Efficient logon

US 10,650,131 B1
Filed: 05/02/2019
Issued: 05/12/2020
Est. Priority Date: 04/30/2013
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

detecting a first device associated with a user within a detectable range of a second device;

requesting authentication information based on an authentication challenge indicated in a user profile associated with the first device;

receiving the authentication information;

in response to receiving the authentication information, installing a token generator on the second device;

generating, by the token generator associated with the user, a secure token, wherein the token generator is stored on the second device;

sending, to a server, the secure token and a time stamp associated with the secure token; and

granting, to the user, access to one or more services in response to receiving a verification of the secure token.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The technology described herein detects a first device associated with a user that is within a detectable range of a second device. The system requests authentication information. In response to receiving the authentication information, a token generator associated with the user can generate a secure token. The secure token can be sent to the server. Once the secure token is verified, the user is granted access to one or more services.

82 Citations

View as Search Results

18 Claims

1. A method comprising:
- detecting a first device associated with a user within a detectable range of a second device;
  
  requesting authentication information based on an authentication challenge indicated in a user profile associated with the first device;
  
  receiving the authentication information;
  
  in response to receiving the authentication information, installing a token generator on the second device;
  
  generating, by the token generator associated with the user, a secure token, wherein the token generator is stored on the second device;
  
  sending, to a server, the secure token and a time stamp associated with the secure token; and
  
  granting, to the user, access to one or more services in response to receiving a verification of the secure token.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein an indication that the first device is within the detectable range is received using at least one of near-field communications, radio frequency identification, or a short-range communication protocol.
  - 3. The method of claim 1, wherein the secure token is a one-time token.
  - 4. The method of claim 1, wherein the user profile further indicates access levels, wherein the authentication challenge is defined at least in part by the access levels.
  - 5. The method of claim 1, wherein the authentication information includes:
    - authentication information associated with the user and received from the user; and
      
      authentication information associated with the first device and received from the first device.
  - 6. The method of claim 1, wherein the authentication information is received using one or more of a microphone, fingerprint scanner, camera, video camera, touch surface, keyboard, or motion sensor, wherein the authentication information includes at least one of biometric data, a password, a public key certification, or a personal identification number.
  - 7. The method of claim 1, wherein the first device is enabled with short-range communication capabilities, wherein the first device is one of an identification card, tablet computer, personal device monitor, or mobile device, wherein the second device is one of an automated transaction machine (“
    - ATM”
      
      ), tablet computer, desktop computer, mobile device, or laptop computer.
  - 8. The method of claim 1, wherein the method further comprises:
    - detecting that the first device is no longer within the detectable range of the second device; and
      
      in response to detecting that the first device is no longer within the detectable range of the second device, taking an action,wherein the action is one of logging the user off of the second device, locking the second device, or shutting down the second device.
  - 9. The method of claim 1, wherein the authentication information is used to verify the secure token.
  - 10. The method of claim 1, wherein the method further comprises:
    - submitting, to a third party, the secure token; and
      
      receiving, from the third party, verification of the secure token.

11. A non-transitory computer-readable storage medium containing a set of instructions that, when executed by one or more processors, cause a machine to:
- detect a first device associated with a user within a detectable range of a second device;
  
  request authentication information based on an authentication challenge indicated in a user profile associated with the first device;
  
  receive the authentication information;
  
  in response to receiving the authentication information, install a token generator on the second device;
  
  generate, by the token generator associated with the user, a secure token,wherein the token generator is stored on the second device;
  
  send, to a server, the secure token and a time stamp associated with the secure token; and
  
  grant, to the user, access to one or more services in response to receiving a verification of the secure token.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The non-transitory computer-readable storage medium of claim 11, wherein the user profile further indicates access levels, wherein the authentication challenge is defined at least in part by the access levels.
  - 13. The non-transitory computer-readable storage medium of claim 11, wherein the authentication information is used to verify the secure token.
  - 14. The non-transitory computer-readable storage medium of claim 11, wherein the set of instructions, when executed by the one or more processors, further causes the machine to:
    - submit, to a third party, the secure token; and
      
      receive, from the third party, verification of the secure token.
  - 15. The non-transitory computer-readable storage medium of claim 11, wherein the set of instructions, when executed by the one or more processors, further cause the machine to:
    - detect that the first device is no longer within the detectable range of the second device; and
      
      in response to detecting that the first device is no longer within the detectable range of the second device, take an action,wherein the action is one of logging the user off of the second device, locking the second device, or shutting down the second device.

16. A system comprising:
- a memory;
  
  a processor in communication with the memory, the processor operable to execute software modules, the software modules comprising;
  
  a detection module configured to;
  
  detect a first device associated with a user within a detectable range of a second device;
  
  an authentication request module configured to;
  
  request authentication information based on an authentication challenge indicated in a user profile associated with the first device,receive the authentication information,in response to receiving the authentication information, installing a token generator on the second device;
  
  generate, by the token generator associated with the user, a secure token,wherein the token generator is stored on the second device,send, to a server, the secure token and a time stamp associated with the secure token; and
  
  a logon module configured to;
  
  grant, to the user, access to one or more services in response to receiving a verification of the secure token.
- View Dependent Claims (17, 18)
- - 17. The system of claim 16, wherein the secure token is a one-time token.
  - 18. The system of claim 16, wherein the authentication information is used to verify the secure token.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
United Services Automobile Association
Original Assignee
United Services Automobile Association
Inventors
Mortensen, Maland Keith, Buckingham, Thomas Bret, Fernandez, Gabriel Carlos, Casillas, Debra Randall
Primary Examiner(s)
Murphy, J. Brant

Application Number

US16/402,079
Time in Patent Office

376 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/316   by observing the pattern of...

G06F 21/32   using biometric data, e.g. ...

G06F 21/35   communicating wirelessly

G06F 21/40   by quorum, i.e. whereby two...

G06F 2221/2111   Location-sensitive, e.g. ge...

Efficient logon

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

82 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Efficient logon

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

82 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links