TRUSTED STATUS TRANSFER BETWEEN ASSOCIATED DEVICES
First Claim
Patent Images
1. A method for authenticating a user device, comprising:
- verifying a trusted status for an associated user device, wherein the trusted status includes an existing authentication for the associated user device;
receiving data items from the associated user device and the user device, wherein the data items include an identification of the associated user device, an identification of the user device, and an indicator that the user device is associated with the associated user device;
evaluating the user device data items with the associated user device data items; and
facilitating an authentication of the user device when the evaluating returns a favorable result.
1 Assignment
0 Petitions
Accused Products
Abstract
The embodiments set forth systems and techniques to authenticate a user device for device services, such as by transferring or extending a trusted device status from a separate and trusted associated user device, which can be paired with the user device. This can be done automatically without requiring the user to sign in at or on behalf of the user device, and the automated process can include verifying a trusted status for the associated user device, receiving data items from both devices, evaluating the data items, and facilitating an authentication of the user device when the evaluating returns a favorable result. Data items can include provisioned machine identifiers, temporally limited one-time user passwords, and a provisioned password reset key. Authentication or trusted device status transfer can be achieved by way of an authentication token that is given to the user device.
18 Citations
20 Claims
-
1. A method for authenticating a user device, comprising:
-
verifying a trusted status for an associated user device, wherein the trusted status includes an existing authentication for the associated user device; receiving data items from the associated user device and the user device, wherein the data items include an identification of the associated user device, an identification of the user device, and an indicator that the user device is associated with the associated user device; evaluating the user device data items with the associated user device data items; and facilitating an authentication of the user device when the evaluating returns a favorable result. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system adapted to authenticate an electronic device for a user, the system comprising:
a processor configured to implement a device services manager that is configured to; verify a trusted status for an associated user device, wherein the trusted status includes an existing authentication for the associated user device; receive data items from both of the associated user device and the electronic device, wherein the associated user device data items include a unique associated user device machine identifier and a first one-time password, and the electronic device data items include a unique electronic device machine identifier and a second one-time password; evaluating the electronic device data items with the associated user device data items; generating an authentication token when the evaluating returns a favorable result; and sending the authentication token to the associated user device, wherein use of the authentication token by the electronic device extends the existing authentication for the associated user device to the electronic device when the associated user device provides the authentication token to the electronic device, such that the user is not required to sign in and authenticate manually on the added user device. - View Dependent Claims (15, 16, 17, 18, 19)
-
20. A non-transitory computer readable storage medium configured to store instructions that, when executed by a processor included in a computing device, cause the processor to implement a device services manager configured to authenticate an added user device by carrying out steps that include:
-
verifying a trusted status for an associated user device that is paired with the added user device, wherein the trusted status includes an existing authentication for the associated user device; receiving data items from both of the associated user device and the added user device, wherein the associated user device data items include a provisioned associated user device machine identifier, a first one-time password that is valid only for a set amount of time after it is formed, and a unique password reset key, and the added user device data items include a provisioned added user device machine identifier, and a second one-time password that is valid only for a set amount of time after it is formed; evaluating the data items, wherein the evaluating includes determining whether the second one-time password was formed while the first one-time password was still valid; and facilitating an authentication of the added user device by extending the trusted status for the associated user device to include the added user device when the evaluating returns a favorable result.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeApple Inc.
-
Original AssigneeApple Inc.
-
InventorsWILSON, James C., ALI, Lestat, ARROMRATANA, Aniwat
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current1/1
-
CPC Class CodesG06F 21/44 Program or device authentic...G06F 2221/2131 Lost password, e.g. recover...H04L 63/0807 using tickets, e.g. Kerbero...H04L 63/0838 using one-time-passwordsH04L 63/0846 using time-dependent-passwo...H04L 63/0853 using an additional device,...H04L 63/10 for controlling access to d...H04W 12/065 Continuous authenticationH04W 12/068 using credential vaults, e....
