System and method for secure device authentication
First Claim
Patent Images
1. A method for authenticating a mobile computing device, the method comprising:
- obtaining data that identifies the mobile computing device;
exchanging the data with a network service to trigger a secure browser instance on the mobile computing device; and
providing a secure single action link to the mobile computing device, the secure single action link provided in a manner that precludes, other than a link selection action, at least one of a copy and a paste user input actions, the secure single action link further having an embedded session token, whereupon performance of the link selection action by the user within the secure browser instance, the session token corresponding to the mobile computing device is communicated to the network service.
9 Assignments
0 Petitions
Accused Products
Abstract
A method and system for secure authentication of a mobile computing device (MCD) are described. Data that identifies the MCD is obtained. Identification data is exchanged with a network service, which sends embedded data to trigger a secure browser instance on the MCD. A secure single action link specific to the requesting device is then provided, the secure single action link being actionable to communicate to the network service, through the secure browser instance, a session token corresponding to the mobile computing device. The user can perform a selection action on the secure single action link to authenticate the MCD.
24 Citations
19 Claims
-
1. A method for authenticating a mobile computing device, the method comprising:
-
obtaining data that identifies the mobile computing device; exchanging the data with a network service to trigger a secure browser instance on the mobile computing device; and providing a secure single action link to the mobile computing device, the secure single action link provided in a manner that precludes, other than a link selection action, at least one of a copy and a paste user input actions, the secure single action link further having an embedded session token, whereupon performance of the link selection action by the user within the secure browser instance, the session token corresponding to the mobile computing device is communicated to the network service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. An authentication system for a mobile computing device comprising:
-
a memory resource to store instructions; one or more processors using the instructions stored in the memory resource to; obtain data that identifies the mobile computing device; exchange the data with a network service to trigger a secure browser instance on the mobile computing device; providing a secure single action link to the mobile computing device, the secure single action link provided in a manner that precludes, other than a link selection action, at least one of a copy and a paste user input actions, the secure single action link further having an embedded session token, whereupon performance of the link selection action by the user within the secure browser instance, the session token corresponding to the mobile computing device is communicated to the network service; verify the exchanged data with the network service after the user performs a selection action on the secure single action link; redirect the secure browser instance to an appverify link; and verify the data that identifies the mobile computing device with the network service.
-
-
16. A non-transitory computer-readable medium for authenticating a mobile computing device, the computer-readable medium storing instructions that, when executed by one or more processors, cause a computing device of the one or more processors to perform operations that include:
-
obtaining data that identifies the mobile computing device; exchanging the data with a network service to trigger a secure browser instance on the mobile computing device; and providing a secure single action link to the mobile computing device, the secure single action link provided in a manner that precludes, other than a link selection action, at least one of a copy and a paste user input actions, the secure single action link further having an embedded session token, whereupon performance of the link selection action by the user within the secure browser instance, the session token corresponding to the mobile computing device is communicated to the network service. - View Dependent Claims (17, 18, 19)
-
Specification