Method of registering and authenticating a user of an online system
First Claim
1. A method of registering a new user of an online system comprising the steps of:
- creating a base grid for the user, the base grid comprising a re-creatable pseudo-randomized grid that is unique to the user;
receiving and confirming an input from a user comprising a passcode, wherein the passcode comprises an indication of an ordered set of cells in a generated grid, said generated grid comprising a plurality of cells each containing a character;
generating a passcode identifier from the passcode;
generating a grid salt for the user;
generating user identifying information for the user;
splitting the passcode identifier into k parts using a secret sharing algorithm wherein;
q of the k parts are required to regenerate the passcode identifier and k≥
q;
3=q;
a first part is assigned to be an X-SID and is stored in a first location in an array;
a second part is assigned to be a Y-SID and is stored in a second location in the array;
a third part is assigned to be a Z-SID and is stored in a third location; and
p of the k parts are discarded and p≥
0; and
whereina X-OTC and a Y-OTC are read from the base grid using the user'"'"'s passcode;
the X-OTC is used as an index for the first part in the array and the position of the first part in the array is returned as x-delta;
the Y-OTC is used as an index for the second part in the array; and
the position of the second part in the array is returned as y-delta;
the third part is stored with the user identifying information;
a user token comprising a version, a creation date, an expiry date, the grid salt, x-delta, y-delta, and Z-SID is generated; and
the user token is encrypted and passed back to the user for storage.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides a method of registering a new user of an online system is disclosed. A base grid is created. The user provides a passcode that includes an indication of an ordered set of cells a grid. A grid salt, user identifying information, and a passcode identifier is generated. The passcode identifier is then split into at least three parts using a secret sharing algorithm wherein three of the parts are required to regenerate the passcode identifier. First and second parts are stored in first and second locations in an array and a third part is stored in a third location with user identifying information. The first and second parts are indexed using X-OTC and Y-OTC. A user token containing the position of the first and second parts in the array is passed to the user.
7 Citations
7 Claims
-
1. A method of registering a new user of an online system comprising the steps of:
-
creating a base grid for the user, the base grid comprising a re-creatable pseudo-randomized grid that is unique to the user; receiving and confirming an input from a user comprising a passcode, wherein the passcode comprises an indication of an ordered set of cells in a generated grid, said generated grid comprising a plurality of cells each containing a character; generating a passcode identifier from the passcode; generating a grid salt for the user; generating user identifying information for the user; splitting the passcode identifier into k parts using a secret sharing algorithm wherein; q of the k parts are required to regenerate the passcode identifier and k≥
q;3=q; a first part is assigned to be an X-SID and is stored in a first location in an array; a second part is assigned to be a Y-SID and is stored in a second location in the array; a third part is assigned to be a Z-SID and is stored in a third location; and p of the k parts are discarded and p≥
0; and
whereina X-OTC and a Y-OTC are read from the base grid using the user'"'"'s passcode; the X-OTC is used as an index for the first part in the array and the position of the first part in the array is returned as x-delta; the Y-OTC is used as an index for the second part in the array; and the position of the second part in the array is returned as y-delta; the third part is stored with the user identifying information; a user token comprising a version, a creation date, an expiry date, the grid salt, x-delta, y-delta, and Z-SID is generated; and the user token is encrypted and passed back to the user for storage. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification