Sight codes for website authentication

US 9,887,992 B1
Filed: 08/04/2015
Issued: 02/06/2018
Est. Priority Date: 07/11/2012
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method comprising:

receiving, from a server that provides a web page to a client device, a request to start, for a user, a new authenticated session of the web page on the client device, the request including data identifying the user;

in response to receiving the request, generating an optical machine-readable code and a security image for the new authenticated session;

transmitting, to the server that provides the web page, (i) the security image, (ii) the optical machine-readable code, and (iii) instructions for the server to provide the security image and the optical machine-readable code for simultaneous display at the client device;

transmitting, to a mobile device that is associated with the user and is different from the client device, the security image and instructions to provide the security image for display, on the mobile device, while the security image and the optical machine-readable code are simultaneously displayed at the client device;

receiving, from the mobile device, extracted data that the mobile device extracted from the optical machine-readable code in response to the mobile device optically detecting the optical machine-readable code using a camera of the mobile device;

in response to receiving the extracted data that the mobile device extracted from the optical machine-readable code, verifying an identity of the user based on a comparison of the extracted data and data corresponding to the optical machine-readable code transmitted to the server that provides the web page; and

in response to verifying the identity of the user based on the comparison, transmitting, to the server that provides the web page, data indicating the verified identity of the user and a session identifier for the new authenticated session.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for site codes for website authentication are disclosed. In one aspect, a method includes receiving, a request to start a new authenticated session of the web page on the client device. The method includes generating an optical machine-readable code and a security image. The method includes transmitting (i) the security image, (ii) the optical machine-readable code, and (iii) instructions for the server to provide the security image and the optical machine-readable code for simultaneous display. The method includes receiving extracted data that the mobile device extracted from the optical machine-readable code in response to the mobile device optically detecting the optical machine-readable code using a camera of the mobile device. The method includes verifying an identity of the user based on a comparison of the extracted data and data corresponding to the optical machine-readable code.

133 Citations

View as Search Results

20 Claims

1. A computer-implemented method comprising:
- receiving, from a server that provides a web page to a client device, a request to start, for a user, a new authenticated session of the web page on the client device, the request including data identifying the user;
  
  in response to receiving the request, generating an optical machine-readable code and a security image for the new authenticated session;
  
  transmitting, to the server that provides the web page, (i) the security image, (ii) the optical machine-readable code, and (iii) instructions for the server to provide the security image and the optical machine-readable code for simultaneous display at the client device;
  
  transmitting, to a mobile device that is associated with the user and is different from the client device, the security image and instructions to provide the security image for display, on the mobile device, while the security image and the optical machine-readable code are simultaneously displayed at the client device;
  
  receiving, from the mobile device, extracted data that the mobile device extracted from the optical machine-readable code in response to the mobile device optically detecting the optical machine-readable code using a camera of the mobile device;
  
  in response to receiving the extracted data that the mobile device extracted from the optical machine-readable code, verifying an identity of the user based on a comparison of the extracted data and data corresponding to the optical machine-readable code transmitted to the server that provides the web page; and
  
  in response to verifying the identity of the user based on the comparison, transmitting, to the server that provides the web page, data indicating the verified identity of the user and a session identifier for the new authenticated session.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein the security image is an animated image.
  - 3. The method of claim 2, wherein:
    - transmitting, to the server that provides the web page, (i) the security image, (ii) the optical machine-readable code, and (iii) instructions for the server to provide the security image and the optical machine-readable code for simultaneous display at the client device comprises;
      
      transmitting, to the server that provides the web page, data for synchronizing animation of the animated image with animation of the animated image on the mobile device; and
      
      transmitting, to a mobile device that is associated with the user and is different from the client device, the security image and instructions to provide the security image for display, on the mobile device, while the security image and the optical machine-readable code are simultaneously displayed at the client device comprises;
      
      transmitting, to the mobile device, the data for synchronizing animation of the animated image with animation of the animated image on the client device.
  - 4. The method of claim 1, wherein the optical machine-readable code is a QR code.
  - 5. The method of claim 1, wherein the security image and the optical machine-readable code are further based on data associated with a current time.
  - 6. The method of claim 1, wherein transmitting, to the server that provides the web page, data indicating the verified identity of the user and a session identifier for the new authenticated session comprises:
    - transmitting, to the server that provides the web page, a security token for initiating the new authenticated session.
  - 7. The method of claim 1, comprising:
    - receiving, from the mobile device, data identifying the mobile device and different data identifying the user;
      
      generating a credential based on the data identifying the mobile device and the different data identifying the user; and
      
      identifying, by accessing the credential, the mobile device based on receiving, from the server that provides the web page to the client device, the request to start, for the user, the new authenticated session of the web page on the client device.
  - 8. The method of claim 7, comprising:
    - determining that the credential is valid; and
      
      based on determining that the credential is valid, transmitting, to the server that provides the web page, the data indicating the verified identity of the user and the session identifier for the new authenticated session.
  - 9. The method of claim 7, comprising:
    - determining that the credential is valid for a particular period of time; and
      
      based on determining that the credential is valid, transmitting, to the server that provides the web page, (i) the data indicating the verified identity of the user, (ii) the session identifier for the new authenticated session, and (iii) data that indicates the particular period of time when the user is authorized to access the web page.

10. A system comprising:
- one or more computers and one or more storage devices storing instructions that are operable, when executed by the one or more computers, to cause the one or more computers to perform operations comprising;
  
  receiving, from a server that provides a web page to a client device, a request to start, for a user, a new authenticated session of the web page on the client device, the request including data identifying the user;
  
  in response to receiving the request, generating an optical machine-readable code and a security image for the new authenticated session;
  
  transmitting, to the server that provides the web page, (i) the security image, (ii) the optical machine-readable code, and (iii) instructions for the server to provide the security image and the optical machine-readable code for simultaneous display at the client device;
  
  transmitting, to a mobile device that is associated with the user and is different from the client device, the security image and instructions to provide the security image for display, on the mobile device, while the security image and the optical machine-readable code are simultaneously displayed at the client device;
  
  receiving, from the mobile device, extracted data that the mobile device extracted from the optical machine-readable code in response to the mobile device optically detecting the optical machine-readable code using a camera of the mobile device;
  
  in response to receiving the extracted data that the mobile device extracted from the optical machine-readable code, verifying an identity of the user based on a comparison of the extracted data and data corresponding to the optical machine-readable code transmitted to the server that provides the web page; and
  
  in response to verifying the identity of the user based on the comparison, transmitting, to the server that provides the web page, data indicating the verified identity of the user and a session identifier for the new authenticated session.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The system of claim 10, wherein the security image is an animated image.
  - 12. The system of claim 11, wherein:
    - transmitting, to the server that provides the web page, (i) the security image, (ii) the optical machine-readable code, and (iii) instructions for the server to provide the security image and the optical machine-readable code for simultaneous display at the client device comprises;
      
      transmitting, to the server that provides the web page, data for synchronizing animation of the animated image with animation of the animated image on the mobile device; and
      
      transmitting, to a mobile device that is associated with the user and is different from the client device, the security image and instructions to provide the security image for display, on the mobile device, while the security image and the optical machine-readable code are simultaneously displayed at the client device comprises;
      
      transmitting, to the mobile device, the data for synchronizing animation of the animated image with animation of the animated image on the client device.
  - 13. The system of claim 10, wherein the optical machine-readable code is a QR code.
  - 14. The system of claim 10, wherein the security image and the optical machine-readable code are further based on data associated with a current time.
  - 15. The system of claim 10, wherein transmitting, to the server that provides the web page, data indicating the verified identity of the user and a session identifier for the new authenticated session comprises:
    - transmitting, to the server that provides the web page, a security token for initiating the new authenticated session.
  - 16. The system of claim 10, wherein the operations further comprise:
    - receiving, from the mobile device, data identifying the mobile device and different data identifying the user;
      
      generating a credential based on the data identifying the mobile device and the different data identifying the user; and
      
      identifying, by accessing the credential, the mobile device based on receiving, from the server that provides the web page to the client device, the request to start, for the user, the new authenticated session of the web page on the client device.
  - 17. The system of claim 16, wherein the operations further comprise:
    - determining that the credential is valid; and
      
      based on determining that the credential is valid, transmitting, to the server that provides the web page, the data indicating the verified identity of the user and the session identifier for the new authenticated session.
  - 18. The system of claim 16, wherein the operations further comprise:
    - determining that the credential is valid for a particular period of time; and
      
      based on determining that the credential is valid, transmitting, to the server that provides the web page, (i) the data indicating the verified identity of the user, (ii) the session identifier for the new authenticated session, and (iii) data that indicates the particular period of time when the user is authorized to access the web page.

19. A non-transitory computer-readable medium storing software comprising instructions executable by one or more computers which, upon such execution, cause the one or more computers to perform operations comprising:
- receiving, from a server that provides a web page to a client device, a request to start, for a user, a new authenticated session of the web page on the client device, the request including data identifying the user;
  
  in response to receiving the request, generating an optical machine-readable code and a security image for the new authenticated session;
  
  transmitting, to the server that provides the web page, (i) the security image, (ii) the optical machine-readable code, and (iii) instructions for the server to provide the security image and the optical machine-readable code for simultaneous display at the client device;
  
  transmitting, to a mobile device that is associated with the user and is different from the client device, the security image and instructions to provide the security image for display, on the mobile device, while the security image and the optical machine-readable code are simultaneously displayed at the client device;
  
  receiving, from the mobile device, extracted data that the mobile device extracted from the optical machine-readable code in response to the mobile device optically detecting the optical machine-readable code using a camera of the mobile device;
  
  in response to receiving the extracted data that the mobile device extracted from the optical machine-readable code, verifying an identity of the user based on a comparison of the extracted data and data corresponding to the optical machine-readable code transmitted to the server that provides the web page; and
  
  in response to verifying the identity of the user based on the comparison, transmitting, to the server that provides the web page, data indicating the verified identity of the user and a session identifier for the new authenticated session.
- View Dependent Claims (20)
- - 20. The medium of claim 19, wherein the operations further comprise:
    - receiving, from the mobile device, data identifying the mobile device and different data identifying the user;
      
      generating a credential based on the data identifying the mobile device and the different data identifying the user; and
      
      identifying, by accessing the credential, the mobile device based on receiving, from the server that provides the web page to the client device, the request to start, for the user, the new authenticated session of the web page on the client device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microstrategy Incorporated
Original Assignee
Microstrategy Incorporated
Inventors
Venkat, Rajesh, Qiao, Yong, Vazquez, Hector
Primary Examiner(s)
Moorthy, Aravind

Application Number

US14/817,413
Time in Patent Office

917 Days
Field of Search

726 4- 6, 713168, 713182
US Class Current
CPC Class Codes

G06F 21/35   communicating wirelessly

G06F 21/36   by graphic or iconic repres...

H04L 63/0853   using an additional device,...

H04W 12/06   Authentication

H04W 12/77   Graphical identity

Sight codes for website authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

133 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Sight codes for website authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

133 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links