Authentication mechanisms to enable sharing personal information via a networked computer system

US 8,589,440 B1
Filed: 04/19/2011
Issued: 11/19/2013
Est. Priority Date: 01/07/2000
Status: Expired due to Fees

First Claim

Patent Images

1. A method of sharing a first party'"'"'s information with a second party based on multi-factor authentication, the method comprising the following steps performed by a server computer:

establishing an account for a first party;

storing one or more information objects in the first party'"'"'s account;

receiving a first request to access one or more information objects stored in the first party'"'"'s account from a second party, the first request accompanying a first authentication mechanism and a second authentication mechanism; and

enabling access by the second party to the one or more information objects stored in the first party'"'"'s account if the first request is authenticated under the first authentication mechanism and the second authentication mechanism, whereby the second party accesses the one or more information objects authorized by the first party.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

System, method and apparatus having the capability of using various authentication mechanisms to share a first party'"'"'s (user'"'"'s) personal information stored in a server computer connected to the Internet with a second party (requester). The authentication mechanisms may include a biometric identifier, a single-use password, an expiration time on a password, or permit a second party (requester) to access authorized portions of a first party'"'"'s (user'"'"'s) credit/debit card information or likes or dislikes or personal health information from an online database. Also disclosed is a method of providing access to a first party'"'"'s information using an authentication code that is valid for a predetermined number of access requests and attempting to access the first party'"'"'s information beyond the predetermined number raises an alarm.

88 Citations

View as Search Results

39 Claims

1. A method of sharing a first party'"'"'s information with a second party based on multi-factor authentication, the method comprising the following steps performed by a server computer:
- establishing an account for a first party;
  
  storing one or more information objects in the first party'"'"'s account;
  
  receiving a first request to access one or more information objects stored in the first party'"'"'s account from a second party, the first request accompanying a first authentication mechanism and a second authentication mechanism; and
  
  enabling access by the second party to the one or more information objects stored in the first party'"'"'s account if the first request is authenticated under the first authentication mechanism and the second authentication mechanism, whereby the second party accesses the one or more information objects authorized by the first party.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, wherein the first authentication mechanism or the second authentication mechanism includes an authorization key that can be used a pre-determined number of times.
  - 3. The method of claim 1, wherein the first authentication mechanism or the second authentication mechanism includes a one-time-use authorization key.
  - 4. The method of claim 1, wherein the first authentication mechanism or the second authentication mechanism includes an authorization key that expires after a predetermined time.
  - 5. The method of claim 1, wherein the first authentication mechanism or the second authentication mechanism includes trustworthiness of a requester.
  - 6. The method of claim 1, wherein the first authentication mechanism or the second authentication mechanism includes a biometric authorization key.
  - 7. The method of claim 1, wherein first authentication mechanism or the second authentication mechanism includes (a) retina scan, (b) speech sample, (c) finger print, or (d) DNA information.
  - 8. The method of claim 1, wherein the first authentication mechanism or the second authentication mechanism includes a first code enabling access to specified category of information objects.
  - 9. The method of claim 8, wherein the first code enables the requester to obtain only the first party'"'"'s credit card or debit card information.
  - 10. The method of claim 8, wherein the first code enables the requester to obtain only the first party'"'"'s financial information.
  - 11. The method of claim 8, wherein the first code enables the requester to obtain only the first party'"'"'s personal likes and dislikes.
  - 12. The method of claim 8, wherein the first code enables the requester to obtain only the first party'"'"'s health information.
  - 13. The method of claim 8, wherein the first code enables the requester to obtain only the first party'"'"'s employment information.
  - 14. The method of claim 8, wherein the first code enables the requester to obtain only the first party'"'"'s travel preferences.

15. A server computer system configured to share a first party'"'"'s personal information with a second party comprising:
- a processor,a memory, the memory coupled to the processor,wherein the memory is configured to provide the processor with instructions which when executed cause the processor to;
  
  establish an account for a first party;
  
  store one or more information objects in the first party'"'"'s account;
  
  receive from a second party a first request to access one or more information objects stored in the first party'"'"'s account, said first request accompanying a first authentication mechanism and a second authentication mechanism; and
  
  enable access to the one or more information objects stored in the first party'"'"'s account if the first request is authenticated under the first authentication mechanism and the second authentication mechanism, whereby the second party accesses the one or more information objects authorized by the first party.

16. A method of using a an N-time (N, where N≧
- 1) authorization key to access a first party'"'"'s information stored in the first party'"'"'s account established on a server computer, said method comprising the following steps performed on the server computer;
  
  receiving a request from a requester to access a first portion of the first party'"'"'s information, said request including;
  
  the requester'"'"'s identification information,the first party'"'"'s identification information;
  
  an authentication code, said authentication code being configured to be used a predetermined number (N, where N≧
  
  1) of times to access the first portion of the first party'"'"'s information; and
  
  enabling the requester to access the first portion of the first party'"'"'s information if the number (n) of times the request is made using the authorization code does not exceed N.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The method of claim 16, further comprising the step of:
    - generating an alarm condition if the number (n) of times a request is made by the requester for the first party'"'"'s information exceeds N.
  - 18. The method of claim 16, wherein the first portion of the party'"'"'s information is the first party'"'"'s credit card information, debit card information, personal health record, medical information, employment information, or personal preferences.
  - 19. The method of claim 16, further comprising the steps of:
    - associating each of a plurality of portions of information in the first party'"'"'s account with an identifier, each said identifier being used to enable selection of a specific portion of the first party'"'"'s information.
  - 20. The method of claim 16,wherein the authentication code includes biometric information, an indication of trustworthiness of the requester, an address from which a request is received, a processor identifier of the requester computer, or time and/or date of the request.

21. A non-transitory computer-readable storage medium storing program code for causing a server computer to perform a method of sharing a first party'"'"'s information with a second party based on multi-factor authentication, the method comprising the following steps performed on the server computer:
- establishing an account for a first party;
  
  storing one or more information objects in the first party'"'"'s account;
  
  receiving a first request to access one or more information objects stored in the first party'"'"'s account from a second party, the first request accompanying a first authentication mechanism and a second authentication mechanism; and
  
  enabling access by the second party to the one or more information objects stored in the first party'"'"'s account if the first request is authenticated under the first authentication mechanism and the second authentication mechanism, whereby the second party accesses the one or more information objects authorized by the first party.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
- - 22. The non-transitory computer-readable storage medium storing program code as in claim 21, wherein the first authentication mechanism or the second authentication mechanism includes an authorization key that can be used a pre-determined number of times.
  - 23. The non-transitory computer-readable storage medium storing program code as in claim 21, wherein the first authentication mechanism or the second authentication mechanism includes a one-time-use authorization key.
  - 24. The non-transitory computer-readable storage medium storing program code as in claim 21, wherein the first authentication mechanism or the second authentication mechanism includes an authorization key that expires after a predetermined time.
  - 25. The non-transitory computer-readable storage medium storing program code as in claim 21, wherein the first authentication mechanism or the second authentication mechanism includes trustworthiness of a requester.
  - 26. The non-transitory computer-readable storage medium storing program code as in claim 21, wherein the first authentication mechanism or the second authentication mechanism includes a biometric authorization key.
  - 27. The non-transitory computer-readable storage medium storing program code as in claim 21, wherein first authentication mechanism or the second authentication mechanism includes (a) retina scan, (b) speech sample, (c) finger print, or (d) DNA information.
  - 28. The non-transitory computer-readable storage medium storing program code as in claim 21, wherein the first authentication mechanism or the second authentication mechanism includes a first code enabling access to specified category of information objects.
  - 29. The non-transitory computer-readable storage medium storing program code as in claim 28, wherein the first code enables the requester to obtain only the first party'"'"'s credit card or debit card information.
  - 30. The non-transitory computer-readable storage medium storing program code as in claim 28, wherein the first code enables the requester to obtain only the first party'"'"'s financial information.
  - 31. The non-transitory computer-readable storage medium storing program code as in claim 29, wherein the first code enables the requester to obtain only the first party'"'"'s personal likes and dislikes.
  - 32. The non-transitory computer-readable storage medium storing program code as in claim 28, wherein the first code enables the requester to obtain only the first party'"'"'s health information.
  - 33. The non-transitory computer-readable storage medium storing program code as in claim 28, wherein the first code enables the requester to obtain only the first party'"'"'s employment information.
  - 34. The non-transitory computer-readable storage medium storing program code as in claim 28, wherein the first code enables the requester to obtain only the first party'"'"'s travel preferences.

35. A non-transitory computer-readable storage medium storing program code for causing a server computer to perform a method of an N-time (N, where N≧
- 1) authorization key to access a first party'"'"'s information stored in the first party'"'"'s account established on a server computer, said method comprising the following steps performed on the server computer;
  
  receiving a request from a requester to access a first portion of the first party'"'"'s information, said request including;
  
  the requester'"'"'s identification information,the first party'"'"'s identification information;
  
  an authentication code, said authentication code being configured to be used a predetermined number (N, where N≧
  
  1) of times to access the first portion of the first party'"'"'s information; and
  
  enabling the requester to access the first portion of the first party'"'"'s information if the number (n) of times the request is made using the authorization code does not exceed N.
- View Dependent Claims (36, 37, 38, 39)
- - 36. The non-transitory computer-readable storage medium storing program code as in claim 35, the program code further configured to perform the step of:
    - generating an alarm condition if the number (n) of times a request is made by the requester for the first party'"'"'s information exceeds N.
  - 37. The non-transitory computer-readable storage medium storing program code as in claim 35,wherein the first portion of the party'"'"'s information is the first party'"'"'s credit card information, debit card information, personal health record, medical information, employment information, or personal preferences.
  - 38. The non-transitory computer-readable storage medium storing program code as in claim 35, the program code further configured to perform the step of:
    - associating each of a plurality of portions of information in the first party'"'"'s account with an identifier, each said identifier being used to enable selection of a specific portion of the first party'"'"'s information.
  - 39. The non-transitory computer-readable storage medium storing program code as in claim 35, wherein the authentication code includes biometric information, an indication of trustworthiness of the requester, an address from which a request is received, a processor identifier of the requester computer, or time and/or date of the request.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Web 2.0 Technologies LLC
Original Assignee
Pennar Software Corporation
Inventors
Chaganti, Sitapathi Rao, Chaganti, Damayanti, Chaganti, Naren
Primary Examiner(s)
LEROUX, ETIENNE PIERRE

Application Number

US13/090,066
Time in Patent Office

945 Days
Field of Search

707/2, 707/3, 707/783, 705/64, 709/204, 713/184, 340/5.74
US Class Current

707/783
CPC Class Codes

G06F 21/6218   to a system of files or obj...

G16H 10/60   for patient-specific data, ...

G16Z 99/00   Subject matter not provided...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/105   Multiple levels of security

H04L 67/306   User profiles

H04L 69/329   in the application layer [O...

H04L 9/40   Network security protocols

Y10S 707/99939   Privileged access

Authentication mechanisms to enable sharing personal information via a networked computer system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

88 Citations

39 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication mechanisms to enable sharing personal information via a networked computer system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

88 Citations

39 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links