Authenticating a user of a system via an authentication image mechanism
First Claim
Patent Images
1. A mobile system comprising:
- a processor to execute instructions;
a manageability engine coupled to the processor and including a security processor to authenticate a user of the mobile system; and
a trusted storage associated with the manageability engine to store an authentication image and at least one authentication gesture associated with the authentication image, wherein the security processor is to generate a display frame image having the authentication image within a portion of the display frame image according to a set of random coordinates, provide the display frame image via a trusted channel to a display of the mobile system for display on the display, receive at least one gesture input value from the user based on the display frame image, and determine whether the user is authenticated based on the at least one gesture input value and the at least one authentication gesture, wherein the trusted channel is not visible to an operating system or an application executing on the mobile system.
3 Assignments
0 Petitions
Accused Products
Abstract
In an embodiment, the present invention includes a method for receiving a request for user authentication of a system, displaying an authentication image on a display of the system using a set of random coordinates, receiving a plurality of gesture input values from the user, and determining whether to authenticate the user based at least in part on the plurality of gesture input values. Other embodiments are described and claimed.
40 Citations
19 Claims
-
1. A mobile system comprising:
-
a processor to execute instructions; a manageability engine coupled to the processor and including a security processor to authenticate a user of the mobile system; and a trusted storage associated with the manageability engine to store an authentication image and at least one authentication gesture associated with the authentication image, wherein the security processor is to generate a display frame image having the authentication image within a portion of the display frame image according to a set of random coordinates, provide the display frame image via a trusted channel to a display of the mobile system for display on the display, receive at least one gesture input value from the user based on the display frame image, and determine whether the user is authenticated based on the at least one gesture input value and the at least one authentication gesture, wherein the trusted channel is not visible to an operating system or an application executing on the mobile system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method comprising:
-
receiving a request for user authentication of a system in a security engine of the system; preparing, in the security engine, a display frame image including an authentication image, the display frame image larger than the authentication image and the authentication image located with the display frame image using a set of random coordinates; providing the display frame image including the authentication image from the security engine to a display of the system via a trusted channel inaccessible to an operating system (OS) or an application executing on the system; displaying the display frame image on the display of the system; and receiving a plurality of gesture input values from the user, and determining whether to authenticate the user based at least in part on the plurality of gesture input values. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. At least one non-transitory machine-readable storage medium including instructions that when executed enable a computer to perform the following steps:
-
create a secure channel between the computer and a remote system to receive an authentication image in the computer; prepare the authentication image according to a first set of coordinates for display of the authentication image on a display of the computer to obtain at least one authentication gesture from a user viewing the authentication image; store the authentication image and the at least one authentication gesture associated with the authentication image in a trusted storage of the computer, wherein the authentication image is to be displayed on the display during a plurality of authorization challenges each according to a random and different set of coordinates than the first set of coordinates; and generate, via a security processor, a display frame image having the authentication image within a portion of the display frame image according to a random and different set of coordinates, provide the display frame image via a trusted channel to the display of the computer for display on the display, receive at least one gesture input value from the user based on the display frame image, and determine whether the user is authenticated based on the at least one gesture input value and the at least one authentication gesture, wherein the trusted channel is not visible to an operating system or an application executing on the computer. - View Dependent Claims (19)
-
Specification