Multi-factor authentication using a unique identification header (UIDH)

  • US 8,763,101 B2
  • Filed: 05/22/2012
  • Issued: 06/24/2014
  • Est. Priority Date: 05/22/2012
  • Status: Active Grant
First Claim
Patent Images

1. A method, comprising:

  • receiving, by a first server device and from a user device, information associated with a request to receive a service from a second server device, the information including a unique identifier,the unique identifier being generated by encoding an identifier, received from the user device and associated with the user device, using a key;

    extracting, by the first server device, the unique identifier from the information associated with the request;

    retrieving, from a memory associated with the first server device, the identifier, associated with the user device, that corresponds to the unique identifier;

    performing, by the first server device, a first authentication operation to determine whether the identifier is trusted;

    determining, by the first server device, that the identifier is trusted based on performing the first authentication operation;

    determining, by the first server device and based on determining that the identifier is trusted, that the user device is a particular type of user device via which one or more other user devices, associated with two or more users, communicate;

    determining, by the first server device, to perform a second authentication operation to authenticate a user, of the user device, based on determining that the user device is the particular type of user device;

    transmitting, by the first server device, a request for user information to authenticate the user, based on determining to perform the second authentication operation;

    receiving, by the first server device, a response to the request for user information;

    determining, by the first server device, that the user is authenticated based on the response; and

    transmitting, by the first server device and to the second server device, a notification that indicates that the user is authenticated based on determining that the user is authenticated,the second server device providing the service to the user device based on the notification.

View all claims
    ×
    ×

    Thank you for your feedback

    ×
    ×