System and method for voice authentication
First Claim
1. A method for authenticating a user for a transaction, comprising:
- receiving, by a device, a user request to initiate the transaction;
transmitting, by the device and to a server computer, a notification of the user request to the initiate the transaction;
in response to transmitting the notification to the server computer, receiving, by the device and from the server computer, a supplemental signal comprising an inaudible sound and an element unique to the transaction;
in response to receiving the supplemental signal, displaying, by the device, a word string to be repeated by the user, wherein the word string comprises a random element and a fixed element;
playing, by the device, the received supplemental signal;
concurrently recording, by the device, (a) an audio segment originating from the user while the user attempts to vocally reproduce the displayed word string and (b) the received supplemental signal; and
sending, by the device, the concurrently recorded audio segment and the received supplemental signal, to the server computer, wherein the server computer authenticates the user based at least in part on (a) the sent audio segment matching with a voice profile associated with the user and (b) the supplemental signal sent by the device matching the supplemental signal originally received by the device.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the invention provide for secure voice authentication through a communication device or access device. Certain embodiments allow for providing a word string to a communication device or authentication device. The communication or authentication device plays a supplemental signal that is unique to a transaction. The communication device or authentication device concurrently records an audio segment originating from the user and the supplemental signal. The audio segment is an attempt by the user to vocally reproduce the word string. The communication device or authentication device sends the concurrently recorded audio segment and supplemental signal, to a computer, where the computer authenticates the user.
-
Citations
18 Claims
-
1. A method for authenticating a user for a transaction, comprising:
-
receiving, by a device, a user request to initiate the transaction; transmitting, by the device and to a server computer, a notification of the user request to the initiate the transaction; in response to transmitting the notification to the server computer, receiving, by the device and from the server computer, a supplemental signal comprising an inaudible sound and an element unique to the transaction; in response to receiving the supplemental signal, displaying, by the device, a word string to be repeated by the user, wherein the word string comprises a random element and a fixed element; playing, by the device, the received supplemental signal; concurrently recording, by the device, (a) an audio segment originating from the user while the user attempts to vocally reproduce the displayed word string and (b) the received supplemental signal; and sending, by the device, the concurrently recorded audio segment and the received supplemental signal, to the server computer, wherein the server computer authenticates the user based at least in part on (a) the sent audio segment matching with a voice profile associated with the user and (b) the supplemental signal sent by the device matching the supplemental signal originally received by the device. - View Dependent Claims (2, 3, 4)
-
-
5. A device, comprising:
-
a processor; and a non-transitory computer-readable storage medium, comprising code executable by the processor for implementing a method for authenticating a user for a transaction, the method comprising; receiving, by the device, a user request to initiate the transaction; transmitting, by the device and to a server computer, a notification of the user request to the initiate the transaction; in response to transmitting the notification to the server computer, receiving, by the device and from the server computer, a supplemental signal comprising an inaudible sound and an element unique to the transaction; in response to receiving the supplemental signal, displaying, by the device, a word string to be repeated by the user, wherein the word string comprises a random element and a fixed element; playing, by the device, the received supplemental signal; concurrently recording, (a) by the device, an audio segment originating from the user while the user attempts to vocally reproduce the displayed word string and (b) the received supplemental signal; and sending, by the device, the concurrently recorded audio segment and the received supplemental signal, to the server computer, wherein the server computer authenticates the user based at least in part on (a) the sent audio segment matching with a voice profile associated with the user and (b) the supplemental signal sent by the device matching the supplemental signal originally received by the device. - View Dependent Claims (6, 7, 8)
-
-
9. A method for authenticating a user for a transaction, comprising:
-
receiving, from a device and by a server computer, a request to initiate the transaction; transmitting, by the server computer and to the device, a supplemental signal comprising an inaudible sound and an element unique to the transaction; receiving, by the server computer, authorization request comprising an (a) audio segment and (b) the transmitted supplemental signal, wherein the audio segment and the transmitted supplemental signal were concurrently recorded by the device while the device plays the transmitted supplemental signal and while the user attempts to vocally reproduce a word string displayed by the device, and wherein the word string comprises a random element and a fixed element; verifying, by the server computer, that (a) the supplemental signal received in the authorization request matches the supplemental signal originally transmitted to the device and (b) that the received audio segment matches with a voice profile associated with the user; and authenticating, by the server computer, the user for the transaction based at least in part on the verifying. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A server computer, comprising:
-
a processor; and a non-transitory computer-readable storage medium, comprising code executable by the processor for implementing a method for authenticating a user for a transaction, the method comprising; receiving, from a device and by the server computer, a request to initiate a transaction; transmitting, by the server computer and to the device, a supplemental signal comprising an inaudible sound and an element unique to the transaction; receiving, by the server computer, an authorization request comprising an (a) audio segment and (b) the transmitted supplemental signal, wherein the audio segment and the transmitted supplemental signal were concurrently recorded by the device while the device plays the transmitted supplemental signal and while the user attempts to vocally reproduce a word string displayed by the device, and wherein the word string comprises a random element and a fixed element; and verifying, by the server computer, that (a) the supplemental signal received in the authorization request matches the supplemental signal originally transmitted to the device and (b) that the received audio segment matches with a voice profile associated with the user; and authenticating, by the server computer, the user for the transaction based at least in part on the verifying. - View Dependent Claims (15, 16, 17, 18)
-
Specification