Centralized identification and authentication system and method

US 9,727,864 B2
Filed: 09/07/2012
Issued: 08/08/2017
Est. Priority Date: 08/29/2001
Status: Expired due to Term

- Alert
- Pin

First Claim

Patent Images

1. An authentication computer system to enhance computer network security by authenticating a plurality of users during electronic transactions that are engaged in between the plurality of users and a transaction computer system, the authentication computer system comprising:

a dynamic-code generator to generate a plurality of substantially non-predictable digital codes;

a computer-readable memory to store the generated digital codes;

a timer to generate an electronic timer signal;

a network receiver to receive digital requests from the transaction computer system or the plurality of users;

a network transmitter to transmit digital message to the transaction computer system and one or more electronic devices of the plurality of users, the users and their one or more electronic devices being located physically remote from the authentication computer system; and

a computer processor electronically coupled to the timer, the computer-readable memory, the network receiver, and the network transmitter to;

during an electronic transaction that is engaged in between one of the users and the transaction computer system, receive a digital request for a digital code for authenticating the user via the network receiver,during the electronic transaction and in response to the digital request, transmit one of the generated digital codes for the user to one of the electronic devices of the user via the network transmitter, wherein the digital code received by the user is only valid for one authentication and only valid for authentication of the user,during the electronic transaction, receive a digital authentication request for authenticating the user from the transaction computer system via the network receiver, the digital authentication request comprising a digital identity corresponding to the user, the digital identity including the digital code,receive the electronic timer signal to evaluate a validity of one or more of the digital codes, andduring the electronic transaction, determine if there is a match between the received digital code and one of the generated digital codes and the received digital code is valid to authenticate the user, and, if there is a match and the received digital code is valid, (i) transmit a digital authentication approval message to the transaction computer system via the network transmitter wherein the digital authentication approval message indicates to the transaction computer system that the user is authentic and (ii) prevent multiple uses of the digital code.

View all claims

2 Assignments

Timeline View

Assignment View

Litigations

0 Petitions

Accused Products

Abstract

A Central-Entity centralizes users'"'"' personal and financial information in a secure environment in order to prevent the distribution of user'"'"'s information in e-commerce. This information is then used to create digital identity for the users. The digital identity of each user is dynamic, non-predictable and time dependent, because it is a combination of a user name and a dynamic, non-predictable and time dependent secure code that will be provided to the user for his identification. The user provides his digital identity to an External-Entity such as merchant or service provider. The External-Entity is dependent on Central-Entity to identify the user based on the digital identity given by the user. The External-Entity forwards the user'"'"'s digital identity to the Central-Entity for identification and authentication of the user and the transaction.

102 Citations

View as Search Results

15 Claims

1. An authentication computer system to enhance computer network security by authenticating a plurality of users during electronic transactions that are engaged in between the plurality of users and a transaction computer system, the authentication computer system comprising:
- a dynamic-code generator to generate a plurality of substantially non-predictable digital codes;
  
  a computer-readable memory to store the generated digital codes;
  
  a timer to generate an electronic timer signal;
  
  a network receiver to receive digital requests from the transaction computer system or the plurality of users;
  
  a network transmitter to transmit digital message to the transaction computer system and one or more electronic devices of the plurality of users, the users and their one or more electronic devices being located physically remote from the authentication computer system; and
  
  a computer processor electronically coupled to the timer, the computer-readable memory, the network receiver, and the network transmitter to;
  
  during an electronic transaction that is engaged in between one of the users and the transaction computer system, receive a digital request for a digital code for authenticating the user via the network receiver,during the electronic transaction and in response to the digital request, transmit one of the generated digital codes for the user to one of the electronic devices of the user via the network transmitter, wherein the digital code received by the user is only valid for one authentication and only valid for authentication of the user,during the electronic transaction, receive a digital authentication request for authenticating the user from the transaction computer system via the network receiver, the digital authentication request comprising a digital identity corresponding to the user, the digital identity including the digital code,receive the electronic timer signal to evaluate a validity of one or more of the digital codes, andduring the electronic transaction, determine if there is a match between the received digital code and one of the generated digital codes and the received digital code is valid to authenticate the user, and, if there is a match and the received digital code is valid, (i) transmit a digital authentication approval message to the transaction computer system via the network transmitter wherein the digital authentication approval message indicates to the transaction computer system that the user is authentic and (ii) prevent multiple uses of the digital code.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The authentication computer system of claim 1, wherein the authentication computer system is adapted to serve a plurality of transaction computer systems.
  - 3. The authentication computer system of claim 1, wherein the transaction computer system is adapted to detect an attempt to use each of the plurality of digital codes beyond a first use and determines a time delay based on the electronic timer signal so as to use each of the plurality of digital codes only within a limited time.
  - 4. The authentication computer system of claim 1, wherein the digital code is alphanumeric.
  - 5. The authentication computer system of claim 1, wherein the digital code is numeric.
  - 6. The authentication computer system of claim 1, wherein the matching of the received digital code and the transmission of the digital authentication approval message to the transaction computer system is performed in a matter of seconds.
  - 7. The authentication computer system of claim 1, wherein the digital code, the user specific information and a current time are used to authenticate the user.

8. An authentication computer system to enhance computer network security by authenticating a user during an electronic transaction that is engaged in between the user and a transaction computer system, the authentication computer system comprising:
- a dynamic-code generator to generate a substantially non-predictable digital code;
  
  a computer-readable memory to store the generated digital code;
  
  a timer to generate an electronic timer signal;
  
  a network receiver to receive digital requests from the transaction computer system or the user;
  
  a network transmitter to transmit digital message to the transaction computer system and an electronic device of the user, the user and its electronic device being located physically remote from the authentication computer system; and
  
  a computer processor electronically coupled to the timer, the computer-readable memory, the network receiver, and the network transmitter to;
  
  during an electronic transaction that is engaged in between the user and the transaction computer system, receive a digital request for a digital code for authenticating the user via the network receiver,during the electronic transaction and in response to the digital request, transmit the generated digital code to the electronic device of the user via the network transmitter, wherein the digital code received by the user is only valid for one authentication and only valid for authentication of the user,during the electronic transaction, receive a digital authentication request for authenticating the user from the transaction computer system via the network receiver, the digital authentication request comprising a digital identity corresponding to the user, the digital identity including the digital code,receive the electronic timer signal to evaluate a validity of the digital code, andduring the electronic transaction, determine if there is a match between the received digital code and the generated digital code and the received digital code is valid to authenticate the user, and, if there is a match and the received digital code is valid, (i) transmit a digital authentication approval message to the transaction computer system via the network transmitter wherein the digital authentication approval message indicates to the transaction computer system that the user is authentic and (ii) prevent multiple uses of the digital code.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
- - 9. The authentication computer system of claim 8, wherein the generated digital code is transformed by algorithmic combination with user specific information for the user.
  - 10. The authentication computer system of claim 8, wherein the digital code has a validity indicator.
  - 11. The authentication computer system of claim 8, wherein the digital code is alphanumeric.
  - 12. The authentication computer system of claim 8, wherein the digital code is numeric.
  - 13. The authentication computer system of claim 8, wherein the authentication computer system is adapted to serve a plurality of transaction computer systems.
  - 14. The authentication computer system of claim 8, wherein the matching of the received digital code and the transmission of the digital authentication approval message to the transaction computer system is performed in a matter of seconds.
  - 15. The authentication computer system of claim 8, wherein the digital code, the user specific information and a current time are used to authenticate the user.

Specification

Resources

Litigation Campaign Assessment

Litigation Data

Current Assignee
Factor2 Multimedia Systems, LLC
Original Assignee
Kamran Asghari-Kamrani, Nader Asghari-Kamrani
Inventors
Asghari-Kamrani, Kamran, Asghari-Kamrani, Nader
Primary Examiner(s)
Robinson, Kito R

Application Number

US13/606,538
Publication Number

US 20130036053A1
Time in Patent Office

1,796 Days
Field of Search

705 40, 705 44
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/40   by quorum, i.e. whereby two...

G06F 21/6245   Protecting personal data, e...

G06F 2221/2115   Third party

G06Q 20/04   Payment circuits

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/3674   involving authentication

G06Q 20/382   insuring higher security of...

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4014   Identity check for transact...

G06Q 30/0225   Avoiding frauds

G07F 7/1008   Active credit-cards provide...

H04L 63/0421   Anonymous communication, i....

H04L 63/08   for authentication of entit...

H04L 63/0838   using one-time-passwords

Centralized identification and authentication system and method

First Claim

2 Assignments

Litigations

0 Petitions

Accused Products

Abstract

102 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Centralized identification and authentication system and method

First Claim

2 Assignments

Subscription Required

Subscription Required

Litigations

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

102 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links