Methods and systems for increasing the security of network-based transactions

US 8,595,808 B2
Filed: 12/16/2011
Issued: 11/26/2013
Est. Priority Date: 12/16/2011
Status: Active Grant

First Claim

Patent Images

1. A method for increasing the security of network-based transactions comprising:

determining, by a processor, an authentication data requirement based on a transaction requested to be conducted by a user and displaying the authentication data requirement on a mobile communications device, the authentication data requirement being at least a voice phrase that describes details of the requested transaction;

determining whether the displayed authentication data requirement agrees with an authentication data requirement anticipated by the user for the requested transaction; and

capturing authentication data from the user in accordance with the displayed authentication data requirement when the displayed authentication data requirement agrees with the anticipated authentication data requirement.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for enhancing the security of systems and resources involved in conducting network-based transactions on mobile communications devices includes comparing authentication data requested to be captured from a user as part of an authentication transaction against authentication data anticipated by the user to be captured during the authentication transaction. The method also includes authenticating the requested transaction when the user decides that the requested authentication data agrees with the anticipated authentication data, and conducting a network-based transaction from a mobile communications device, if the user is authorized, after successfully authenticating the identity of the user.

17 Citations

View as Search Results

19 Claims

1. A method for increasing the security of network-based transactions comprising:
- determining, by a processor, an authentication data requirement based on a transaction requested to be conducted by a user and displaying the authentication data requirement on a mobile communications device, the authentication data requirement being at least a voice phrase that describes details of the requested transaction;
  
  determining whether the displayed authentication data requirement agrees with an authentication data requirement anticipated by the user for the requested transaction; and
  
  capturing authentication data from the user in accordance with the displayed authentication data requirement when the displayed authentication data requirement agrees with the anticipated authentication data requirement.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. A method for increasing the security of network-based transactions in accordance with claim 1, further comprising:
    - determining whether authentication data received by the processor from the mobile communications device was captured live from the user; and
      
      comparing the received authentication data against user enrollment authentication data when the received authentication data was captured live from the user.
  - 3. A method for increasing the security of network-based transactions in accordance with claim 2, said determining whether authentication data received by the processor step comprising:
    - randomly selecting live-ness detection data with the processor;
      
      including the live-ness detection data in a capture request message; and
      
      determining that the received authentication data was captured live from the user when the live-ness detection data was executed when the received authentication data was captured.
  - 4. A method for increasing the security of network-based transactions in accordance with claim 1, further comprising determining that the user is authorized to conduct the requested transaction prior to conducting the requested transaction.
  - 5. A method for increasing the security of network-based transactions in accordance with claim 1, said determining whether the displayed authentication data requirement agrees with the anticipated authentication data requirement comprising recognizing a discrepancy between the displayed authentication data requirement and the anticipated authentication data requirement when details in the displayed authentication data requirement are different than details of the requested transaction.
  - 6. A method for increasing the security of network-based transactions in accordance with claim 1, further comprising cancelling the requested transaction when the displayed authentication data requirement disagrees with the anticipated authentication data requirement.
  - 7. A method for increasing the security of network-based transactions in accordance with claim 6, said cancelling step comprising activating a mobile communications device button to disapprove the requested transaction.
  - 8. A method for increasing the security of network-based transactions in accordance with claim 6, said cancelling step comprising refusing to capture authentication data.

9. A system for increasing the security of network-based transactions comprising:
- a mobile communications device configured to capture authentication data during authentication transactions and conduct network-based transactions;
  
  a service provider system including a database and being configured to control access to resources relating to users enrolled therein and to conduct network-based transactions; and
  
  an authentication system comprising an authentication database, said authentication system, said mobile communications device, and said service provider system being configured to communicate over a network, said authentication system being configured to store at least enrollment authentication data for users and live-ness detection data, determine authentication data requirements and live-ness detection data,include at least a determined authentication data requirement in a capture request message,transmit the capture request message to said mobile communications device which displays an authentication data requirement for the user to see, andauthenticate the user when the displayed authentication data requirement agrees with authentication data anticipated for a transaction requested by the user, the displayed authentication data requirement being at least a voice phrase describing the requested transaction details.
- View Dependent Claims (10, 11, 12, 13)
- - 10. A system for increasing the security of network-based transactions in accordance with claim 9, said mobile communications device comprising:
    - a smart phone;
      
      a tablet computer;
      
      a laptop computer;
      
      a personal computer;
      
      ora personal digital assistant.
  - 11. A system for increasing the security of network-based transactions in accordance with claim 9, said service provider system being further configured to:
    - determine a risk level for the requested transaction;
      
      include the risk level in an authentication message; and
      
      transmit the authentication message to said authentication system which determines the authentication data requirement based on the risk level.
  - 12. A system for increasing the security of network-based transactions in accordance with claim 9, said authentication system being further configured to:
    - determine an authentication data requirement for the requested transaction;
      
      randomly select live-ness detection data for the requested transaction; and
      
      determine that received authentication data was captured live from the user when the live-ness detection data was executed during the authentication transaction in which the received authentication data was captured.
  - 13. A system for increasing the security of network-based transactions in accordance with claim 9, said authentication system being further configured to determine that the displayed authentication data requirement was captured from the user while executing live-ness detection prior to authenticating the user.

14. A method for enhancing the security of systems and resources used for conducting network-based transactions comprising:
- comparing authentication data requested to be captured from a user during an authentication transaction against authentication data anticipated by the user to be captured during the authentication transaction;
  
  authenticating a transaction requested by the user when the user decides that the requested authentication data agrees with the anticipated authentication data, the requested authentication data being at least a voice phrase describing details of the requested transaction; and
  
  after successfully authenticating the user, conducting the requested transaction from a mobile communications device.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. A method for enhancing the security of systems and resources used for conducting network-based transactions in accordance with claim 14, further comprising determining that captured authentication data was captured live from the user prior to said conducting step.
  - 16. A method for enhancing the security of systems and resources used for conducting network-based transactions in accordance with claim 15, said determining step comprising:
    - transmitting, to a processor, authentication data captured as part of said authenticating step with live-ness detection data executed when capturing the authentication data; and
      
      determining that authentication data received by the processor was captured live from the user when the live-ness detection data was executed when the received authentication data was captured.
  - 17. A method for enhancing the security of systems and resources used for conducting network-based transactions in accordance with claim 14, further comprising determining, by a processor, whether the user is authorized to conduct the requested transaction before said conducting step.
  - 18. A method for enhancing the security of systems and resources used for conducting network-based transactions in accordance with claim 14, said authenticating the transaction step comprising:
    - capturing, by the mobile communications device, authentication data from the user in accordance with the requested authentication data; and
      
      transmitting the captured authentication data to a processor.
  - 19. A method for enhancing the security of systems and resources used for conducting network-based transactions in accordance with claim 14, said authenticating the user step comprising:
    - comparing user enrollment authentication data against authentication data captured from the user in accordance with the requested authentication data;
      
      generating a matching score for the comparison; and
      
      comparing the matching score against a threshold score and successfully authenticating the user when the matching score is at least equal to the threshold score.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Corporation DAON Technology
Original Assignee
Daon Holdings Limited
Inventors
Langley, Richard Jay
Primary Examiner(s)
Hoffman, Brandon
Assistant Examiner(s)
BROWN, ANTHONY D

Application Number

US13/328,080
Publication Number

US 20130160100A1
Time in Patent Office

711 Days
Field of Search

726/2, 726/4, 726/7, 726/21
US Class Current

726/7
CPC Class Codes

G06Q 20/322   Aspects of commerce using m...

G06Q 20/4016   involving fraud or risk lev...

H04L 2463/082   applying multi-factor authe...

H04L 63/0861   using biometrical features,...

H04L 63/0869   for achieving mutual authen...

H04L 63/126   the source of the received ...

H04L 63/1483   service impersonation, e.g....

H04W 12/06   Authentication

H04W 12/12   Detection or prevention of ...

H04W 12/67   Risk-dependent, e.g. select...

Methods and systems for increasing the security of network-based transactions

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

17 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for increasing the security of network-based transactions

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

17 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links