Authentication for network access related applications

US 9,391,967 B2
Filed: 12/28/2011
Issued: 07/12/2016
Est. Priority Date: 12/28/2011
Status: Expired due to Fees

First Claim

Patent Images

1. A controller comprising:

logic to;

receive an authentication request from a user for an authentication for access via user initiation of a login procedure;

receive, during the authentication, via a near field communication link with a data card, an identification packet generated by a remote authentication provider;

sign the identification packet to attest that the identification packet was securely received via the near field communication link and that the user authorized the authentication request;

transmit the identification packet to the remote authentication provider;

receive an authorization from the remote authentication provider, responsive to information in the identification packet;

after receipt of the authorization, retrieve from a local storage login information associated with the identification packet; and

implement the login procedure using the login information, to enable the user to access a network resource remotely coupled to the controller.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In one embodiment a controller comprises logic to receive, via a near field communication link, an identification packet generated by a remote authentication provider, associate an electronic signature with the identification packet, transmit the identification packet to a remote authentication provider, receive an authorization from the remote authentication provider, receive login information associated with the identification packet, and initiate a login procedure using the login information. Other embodiments may be described.

Citations

24 Claims

1. A controller comprising:
- logic to;
  
  receive an authentication request from a user for an authentication for access via user initiation of a login procedure;
  
  receive, during the authentication, via a near field communication link with a data card, an identification packet generated by a remote authentication provider;
  
  sign the identification packet to attest that the identification packet was securely received via the near field communication link and that the user authorized the authentication request;
  
  transmit the identification packet to the remote authentication provider;
  
  receive an authorization from the remote authentication provider, responsive to information in the identification packet;
  
  after receipt of the authorization, retrieve from a local storage login information associated with the identification packet; and
  
  implement the login procedure using the login information, to enable the user to access a network resource remotely coupled to the controller.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The controller of claim 1, wherein the logic comprises a near field wireless communication interface to communicate with a remote device.
  - 3. The controller of claim 1, further comprising logic to detect an initiation input signal.
  - 4. The controller of claim 3, wherein:
    - the identification packet comprises data associated with the data card issued by the remote authentication provider; and
      
      the initiation input signal is to be generated in response to the data card being within a predetermined physical proximity of the controller.
  - 5. The controller of claim 1, further comprising logic to create a secure communication channel between the controller and the remote authentication provider.
  - 6. The controller of claim 1, further comprising logic to obtain a transaction authorization from the user of the controller.
  - 7. The controller of claim 1, further comprising logic to provide a login credential to the network resource coupled to the controller.

8. An electronic device, comprising:
- a processor to execute an operating system which is to implement an untrusted computing environment; and
  
  a controller, comprising;
  
  a memory; and
  
  logic to;
  
  receive an authentication request from a user for an authentication for access via user initiation of a login procedure;
  
  receive, during the authentication, via a near field communication link with a data card, an identification packet generated by a remote authentication provider;
  
  sign the identification packet to attest that the identification packet was securely received via the near field communication link and that the user authorized the authentication request;
  
  transmit the identification packet to the remote authentication provider;
  
  receive an authorization from the remote authentication provider, responsive to information in the identification packet;
  
  after receipt of the authorization, retrieve from a local storage login information associated with the identification packet; and
  
  implement the login procedure using the login information, to enable the user to access a network resource remotely coupled to the controller.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The electronic device of claim 8, wherein the logic comprises a near field wireless communication interface to communicate with a remote device.
  - 10. The electronic device of claim 8, further comprising logic to detect an initiation input signal.
  - 11. The electronic device of claim 10, wherein:
    - the identification packet comprises data associated with the data card issued by the remote authentication provider; and
      
      the initiation input signal is to be generated in response to the data card being within a predetermined physical proximity of the controller.
  - 12. The electronic device of claim 8, further comprising logic to create a secure communication channel between the controller and the remote authentication provider.
  - 13. The electronic device of claim 8, further comprising logic to obtain a transaction authorization from the user of the controller.
  - 14. The electronic device of claim 8, further comprising logic to provide a login credential to the network resource.

15. A method, comprising:
- receiving, during an authentication for access, via a near field communication link with a data card, an identification packet generated by a remote authentication provider;
  
  associating an electronic signature with the identification packet;
  
  transmitting the identification packet to the remote authentication provider;
  
  receiving an authorization from the remote authentication provider, responsive to information in the identification packet;
  
  responsive to the authorization, retrieving login information associated with the identification packet in a host proxy of an electronic device from a local database; and
  
  initiating a login procedure using the login information, to enable the user to access a network resource remotely coupled to the electronic device.
- View Dependent Claims (16, 17, 18, 19)
- - 16. The method of claim 15, further comprising detecting an initiation input signal.
  - 17. The method of claim 16, wherein:
    - the identification packet comprises data associated with the data card issued by the remote authentication provider; and
      
      the initiation input signal is to be generated in response to the data card being within a predetermined physical proximity of the controller.
  - 18. The method of claim 15, further comprising creating a secure communication channel between a controller and the remote authentication provider.
  - 19. The method of claim 15, further comprising obtaining a transaction authorization from a user of a controller.

20. A computer program product comprising logic instructions stored on non-transitory computer readable medium which, when executed by a processor, configure the processor to:
- receive, during an authentication for access, via a near field communication link with a data card, an identification packet generated by a remote authentication provider;
  
  associate an electronic signature with the identification packet;
  
  transmit the identification packet to the remote authentication provider;
  
  receive an authorization from the remote authentication provider, responsive to information in the identification packet;
  
  responsive to the authorization, retrieve from a local storage login information associated with the identification packet in a host proxy of an electronic device from a local database; and
  
  initiate a login procedure using the login information, to enable the user to access a network resource remotely coupled to the electronic device.
- View Dependent Claims (21, 22, 23, 24)
- - 21. The computer program product of claim 20, further comprising logic instructions stored on non-transitory computer readable medium to implement a near field wireless communication interface to communicate with a remote device.
  - 22. The computer program product of claim 20, further comprising logic instructions stored on non-transitory computer readable medium to detect an initiation input signal.
  - 23. The computer program product of claim 22, wherein:
    - the identification packet comprises data associated with the data card issued by the remote authentication provider; and
      
      the initiation input signal is to be generated in response to the data card being within a predetermined physical proximity of a controller.
  - 24. The computer program product of claim 23, further comprising logic instructions stored on non-transitory computer readable medium to create a secure communication channel between the electronic device and the remote authentication provider.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Bakshi, Sanjay, Smith, Ned
Primary Examiner(s)
Hoffman, Brandon

Application Number

US13/976,191
Publication Number

US 20140259115A1
Time in Patent Office

1,658 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

G06Q 20/3224   Transactions dependent on l...

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/34   using cards, e.g. integrate...

G06Q 20/40145   Biometric identity checks

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0492   by using a location-limited...

H04L 63/08   for authentication of entit...

H04L 63/18   using different networks or...

H04L 9/3234   involving additional secure...

H04W 12/069   using certificates or pre-s...

Authentication for network access related applications

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication for network access related applications

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links