Enhanced 2CHK authentication security with query transactions
First Claim
1. A method of operating a security server to perform query transactions via a network, comprising:
- receiving, at the security server from a user network device via the network, a request of a user to activate a secure communications channel over the network between the user network device and the security server, the request including an identifying number for the user network device;
transmitting, by the security server in response to the received activation request, an activation code for delivery to the user via another network;
receiving, at the security server from the user network device via the network, an activation code;
comparing, at the security server, the received activation code with the transmitted activation code to validate the received activation code;
activating the secure communications channel based on the validation of the received activation code, wherein the activated secure communications channel is a channel in which data is encrypted based on the validated received activation code, wherein activating the secure communications channel is staggered, with the user network device notified that it is quasi-activated prior to transmission of the activation code by the security server, with the transmission of the activation code by the security server for delivery to the user network device delayed after the request of a user to activate a secure communications channel until a transaction with an enterprise is desired, by the enterprise sending the identifying number for the user network device to the security server, with the security server then transmitting an activation code for delivery to the user network device;
receiving, at the security server from an enterprise network, which is also represented on the network, a query including a question for the user, wherein the correct answer to the question has been previously agreed to by the user and the enterprise;
transmitting, from the security server to the user network device via the secure communications channel, the received enterprise query;
receiving, at the security server from the user network device via the secure communications channel, a user answer to the transmitted enterprise query; and
transmitting the received user answer, from the security server to the enterprise to further authenticate the user to the enterprise.
10 Assignments
0 Petitions
Accused Products
Abstract
A security server receives a request of a user to activate a secure communications channel over the network and, in response, transmits an activation code for delivery to the user via another network. The security server receives an activation code from the user network device via the network, compares the received activation code with the transmitted activation code to validate the received activation code, and activates the secure communications channel based on the validation. The security server next receives a query including a question for the user from an enterprise represented on the network, transmits the received enterprise query to the user network device via the secure communications channel, and receives, from the user network device via the secure communications channel, a user answer to the transmitted enterprise query. The security server then transmits the received user answer to the enterprise to further authenticate the user to the enterprise.
85 Citations
13 Claims
-
1. A method of operating a security server to perform query transactions via a network, comprising:
-
receiving, at the security server from a user network device via the network, a request of a user to activate a secure communications channel over the network between the user network device and the security server, the request including an identifying number for the user network device; transmitting, by the security server in response to the received activation request, an activation code for delivery to the user via another network; receiving, at the security server from the user network device via the network, an activation code; comparing, at the security server, the received activation code with the transmitted activation code to validate the received activation code; activating the secure communications channel based on the validation of the received activation code, wherein the activated secure communications channel is a channel in which data is encrypted based on the validated received activation code, wherein activating the secure communications channel is staggered, with the user network device notified that it is quasi-activated prior to transmission of the activation code by the security server, with the transmission of the activation code by the security server for delivery to the user network device delayed after the request of a user to activate a secure communications channel until a transaction with an enterprise is desired, by the enterprise sending the identifying number for the user network device to the security server, with the security server then transmitting an activation code for delivery to the user network device; receiving, at the security server from an enterprise network, which is also represented on the network, a query including a question for the user, wherein the correct answer to the question has been previously agreed to by the user and the enterprise; transmitting, from the security server to the user network device via the secure communications channel, the received enterprise query; receiving, at the security server from the user network device via the secure communications channel, a user answer to the transmitted enterprise query; and transmitting the received user answer, from the security server to the enterprise to further authenticate the user to the enterprise. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of operating a security server to securely transact business between a user and an enterprise via a network, comprising:
-
receiving, at the security server from a user network device via the network, a request of the user to activate a secure communications channel over the network between the user network device and the security server, the request including an identifying number for a user network device; transmitting, by the security server in response to the received activation request, an activation code for delivery to the user via another network; receiving, at a security server from the user network device via the network, an activation code; comparing, at the security server, the received activation code with the transmitted activation code to validate the received activation code; activating the secure communications channel based on the validation of the received activation code, wherein the activated secure communications channel is a channel in which data is encrypted based on the validated received activation code, wherein activating the secure communications channel is staggered, with the transmission of the activation code by the security server for delivery to the user network device delayed after the request of a user to activate a secure communications channel until a transaction with an enterprise is desired, by the enterprise sending the identifying number for the user network device to the security server, with the security server then transmitting an activation code for delivery to the user network device; receiving, at the security server from the user network device via the secure communications channel, transaction information including an identifier of the enterprise with which the user desires to enter into the transaction via the network, and details of the desired transaction; transmitting the transaction information, from the security server to the enterprise via another secure communications channel; receiving, at the security server from the enterprise via the other secure communications channel, notification that either (i) the transaction has been accepted or (ii) the transaction has been rejected or (iii) additional authentication of the user is required by the enterprise; and if the received notification is a notification that the transaction has been accepted or rejected, transmitting the received notification from the security server to the user network device via the secure communications channel.
-
-
8. An article of manufacture for performing query transactions via a network, comprising:
-
non-transitory storage medium; and logic stored on the storage medium, wherein the stored logic is configured to be readable by a processor and thereby cause the processor to operate so as to; receive, from a user network device via the network, a request of a user to activate a secure communications channel over the network for communications with the user network device, the request including an identifying number for the user network device; direct transmission, in response to the received activation request, of an activation code for delivery to the user via another network; receive, from the user network device via the network, an activation code;
compare the received activation code with the transmitted activation code to validate the received activation code;activate the secure communications channel based on the validation of the received activation code, wherein the activated secure communications channel is a channel in which data is encrypted based on the validated received activation code, wherein activating the secure communications channel is staggered, with the transmission of the activation code for delivery to the user network device delayed after the request of a user to activate a secure communications channel until a transaction is desired, by an enterprise sending the identifying number for the user network device, with the processor then transmitting an activation code for delivery to the user; receive, from an enterprise network, which is also represented on the network, a query including a question for the user, wherein the correct answer to the question has been previously agreed to by the user and the enterprise; direct transmission of the received enterprise query to the user network device via the secure communications channel; receive, from the user network device via the secure communications channel, a user answer to the transmitted enterprise query; and direct transmission of the received user answer to the enterprise to further authenticate the user to the enterprise. - View Dependent Claims (9, 10, 11, 12, 13)
-
Specification