MULTIPLE USER AUTHENTICATIONS ON A COMMUNICATIONS DEVICE

US 20080313470A1
Filed: 06/15/2007
Published: 12/18/2008
Est. Priority Date: 06/15/2007
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for authenticating a user of a communications device, the method comprising:

receiving strong authentication credentials from a user;

upon determining that the strong authentication credentials is not associated with a biometric of the user,requesting input of a biometric characteristic from the user;

receiving a first biometric characteristic from the user;

associating the strong authentication credentials and the first biometric characteristic;

maintaining the strong authentication credentials and the first biometric characteristic on the communications device; and

authenticating the user using the strong authentication credentials.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A communications device provides a biometric reader to authenticate users onto the communications device based on a single biometric input. The communications device maintains a local copy of the strong authentication credentials, such as a user identification and password, and the biometrics which were previously input by users of the communications device. Then, rather than requiring re-entry of the strong authentication credentials to authenticate (or re-authenticate) these users onto the communications device, the communications device is able to authenticate the users based on the input of the appropriate biometric. When a biometric input is received, the communications device identifies the locally stored strong authentication credentials that is associated with the input biometric, and uses the locally stored strong authentication credentials to authenticate the user.

26 Citations

View as Search Results

20 Claims

1. A computer-implemented method for authenticating a user of a communications device, the method comprising:
- receiving strong authentication credentials from a user;
  
  upon determining that the strong authentication credentials is not associated with a biometric of the user,requesting input of a biometric characteristic from the user;
  
  receiving a first biometric characteristic from the user;
  
  associating the strong authentication credentials and the first biometric characteristic;
  
  maintaining the strong authentication credentials and the first biometric characteristic on the communications device; and
  
  authenticating the user using the strong authentication credentials.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein the first biometric characteristic is a fingerprint scan.
  - 3. The method of claim 1, wherein the first biometric characteristic is a retina scan.
  - 4. The method of claim 1, wherein the strong authentication credentials and the first biometric characteristic is maintained in volatile memory on the communications device.
  - 5. The method of claim 1 further comprising encrypting the first biometric characteristic.
  - 6. The method of claim 1, wherein the strong authentication credentials comprise a user identifier and a password.
  - 7. The method of claim 1, wherein authenticating the user comprises:
    - requesting log on to a server using the strong authentication credentials;
      
      upon successfully logging on, allowing use of the communications device; and
      
      upon unsuccessfully logging on, denying use of the communications device.
  - 8. The method of claim 1 further comprising:
    - receiving a second biometric characteristic;
      
      identifying strong authentication credentials associated with the second biometric characteristic; and
      
      authenticating the user using the strong authentication credentials associated with the second biometric characteristic.

9. A computer-readable media encoded with computer executable instructions for authenticating a user of a communications device, by a method comprising:
- maintaining a list of strong authentication credentials and, for each strong authentication credentials an associated biometric characteristic;
  
  receiving a biometric characteristic from a user; and
  
  upon determining the existence of strong authentication credentials associated with the received biometric characteristic, authenticating the user using the strong authentication credentials associated with the received biometric characteristic.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The computer-readable media of claim 9, wherein the list of strong authentication credentials and associated biometric characteristics is maintained in volatile memory.
  - 11. The computer-readable media of claim 9, wherein the strong authentication credentials in the list are encrypted.
  - 12. The computer-readable media of claim 9, wherein the biometric characteristics in the list are encrypted.
  - 13. The computer-readable media of claim 9, wherein the communication device is an IP telephone.
  - 14. The computer-readable media of claim 9, wherein the received biometric characteristic is a fingerprint scan.
  - 15. The computer-readable media of claim 9, wherein the received biometric characteristic is an eye scan.
  - 16. The computer-readable media of claim 9, wherein authenticating the user comprises:
    - requesting log on to a server using the strong authentication credentials in the list of authentication credentials that is associated with the received biometric characteristic;
      
      upon successfully logging on, allowing use of the communications device; and
      
      upon unsuccessfully logging on, denying use of the communications device.

17. One or more volatile computer memories collectively containing an authentication data structure, comprising:
- one or more strong authentication credentials and, for each strong authentication credentials a corresponding biometric characteristic,such that a user can be authenticated using strong authentication credentials from the authentication data structure that correspond to a biometric characteristic upon receiving the biometric characteristic from the user.
- View Dependent Claims (18, 19, 20)
- - 18. The computer memories of claim 17, wherein the strong authentication credentials comprise a user identifier and a password.
  - 19. The computer memories of claim 17, wherein the strong authentication credentials are encrypted.
  - 20. The computer memories of claim 17, wherein the biometric characteristics are encrypted.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Pall, Gurdeep S.

Granted Patent

US 8,914,847 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/183
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

H04L 9/32   including means for verifyi...

H04L 9/3231   Biological data, e.g. finge...

H04M 1/2535   adapted for voice communica...

H04M 1/67   by electronic means

MULTIPLE USER AUTHENTICATIONS ON A COMMUNICATIONS DEVICE

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

26 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

MULTIPLE USER AUTHENTICATIONS ON A COMMUNICATIONS DEVICE

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

26 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links