DUAL CODE AUTHENTICATION SYSTEM

US 20130139239A1
Filed: 11/29/2012
Published: 05/30/2013
Est. Priority Date: 11/29/2011
Status: Active Grant

First Claim

Patent Images

1. A method for verifying a user who is using a computing device to interact with a remote system, the method performed by a processor executing instructions stored in a memory, the method comprising:

receiving, from a user, a request submitted via a computing device to access a remote system;

performing a first stage of a user verification, wherein the first stage of the user verification includes;

transmitting a first transmitted verification code and a communication address to the user at the computing device;

receiving a first received verification code via the communication address; and

comparing the first transmitted verification code and the first received verification code; and

when the first transmitted verification code substantially matches the first received verification code, performing a second stage of the user verification, wherein the second stage of the user verification includes;

identifying an electronic address associated with the user;

transmitting a second transmitted verification code to the electronic address associated with the user;

receiving, from the user, a second received verification code submitted via the computing device;

comparing the second transmitted verification code and the second received verification code; and

verifying the user when the second transmitted verification code matches the second received verification code.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A verification method and system are disclosed that verify a user. The user is provided a verification code via, for example, a website, to be communicated to a provided electronic contact via a secondary mode of communication, such as through an SMS-enabled device. If the correct verification code is communicated by the user, the user receives a return message (e.g., a return SMS message) containing a second verification code, which the user submits to a website or on-line form or to another verification system for authentication.

24 Citations

View as Search Results

28 Claims

1. A method for verifying a user who is using a computing device to interact with a remote system, the method performed by a processor executing instructions stored in a memory, the method comprising:
- receiving, from a user, a request submitted via a computing device to access a remote system;
  
  performing a first stage of a user verification, wherein the first stage of the user verification includes;
  
  transmitting a first transmitted verification code and a communication address to the user at the computing device;
  
  receiving a first received verification code via the communication address; and
  
  comparing the first transmitted verification code and the first received verification code; and
  
  when the first transmitted verification code substantially matches the first received verification code, performing a second stage of the user verification, wherein the second stage of the user verification includes;
  
  identifying an electronic address associated with the user;
  
  transmitting a second transmitted verification code to the electronic address associated with the user;
  
  receiving, from the user, a second received verification code submitted via the computing device;
  
  comparing the second transmitted verification code and the second received verification code; and
  
  verifying the user when the second transmitted verification code matches the second received verification code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein:
    - receiving the first received verification code via the communication address includes receiving the first received verification code via a short message service (SMS) message; and
      
      identifying an electronic address associated with the user includes identifying an electronic address associated with a mobile device from which the SMS message is received.
  - 3. The method of claim 1, wherein:
    - identifying an electronic address associated with the user includes identifying an electronic address associated with a mobile device from which the first received verification code is received; and
      
      the method further includes comparing the electronic address to a stored electronic address associated with the user.
  - 4. The method of claim 1, wherein the request submitted via the computing device to access the remote system is part of a purchase transaction associated with a website.
  - 5. The method of claim 1, wherein transmitting the first transmitted verification code and the communication address to the user at the computing device includes transmitting a verification message instructing the user to submit the verification code via the communication address.
  - 6. The method of claim 1, wherein transmitting the second transmitted verification code to the electronic address associated with the user includes transmitting an SMS message that includes the second transmitted verification code to the electronic address associated with the user.
  - 7. The method of claim 1, wherein receiving, from the user, the request submitted via the computing device to access the remote system includes receiving information submitted by the user via a form of a website.
  - 8. The method of claim 1, wherein receiving, from the user, the second received verification code submitted via the computing device includes receiving the second received verification code via a field of a form of a website.
  - 9. The method of claim 1, wherein receiving, from the user, the request submitted via the computing device to access the remote system includes receiving login information.
  - 10. The method of claim 1, wherein the electronic address associated with the user is a phone number.

11. A system for verifying a user who is using a computing device to interact with a remote system, the system comprising:
- a memory storing computer-executable instructions of;
  
  a communication component configured to;
  
  receive, from a user, a request submitted via a computing device to access a remote system;
  
  transmit a first transmitted verification code and a communication address to the user at the computing device;
  
  receive a first received verification code via the communication address;
  
  when the first transmitted verification code substantially matches the first received verification code, transmit a second transmitted verification code to the electronic address associated with the user; and
  
  receive, from the user, the second received verification code submitted via the computing device;
  
  a verification code comparison component configured to;
  
  compare the first transmitted verification code and the first received verification code;
  
  compare the second transmitted verification code and the second received verification code; and
  
  verify the user when the second transmitted verification code matches the second received verification code; and
  
  a user analysis component configured to;
  
  identify an electronic address associated with the user; and
  
  a processor for executing the computer-executable instructions stored in the memory.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 12. The system of claim 11, wherein:
    - the communication component is further configured to receive the first received verification code via a short message service (SMS) message; and
      
      the user analysis component is further configured to identify an electronic address associated with a mobile device from which the SMS message is received.
  - 13. The system of claim 11, wherein:
    - the user analysis component is further configured to identify an electronic address associated with a mobile device from which the first received verification code is received; and
      
      the verification code comparison component is further configured to compare the electronic address to a stored electronic address associated with the user.
  - 14. The system of claim 11, wherein the request submitted via the computing device to access the remote system is part of a purchase transaction associated with a website.
  - 15. The system of claim 11, wherein first verification component is further configured to transmit the first transmitted verification code and the communication address to the user at the computing device in a verification message that instructs the user to submit the verification code using the communication address.
  - 16. The system of claim 11, wherein the communication component is further configured to transmit the second transmitted verification code via an SMS message to the electronic address associated with the user.
  - 17. The system of claim 11, wherein the communication component is further configured to receive information submitted by the user via a form of a website.
  - 18. The system of claim 11, wherein the communication component is further configured to receive the second received verification code via a field of a form of a website.
  - 19. The system of claim 11, wherein the communication component is further configured to receive login information as at least part of the request submitted via the computing device to access the remote system.
  - 20. The system of claim 11, wherein the electronic address associated with the user is a phone number.

21. A tangible computer-readable storage medium with instructions stored thereon that, when executed by a computing system, cause the computing system to perform a method that verifies a user using a computing device to interact with a remote system, the method comprising:
- receiving, from a user, a request submitted via a computing device to access a remote system;
  
  performing a first stage of a user verification, wherein the first stage of the user verification includes;
  
  transmitting a first transmitted verification code and a communication address to the user at the computing device;
  
  receiving a first received verification code via the communication address; and
  
  comparing the first transmitted verification code and the first received verification code; and
  
  when the first transmitted verification code substantially matches the first received verification code, performing a second stage of the user verification, wherein the second stage of the user verification includes;
  
  identifying an electronic address associated with the user;
  
  transmitting a second transmitted verification code to the electronic address associated with the user;
  
  receiving, from the user, a second received verification code submitted via the computing device;
  
  comparing the second transmitted verification code and the second received verification code; and
  
  verifying the user when the second transmitted verification code matches the second received verification code.
- View Dependent Claims (22, 23, 24)
- - 22. The tangible computer-readable storage medium of claim 21, wherein:
    - receiving the first received verification code via the communication address includes receiving the first received verification code via a short message service (SMS) message; and
      
      identifying an electronic address associated with the user includes identifying an electronic address associated with a mobile device from which the SMS message is received.
  - 23. The tangible computer-readable storage medium of claim 21, wherein:
    - identifying an electronic address associated with the user includes identifying an electronic address associated with a mobile device from which the first received verification code is received; and
      
      the method further comprises comparing the electronic address to a stored electronic address associated with the user.
  - 24. The tangible computer-readable storage medium of claim 21, wherein the request submitted via the computing device to access the remote system is part of a purchase transaction associated with a website.

25. A tangible computer-readable storage medium with instructions stored thereon that, when executed by a computing system, cause the computing system to perform a method that verifies a user using a computing device to interact with a remote system, the method comprising:
- receiving, from a user, information submitted by a user to a website via a form displayed on a webpage;
  
  performing a first stage of a user verification, wherein the first stage of the user verification includes;
  
  transmitting a first transmitted verification code and a communication address to the user at the computing device;
  
  receiving a first received verification code via the communication address; and
  
  comparing the first transmitted verification code and the first received verification code; and
  
  when the first transmitted verification code substantially matches the first received verification code, performing a second stage of the user verification, wherein the second stage of the user verification includes;
  
  identifying an electronic address associated with the user;
  
  transmitting a second transmitted verification code to the electronic address associated with the user;
  
  receiving, from the user, a second received verification code submitted via the computing device;
  
  comparing the second transmitted verification code and the second received verification code; and
  
  verifying the user when the second transmitted verification code matches the second received verification code.
- View Dependent Claims (26, 27, 28)
- - 26. The tangible computer-readable storage medium of claim 25, wherein:
    - receiving the first received verification code via the communication address includes receiving the first received verification code via a short message service (SMS) message; and
      
      identifying an electronic address associated with the user includes identifying an electronic address associated with a mobile device from which the SMS message is received.
  - 27. The tangible computer-readable storage medium of claim 25, wherein:
    - identifying an electronic address associated with the user includes identifying an electronic address associated with a mobile device from which the first received verification code is received; and
      
      the method further comprises comparing the electronic address to a stored electronic address associated with the user.
  - 28. The tangible computer-readable storage medium of claim 25, wherein transmitting the first transmitted verification code and the communication address to the user at the computing device includes transmitting a verification message instructing the user to submit the verification code via the communication address.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
TeleSign Corporation (Government of Belgium)
Original Assignee
TeleSign Corporation (Government of Belgium)
Inventors
Jillings, Steven H.

Granted Patent

US 8,973,109 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/12   Applying verification of th...

H04L 63/18   using different networks or...

DUAL CODE AUTHENTICATION SYSTEM

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

24 Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

DUAL CODE AUTHENTICATION SYSTEM

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

24 Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links