, the electronic lock system being in communication with the computing device over a network.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of authenticating users to reduce transaction risks includes indicating a desire to conduct a transaction and determining whether the transaction requires access to protected resources. Moreover, the method determines whether inputted information is known, determines a state of a communications device when the inputted information is known, and transmits a biometric authentication request from a server to an authentication system when the state of the communications device is enrolled. Additionally, the method includes validating the communications device, capturing biometric authentication data in accordance with a biometric authentication data capture request with the communications device, biometrically authenticating the user, generating a one-time pass-phrase and storing the one-time pass-phrase on the authentication system when the user is authenticated, comparing the transmitted one-time pass-phrase against the stored one-time pass-phrase, and granting access to the protected resources when the transmitted and stored one-time pass-phrases match.

353 Citations

18 Claims

1. A method of authenticating users comprising:
- conducting, by a computing device, a first authentication transaction with data from a memory included in the computing device, the data being a template generated from biometric data captured from the user, the computing device capable of being carried by a user;
  
  conducting a second authentication transaction with a template generated from biometric data captured from the user to authenticate the user when the first authentication transaction is successful, the biometric data for the second transaction being different than the biometric data for the first transaction; and
  
  transmitting a message to an electronic lock system after the user is successfully authenticated in the second authentication transaction, the electronic lock system causes a door lock to unlock after receiving the message, the electronic lock system being in communication with the computing device over a network.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of authenticating users in accordance with claim 1 further comprising verifying that the captured authentication data for each authentication transaction is sufficient usable to determine a comparison match.
  - 3. The method of authenticating users in accordance with claim 1, said computing device being an authentication computer system.
  - 4. The method of authenticating users in accordance with claim 1, said conducting a first authentication transaction step comprising extracting a risk level from a received authentication request, the risk level being for unlocking the electronic lock and the first authentication data being based on the extracted risk level.
  - 5. The method of authenticating users in accordance with claim 1 further comprising simultaneously capturing, by the computing device, the biometric data for the first and second authentication transactions.

6. A computing device for authenticating users, said computing device capable of being carried by a user and comprising:
- a processor; and
  
  a memory configured to store data, said computing device being associated with a network and said memory being in communication with said processor and having instructions stored thereon which, when executed by said processor, cause said computing device to;
  
  conduct a first authentication transaction with data from said memory to authenticate the user, the data being a template generated from biometric data captured from the user;
  
  conduct a second authentication transaction with a template generated from biometric data captured from the user to authenticate the user when the first authentication transaction is successful, the biometric data for the second transaction being different than the biometric data for the first transaction; and
  
  transmit a message to an electronic lock system after the user is successfully authenticated in the second authentication transaction, the electronic lock system causes a door lock to unlock after receiving the message, the electronic lock system being in communication with said computing device over the network.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14)
- - 7. The computing device for authenticating users in accordance with claim 6, said computing device being an authentication computer system.
  - 8. The computing device for authenticating users in accordance with claim 6 wherein when executed by said processor, the instructions further cause said processor to verify that the data for each authentication transaction is usable to determine a comparison match.
  - 9. The computing device for authenticating users in accordance with claim 6, wherein the instructions which when read and executed by said processor cause said processor to conduct the first authentication transaction further cause said processor to extract a risk level from a received authentication request, the risk level being for unlocking the electronic lock and the first data being based on the extracted risk level.
  - 10. The computing device for authenticating users in accordance with claim 6, said computing device being a smart phone.
  - 11. The computing device for authenticating users in accordance with claim 6, said computing device being a tablet computer.
  - 12. The computing device for authenticating users in accordance with claim 6, said computing device being a laptop computer.
  - 13. The computing device for authenticating users in accordance with claim 6, said computing device being a personal digital assistant.
  - 14. The computing device for authenticating users in accordance with claim 6, wherein the instructions which read and executed by said processor further cause said computing device to simultaneously capture the biometric data for the first and second authentication transactions.

15. A method of authenticating users comprising:
- conducting, by a computing device, a first authentication transaction with data from a memory included in the computing device, the data being a template generated from biometric data captured from the user, the computing device capable of being carried by a user;
  
  conducting a second authentication transaction with a template generated from biometric data captured from the user to authenticate the user when the first authentication transaction is successful, the biometric data for the second transaction being different than the biometric data for the first transaction; and
  
  unlocking a door after the user is successfully authenticated in the second authentication transaction.
- View Dependent Claims (16, 17, 18)
- - 16. The method of authenticating users in accordance with claim 15 further comprising verifying that the captured data for each authentication transaction is usable to determine a comparison match.
  - 17. The method of authenticating users in accordance with claim 15, said conducting a first authentication transaction step comprising extracting a risk level from a received authentication request, the risk level being for unlocking the electronic lock and the first data being based on the extracted risk level.
  - 18. The method of authenticating users in accordance with claim 15 further comprising simultaneously capturing, by the computing device, the biometric data for the first and second authentication transactions.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Corporation DAON Technology
Original Assignee
Daon Holdings Limited
Inventors
White, Conor Robert, Peirce, Michael, Cramer, Jason Scott, Steiner, Chet Bradford, Diebes, Suzanna
Primary Examiner(s)
Tolentino, Roderick

Application Number

US14/969,318
Publication Number

US 20160099937A1
Time in Patent Office

322 Days
Field of Search

713182-186
US Class Current

1/1
CPC Class Codes

G06F 21/31   User authentication

G06F 21/32   using biometric data, e.g. ...

G06F 21/577   Assessing vulnerabilities a...

G06Q 10/00   Administration; Management

G06Q 20/4016   involving fraud or risk lev...

G06Q 30/06   Buying, selling or leasing ...

H04L 2209/56   Financial cryptography, e.g...

H04L 63/08   for authentication of entit...

H04L 63/0861   using biometrical features,...

H04L 63/123   received data contents, e.g...

H04L 9/3228   One-time or temporary data,...

H04L 9/3231   Biological data, e.g. finge...

Methods and systems for authenticating users

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

353 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for authenticating users

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

353 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links