Dynamic secure login authentication

US 9,712,521 B2
Filed: 08/10/2015
Issued: 07/18/2017
Est. Priority Date: 09/07/2012
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

obtaining login information from a user device for accessing a private account associated with a transaction, the private account associated with a predetermined pattern obtained from a predetermined trace applied to original symbols of an original matrix;

determining that the login information does not match private account authentication information of the private account;

in response to the determining that the login information does not match the private account authentication information, generating a user matrix with a plurality of dynamic symbols for an alternate authentication of the private account;

generating a system password from the dynamic symbols by applying the predetermined pattern on the user matrix;

presenting the user matrix with the plurality of dynamic symbols electronically on the user device;

receiving a user password obtained by applying a user-provided trace pattern on at least two of the dynamic symbols of the user matrix;

determining whether the system password matches the user password; and

in response to a determination that the system password matches the user password, confirming the alternate authentication of the private account to allow processing of the transaction.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for performing a secured transaction using a network including a server in communication with the network is provided. The server has a processor and a memory to store private account information from registered users and store commands that when executed by the processor cause the server to perform a method including: providing a login configuration to a user, including a matrix of dynamic symbols; determining an expected password for the user based on a trace pattern from the user and the symbols in the matrix; receiving a password from the user; and determining whether the password matches the expected password. A non-transitory machine-readable medium including a plurality of machine-readable instructions which when executed by one or more processors of a server controlled by a service provider are adapted to cause the server to perform a method as above is also provided.

48 Citations

20 Claims

1. A method comprising:
- obtaining login information from a user device for accessing a private account associated with a transaction, the private account associated with a predetermined pattern obtained from a predetermined trace applied to original symbols of an original matrix;
  
  determining that the login information does not match private account authentication information of the private account;
  
  in response to the determining that the login information does not match the private account authentication information, generating a user matrix with a plurality of dynamic symbols for an alternate authentication of the private account;
  
  generating a system password from the dynamic symbols by applying the predetermined pattern on the user matrix;
  
  presenting the user matrix with the plurality of dynamic symbols electronically on the user device;
  
  receiving a user password obtained by applying a user-provided trace pattern on at least two of the dynamic symbols of the user matrix;
  
  determining whether the system password matches the user password; and
  
  in response to a determination that the system password matches the user password, confirming the alternate authentication of the private account to allow processing of the transaction.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein presenting the user matrix further causes the user device to display a prompt for receiving the user-provided trace pattern.
  - 3. The method of claim 1, wherein at least one of the dynamic symbols is different from the original symbols.
  - 4. The method of claim 1, wherein an arrangement of the original symbols in the original matrix is different from an arrangement of the dynamic symbols in the user matrix.
  - 5. The method of claim 1, wherein the dynamic symbols are generated randomly.
  - 6. The method of claim 1, wherein presenting the user matrix further causes the user device to display background fill obscuring one or more of the dynamic symbols.
  - 7. The method of claim 1, wherein the transaction is terminated when the user password matches the system password.

8. A non-transitory machine-readable medium having stored thereon machine-readable instructions executable to cause a machine to perform operations comprising:
- requesting login information from a user device for accessing a private account associated with a transaction, the private account associated with a predetermined pattern obtained from a predetermined trace applied to original symbols of an original matrix;
  
  determining that the login information does not match private account authentication information of the private account;
  
  in response to the determining that the login information does not match the private account authentication information, generating a user matrix with dynamic symbols for an alternate authentication of the private account;
  
  generating a system password from the dynamic symbols by applying the predetermined pattern on the user matrix;
  
  presenting the user matrix with the dynamic symbols electronically on the user device;
  
  receiving a user password obtained by applying a user-provided trace pattern on at least two of the dynamic symbols of the user matrix;
  
  determining whether the system password matches the user password; and
  
  in response to a determination that the system password matches the user password, confirming the alternate authentication of the private account to allow processing of the transaction.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The non-transitory machine-readable medium of claim 8, wherein presenting the user matrix further causes the user device to display a prompt for receiving the user-provided trace pattern.
  - 10. The non-transitory machine-readable medium of claim 8, wherein at least one of the dynamic symbols is different from the original symbols.
  - 11. The non-transitory machine-readable medium of claim 8, wherein at least one of the original symbols is arranged differently in the original matrix from arrangement of the dynamic symbols in the user matrix.
  - 12. The non-transitory machine-readable medium of claim 8, wherein the transaction is terminated when the user password does not match the system password.
  - 13. The non-transitory machine-readable medium of claim 8, wherein the dynamic symbols are generated randomly.
  - 14. The non-transitory machine-readable medium of claim 8, wherein presenting the user matrix further causes the user device to display background fill obscuring one or more of the dynamic symbols.

15. A system comprising:
- a non-transitory memory; and
  
  one or more hardware processors coupled to the non-transitory memory and configured to execute instructions from the non-transitory memory to perform operations comprising;
  
  requesting login information from a user device for accessing a private account associated with a transaction, the private account associated with a predetermined pattern obtained from a predetermined trace applied to original symbols of an original matrix;
  
  determining that the login information does not match private account authentication information of the private account;
  
  in response to the determining that the login information does not match the private account authentication information, generating a user matrix with a plurality of dynamic symbols for an alternate authentication of the private account;
  
  generating a system password from the dynamic symbols by applying the predetermined pattern on the user matrix;
  
  presenting the user matrix with the dynamic symbols electronically on the user device;
  
  receiving a user password obtained by applying a user-provided trace pattern on at least two of the dynamic symbols of the user matrix;
  
  determining whether the system password matches the user password; and
  
  in response to a determination that the system password matches the user password, confirming the alternate authentication of the private account to allow processing of the transaction.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The system of claim 15, wherein presenting the user matrix further causes the user device to display a prompt for receiving the user-provided trace pattern.
  - 17. The system of claim 15, wherein at least one of the dynamic symbols is different from the original symbols.
  - 18. The system of claim 15, wherein at least one of the dynamic symbols is different from the original symbols.
  - 19. The system of claim 15, wherein the dynamic symbols are selected randomly.
  - 20. The system of claim 15, wherein presenting the user matrix further causes the user device to display background fill obscuring one or more of the dynamic symbols.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Original Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Inventors
Vargas, Luis, Aggarwal, Vishal, Kandlur, Yogesh
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
MURPHY, JOSEPH B

Application Number

US14/822,834
Publication Number

US 20150350192A1
Time in Patent Office

708 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/36   by graphic or iconic repres...

G06F 21/46   by designing passwords or c...

G06F 21/606   by securing the transmissio...

H04L 63/083   using passwords cryptograph...

Dynamic secure login authentication

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

48 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Dynamic secure login authentication

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

48 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links