Method, apparatus, and system for sending credentials securely

US 9,509,677 B2
Filed: 11/13/2015
Issued: 11/29/2016
Est. Priority Date: 03/31/2008
Status: Active Grant

First Claim

Patent Images

1. A computing platform comprising:

a hardware processor to execute instructions;

one or more hardware storages to store information;

a first operating environment to access at least the hardware processor to execute a first software application to interact with a remote server, the first software application to determine whether an agent of the remote server is adapted to receive secure transmission of user credentials;

a second operating environment to execute a second software application, wherein responsive to the determination that the agent of the remote server is adapted to receive the secure transmission, the second operating environment is to authenticate a user credential to the remote server in a secure input mode not visible to the first operating environment and communicate the user credential to the remote server to initiate a secure session with the remote server; and

an input device to collect user input for reception in the second operating environment.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A software application executing in a first local operating environment may be used to connect to a remote server that requires a credential of a user to complete a transaction. In a second local operating environment that operates external to the first local environment, a user may be authenticated based on a user input received in the second local operating environment. The credential of the user may be securely communicated to the remote server from the second local operating environment. Other embodiments are described and claimed.

31 Citations

20 Claims

1. A computing platform comprising:
- a hardware processor to execute instructions;
  
  one or more hardware storages to store information;
  
  a first operating environment to access at least the hardware processor to execute a first software application to interact with a remote server, the first software application to determine whether an agent of the remote server is adapted to receive secure transmission of user credentials;
  
  a second operating environment to execute a second software application, wherein responsive to the determination that the agent of the remote server is adapted to receive the secure transmission, the second operating environment is to authenticate a user credential to the remote server in a secure input mode not visible to the first operating environment and communicate the user credential to the remote server to initiate a secure session with the remote server; and
  
  an input device to collect user input for reception in the second operating environment.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The computing platform of claim 1, wherein the user credential is accessible only in the second operating environment.
  - 3. The computing platform of claim 1, wherein the first software application comprises a plugin to communicate with the second operating environment.
  - 4. The computing platform of claim 3, wherein the plugin is to contact a database server to determine whether the agent of the remote server is adapted to receive secure transmission of user credentials.
  - 5. The computing platform of claim 4, wherein responsive to the database server contact, the second software application is to receive a permission token from the database server to enable access to the agent of the remote server.
  - 6. The computing platform of claim 5, wherein the permission token comprises a command request string.
  - 7. The computing platform of claim 1, wherein the first software application is to access a local database to determine whether the agent of the remote server is adapted to receive secure transmission of user credentials.
  - 8. The computing platform of claim 1, wherein the input device comprises a fingerprint sensor to capture a representation of a user'"'"'s finger.
  - 9. The computing platform of claim 1, wherein the input device comprises a retina scanner.
  - 10. The computing platform of claim 1, wherein the input device comprises a smart input device to receive a direct input from a user.
  - 11. The computing platform of claim 1, wherein the second operating environment is to prompt a user to confirm identity and responsive to verification, to communicate the user credential to the remote server.

12. At least one computer readable storage medium comprising instructions that when executed enable a system to:
- connect to a remote server using a software application executing in a first operating environment to initiate a transaction with the remote server;
  
  determine using the software application executing in the first operating environment whether an agent of the remote server is adapted to receive secure transmission of user credentials;
  
  request from the first operating environment that a second operating environment authenticate a user credential to the remote server;
  
  responsive to verification by the second operating environment in a secure input mode not visible to the first operating environment that a user is authorized to access the agent of the remote server, authenticate the user credential with the second operating environment in the secure input mode; and
  
  communicate the user credential to the remote server from the second operating environment to initiate a secure session.
- View Dependent Claims (13, 14, 15, 16, 17)
- - 13. The least one computer readable storage medium of claim 12, wherein the user credential is accessible only in the second operating environment.
  - 14. The least one computer readable storage medium of claim 12, wherein the software application comprises a plugin to communicate with the second operating environment.
  - 15. The least one computer readable storage medium of claim 14, further comprising instructions that when executed enable the system to contact a database server via the plugin to determine whether the agent of the remote server is adapted to receive secure transmission of user credentials.
  - 16. The least one computer readable storage medium of claim 15, further comprising instructions that when executed enable the system to receive a permission token from the database server to enable access to the agent of the remote server.
  - 17. The least one computer readable storage medium of claim 12, further comprising instructions that when executed enable the system to encrypt the user credential in the second operating environment before communication of the user credential to the remote server.

18. A method comprising:
- connecting to a remote server using a software application executing in a first operating environment to initiate a transaction with the remote server;
  
  determining using the software application executing in the first operating environment whether an agent of the remote server is adapted to receive secure transmission of user credentials;
  
  requesting from the first operating environment that a second operating environment authenticate a user credential to the remote server;
  
  responsive to verification by the second operating environment in a secure input mode not visible to the first operating environment that a user is authorized to access the agent of the remote server, authenticating the user credential with the second operating environment in the secure input mode; and
  
  communicating the user credential to the remote server from the second operating environment to initiate a secure session.
- View Dependent Claims (19, 20)
- - 19. The method of claim 18, further comprising:
    - contacting a database server via a plugin of the software application to determine whether the agent of the remote server is adapted to receive secure transmission of user credentials; and
      
      receiving a permission token from the database server to enable access to the agent of the remote server.
  - 20. The method of claim 18, further comprising encrypting the user credential in the second operating environment before communicating the user credential to the remote server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Chhabra, Jasmeet
Primary Examiner(s)
Song, Hosuk

Application Number

US14/940,773
Publication Number

US 20160072788A1
Time in Patent Office

382 Days
Field of Search

726 2- 7, 713168-170, 713182-186, 709/225, 709228-229
US Class Current

1/1
CPC Class Codes

G06F 21/31   User authentication

G06F 21/32   using biometric data, e.g. ...

G06F 21/606   by securing the transmissio...

G06F 21/83   input devices, e.g. keyboar...

G06F 9/44526   Plug-ins; Add-ons

G06Q 20/10   specially adapted for elect...

G06Q 20/356   Aspects of software for car...

G06Q 20/3567   Software being in the reader

G06Q 20/35765   Access rights to memory zones

G06Q 20/382   insuring higher security of...

G06Q 20/40   Authorisation, e.g. identif...

G07F 19/208   Use of an ATM as a switch o...

H04L 63/08   for authentication of entit...

H04L 63/1483   service impersonation, e.g....

H04L 63/166   at the transport layer

Method, apparatus, and system for sending credentials securely

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

31 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method, apparatus, and system for sending credentials securely

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

31 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links