Accessing secure network areas by utilizing mobile-device authentication
First Claim
1. One or more non-transitory computer-readable media having computer-useable instructions embodied thereon for performing a method of verifying a user'"'"'s identity by leveraging a communications network'"'"'s network-authentication procedures upon the user attempting to access secure information, the method comprising:
- receiving at the communications network a request from a subscriber that maintains a website, wherein the request is communicated by the subscriber upon the user attempting to access a secured portion of the website, the secured portion of the website potentially providing the user online access to the secure information, wherein the website is configured to accept an input of a personal identifier from the user while attempting to access the secure information, and wherein the subscriber is configured to communicate the personal identifier to the communications network along with the request to verify the user;
upon receiving the request and recognizing the user via the personal identifier, employing resources at the communication network to validate a set of security credentials associated with the user, wherein validating includes performing a set of network-authentication procedures used by the communications network to verify the user'"'"'s identity by authenticating the user'"'"'s mobile device on the communications network, wherein the network-authentication procedures comprise;
(a) accessing a dial-in number that is pre-established in a profile associated with the subscriber, wherein the dial-in number residing within the profile is assigned to the subscriber for use in verifying the user;
(b) conveying the dial-in number to the user'"'"'s mobile device for entry therein; and
(c) upon entry of the conveyed dial-in number into the mobile device and placement of a call from the mobile device to the dial-in number, receiving the call from the mobile device at the communications network; and
upon completing the call at the communications network, communicating to the subscriber that the network-authentication procedures are satisfied, thereby granting the user access to the secured portion of the website.
7 Assignments
0 Petitions
Accused Products
Abstract
One or more media is provided for granting a user access to a secured portion of a website. Initially, a request to access is received from a user, where the request is typically composed of access information (e.g., user ID, password). Incident to receiving the request for access, a subscriber server initiates a request to validate a set of security credentials. One security credential may be a device identifier sent to a communications network in response to a user being conveyed a dial-in number. This device identifier may be extracted from a communication transmitted from the mobile device and validated by leveraging the communications network authentication procedure. Authentication is utilized to verify the identity of the user. Additional security credentials may also require satisfaction before granting a requesting user access. For instance, satisfaction may include comparing access information within a user request against the set of security credentials.
96 Citations
19 Claims
-
1. One or more non-transitory computer-readable media having computer-useable instructions embodied thereon for performing a method of verifying a user'"'"'s identity by leveraging a communications network'"'"'s network-authentication procedures upon the user attempting to access secure information, the method comprising:
-
receiving at the communications network a request from a subscriber that maintains a website, wherein the request is communicated by the subscriber upon the user attempting to access a secured portion of the website, the secured portion of the website potentially providing the user online access to the secure information, wherein the website is configured to accept an input of a personal identifier from the user while attempting to access the secure information, and wherein the subscriber is configured to communicate the personal identifier to the communications network along with the request to verify the user; upon receiving the request and recognizing the user via the personal identifier, employing resources at the communication network to validate a set of security credentials associated with the user, wherein validating includes performing a set of network-authentication procedures used by the communications network to verify the user'"'"'s identity by authenticating the user'"'"'s mobile device on the communications network, wherein the network-authentication procedures comprise; (a) accessing a dial-in number that is pre-established in a profile associated with the subscriber, wherein the dial-in number residing within the profile is assigned to the subscriber for use in verifying the user; (b) conveying the dial-in number to the user'"'"'s mobile device for entry therein; and (c) upon entry of the conveyed dial-in number into the mobile device and placement of a call from the mobile device to the dial-in number, receiving the call from the mobile device at the communications network; and upon completing the call at the communications network, communicating to the subscriber that the network-authentication procedures are satisfied, thereby granting the user access to the secured portion of the website. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. One or more non-transitory computer-readable media having computer-useable instructions embodied thereon for performing a method of providing a user access to digitally secured information by authenticating a mobile device, the method comprising:
-
receiving a request from a subscriber to verify the user'"'"'s attempt to access the digitally secured information maintained by the subscriber, the digitally secured information being information that requires validation of a set of security credentials associated with the user to access, wherein the request is generated upon the subscriber detecting the user attempting to access the digitally secured information via a user interface on a computing device; upon receiving the request at a communications-network server, performing a set of network-authentication procedures at the communications-network server, wherein the network-authentication procedures comprise; (a) accessing a dial-in phone number pre-established for the subscriber; (b) conveying the dial-in phone number to the subscriber for presentation to the user via the user interface of the computing device, wherein the presentation on the user interface prompts the user to enter the dial-in phone number into the mobile device; (c) upon entry of the conveyed phone dial-in number to the mobile device and placement of a call from the mobile device to the dial-in number, receiving the call at the communications-network server, wherein the call carries a device identifier communicated from the mobile device associated with the user; and (d) identifying the mobile device upon extracting the device identifier communicated to the communications-network server and upon matching the device identifier against stored user information; and initiating a communication to the subscriber to grant access to the digitally secured information upon the validation of the device identifier. - View Dependent Claims (14, 15, 16)
-
-
17. One or more non-transitory computer-readable media having computer-useable instructions embodied thereon for performing a method of granting website access to a user, the method comprising:
-
upon receiving an indication that the user is attempting to access the website, receiving at a communications network a request for authentication from the website maintained by a subscriber, wherein the user is attempting to access the website via a computing device over an Internet connection apart from the communications network, and wherein the request is conveyed from the subscriber; upon receiving at the communications network the request for authentication from the subscriber, transmitting from the communications network a message to a mobile device associated with the user; receiving the response at the communications network from the mobile device, wherein the response is automatically generated and conveyed upon the mobile device consuming the message; and incident to authenticating the mobile device on the communications network, providing an indication of validity from the communications network to the subscriber, wherein the indication of validity is employed by the subscriber to grant the user access to the website. - View Dependent Claims (18)
-
-
19. One or more non-transitory computer-readable media having computer-useable instructions embodied thereon for performing a method of granting website access to a user, the method comprising:
-
detecting that the user is attempting to access a secured portion of the website maintained by the subscriber, the secured portion of the website representing digitally secure information that requires validation of a set of security credentials associated with the user; causing a link to be presented on a user interface coupled to a computing device; recognizing a user-initiated selection of the link via the user interface; upon recognizing the user-initiated selection, sending a request to a communications network to validate the set of security credentials using a network-authentication procedure; receiving from the communications network a dial-in phone number that the user is to call using a mobile device associated with the user; presenting the dial-in phone number to the user at the user interface of the computing device, wherein entering the dial-in phone number to the mobile device starts the network-authentication procedure that determines whether the mobile device is authorized to utilize the communications network, wherein the mobile device is authenticated when the mobile device is allowed to reach a destination associated with the dial-in phone number, and wherein, upon authentication of the mobile device, the communications network creates a success indication that indicates that the mobile device was allowed to reach the destination associated with the dial-in phone number; receiving the success indication at the subscriber; and incident to receiving the success indication, granting the user access to the secured portion of the website.
-
Specification