Device registration, authentication, and authorization system and method
First Claim
1. A server, comprising:
- at least one processor to;
receive a registration request, the registration request comprising a representation of a username and a password;
verify the username and the password and transmit a one-time-use password;
receive the one-time-use password and first device identifier information from a mobile computing device;
receive an access request from the mobile computing device comprising the representation of the username and the password, second device identifier information, and application key information;
verify the username, the password, the second device identifier information, and the application key information at the server;
transmit a token to the mobile computing device responsive to verification of the username, the password, the second device identifier information, and the application key information;
receive a resource request from the mobile computing device comprising the token and third device identifier information;
verify the token and the third device identifier information; and
transmit a representation of the requested resource to the mobile computing device.
2 Assignments
0 Petitions
Accused Products
Abstract
A system includes one or more processors to receive a registration request, the registration request comprising a representation of a username and a password, verify the username and the password and transmit a one-time-use password, receive the one-time-use password and first device identifier information from a mobile computing device, receive an access request from the mobile computing device comprising the representation of the username and the password, second device identifier information, and application key information, verify the username, the password, the second device identifier information, and the application key information, and transmit a token to the mobile computing device, and receive a resource request from the mobile computing device comprising the token and third device identifier information.
22 Citations
30 Claims
-
1. A server, comprising:
at least one processor to; receive a registration request, the registration request comprising a representation of a username and a password; verify the username and the password and transmit a one-time-use password; receive the one-time-use password and first device identifier information from a mobile computing device; receive an access request from the mobile computing device comprising the representation of the username and the password, second device identifier information, and application key information; verify the username, the password, the second device identifier information, and the application key information at the server; transmit a token to the mobile computing device responsive to verification of the username, the password, the second device identifier information, and the application key information; receive a resource request from the mobile computing device comprising the token and third device identifier information; verify the token and the third device identifier information; and transmit a representation of the requested resource to the mobile computing device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
11. A method, comprising:
-
receiving, by at least one processor on a server, a registration request, the registration request comprising a representation of a username and a password; verifying, by the at least one processor, the username and the password and transmitting a one-time-use password; receiving, by the at least one processor, the one-time-use password and first device identifier information from a mobile computing device; receiving, by the at least one processor, an access request from the mobile computing device comprising the representation of the username and the password, second device identifier information, and application key information; verifying, by the at least one processor, the username, the password, the second device identifier information, and the application key information at the server; transmitting a token to the mobile computing device responsive to verification of the username, the password, the second device identifier information, and the application key information; receiving, by the at least one processor, a resource request from the mobile computing device comprising the token and third device identifier information; verifying the token and the third device identifier information; and transmitting a representation of the requested resource to the mobile computing device. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A non-transitory computer-readable medium having instructions stored thereon that, when executed by at least one processor on a server, cause the at least one processor to perform operations comprising:
-
receiving a registration request, the registration request comprising a representation of a username and a password; verifying the username and the password and transmitting a one-time-use password; receiving the one-time-use password and first device identifier information from a mobile computing device; receiving an access request from the mobile computing device comprising the representation of the username and the password, second device identifier information, and application key information; verifying the username, the password, the second device identifier information, and the application key information at the server; transmitting a token to the mobile computing device responsive to verification of the username, the password, the second device identifier information, and the application key information; receiving a resource request from the mobile computing device comprising the token and third device identifier information; verifying the token and the third device identifier information; and transmitting a representation of the requested resource to the mobile computing device. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30)
-
Specification