Patent•
Smart Device User Authentication
28 Feb 2011-
TL;DR: In this paper, an encoded acoustic signal is employed for authenticating a user to a web site hosted by a web server, where the smart phone securely communicates with an authentication server which informs the web server whether the user has been authenticated or not.
Abstract: Techniques for simplifying an authentication process from the viewpoint of a user while providing improved security to the many users currently employing no or weak security techniques. In logging into a web site hosted by a web server, a session begins by a user connecting and logging in with a device, such as a personal computer. Rather than a user name and password approach which is presently typical, the personal computer communicates with another user device, such as a smart phone. In one approach, an encoded acoustic signal is employed for this communication. The smart phone securely communicates with an authentication server which informs the web server whether the user has been authenticated or not.
Citations
More filters
Patent•
28 Mar 2013
TL;DR: In this paper, a user device transmits a login request to a service provider server, receives a random number from and transmits other information to an authentication server, which transmits the random number to a second user device, who transmits it to the authentication server.
Abstract: A user device transmits a login request. A provider server, receives a random number from and transmits other information to an authentication server. The provider server transmits the random number to the device. The random number is transferred to a second user device, which transmits it to the authentication server. The authentication server transmits provider authentication policy requirements and further transmits the other information to the second device. The second device transmits user validation information to the authentication server. The authentication server determines that the transmitted validation information corresponds to the service provider authentication policy requirements, compares the validation information with stored validation information for the user to authenticate the user. The second device transmits a message, including the random number and the other information, signed with a user credential to the authentication server. The authentication server transmits notice of authentication and the signed message to the provider server.
348 citations
Patent•
30 Aug 2013TL;DR: In this paper, a device includes a device body that includes a touch-sensitive display and a processor, and a band coupled to the device body and an optical sensor in or on the band.
Abstract: In one embodiment, a device includes a device body that includes a touch-sensitive display and a processor. The device also includes a band coupled to the device body and an optical sensor in or on the band. The optical sensor faces outward from the band and captures images. The processor communicates with the optical sensor to process captured images.
309 citations
Patent•
20 Mar 2014
TL;DR: In this paper, a system, apparatus, method, and machine readable medium are described for performing advanced authentication techniques and associated applications, and one embodiment of such a method comprises: receiving a policy identifying a set of acceptable authentication capabilities, determining a client authentication capabilities; and filtering the set of allowable authentication capabilities based on the determined set of client authentication capability to arrive at a filtered set of one or more authentication capabilities for authenticating a user.
Abstract: A system, apparatus, method, and machine readable medium are described for performing advanced authentication techniques and associated applications. For example, one embodiment of a method comprises: receiving a policy identifying a set of acceptable authentication capabilities; determining a set of client authentication capabilities; and filtering the set of acceptable authentication capabilities based on the determined set of client authentication capabilities to arrive at a filtered set of one or more authentication capabilities for authenticating a user of the client.
279 citations
Patent•
08 Mar 2012
TL;DR: In this paper, the authentication seeker or system user scans a multi-dimensional barcode or another like encoding mechanism and validates the client and triggers the out of band outbound mechanism.
Abstract: Systems and methods of authentication according to the invention are provided comprising a user, a service client, a service server, a portable communications device and an authentication server, wherein the method comprises use of one time passwords and out-of-band outbound communication channels. This system gives access to authentication seekers based on OTP out of band outbound authentication mechanism. The authentication seeker or system user scans a multi-dimensional barcode or another like encoding mechanism and validates the client and triggers the out of band outbound mechanism. The portable mobile device invokes the client server to request authentication. The client server authenticates the user based on a shared secret key and the user is automatically traversed to the next page.
252 citations
Patent•
20 Nov 2013TL;DR: In this article, a transition from a first screen to a second screen of a graphical user interface is described, and visual transition effects are applied to the transition between the two screens.
Abstract: In one embodiment, an apparatus includes one or more processors and a memory coupled to the processors that includes instructions executable by the processors. When executing the instructions, the processors present on a display of the apparatus a first screen of a graphical user interface. The first screen includes one or more first elements. The processors receive user input indicating a transition in the graphical user interface and, in response to the user input, transition from the first screen to a second screen of the graphical user interface and apply one or more visual transition effects to the transition. The second screen includes one or more second elements.
239 citations
References
More filters
Patent•
09 Sep 2008TL;DR: In this paper, an electronic device with a display and a fingerprint sensor may authenticate a user for a respective function by displaying a graphical element on the display, the graphical element indicating a first direction of finger movement that enables unlocking of the respective function.
Abstract: An electronic device with a display and a fingerprint sensor may authenticate a user for a respective function. While a respective function of the device is in a locked state, the device displays a graphical element on the display, the graphical element indicating a first direction of finger movement that enables unlocking of the respective function. While displaying the graphical element, the device detects an input that includes movement of a finger in the first direction over the fingerprint sensor and determines whether the input meets unlock criteria based at least in part on fingerprint information of the finger detected by the fingerprint sensor during the input. In accordance with a determination that the input meets the unlock criteria, the device unlocks the respective function; and in accordance with a determination that the input does not meet the unlock criteria, the device maintains the respective function in the locked state.
575 citations
Patent•
05 Aug 2009TL;DR: In this article, a method of authenticating users to reduce transaction risks includes indicating a desire to conduct a transaction and determining whether the transaction requires access to protected resources, and the method determines whether inputted information is known, determines a state of a communications device when the inputted Information is known and transmits a biometric authentication request from a server to an authentication system when the state of the communications device is enrolled.
Abstract: A method of authenticating users to reduce transaction risks includes indicating a desire to conduct a transaction and determining whether the transaction requires access to protected resources. Moreover, the method determines whether inputted information is known, determines a state of a communications device when the inputted information is known, and transmits a biometric authentication request from a server to an authentication system when the state of the communications device is enrolled. Additionally, the method includes validating the communications device, capturing biometric authentication data in accordance with a biometric authentication data capture request with the communications device, biometrically authenticating the user, generating a one-time pass-phrase and storing the one-time pass-phrase on the authentication system when the user is authenticated, comparing the transmitted one-time pass-phrase against the stored one-time pass-phrase, and granting access to the protected resources when the transmitted and stored one-time pass-phrases match.
267 citations
Patent•
02 Apr 2009
TL;DR: In this paper, the authors described transaction systems and methods for mobile telephone devices described herein allow a mobile telephone to participate in payment transactions in a manner that helps prevent identify theft and without relying on transferring amounts to/from one stored value account to another.
Abstract: Techniques are disclosed for a mobile telephone, in conjunction with a payment transaction server, to be used directly as a payment device for a variety of financial transactions. Further, the transaction systems and methods for mobile telephone devices described herein allow a mobile telephone to participate in payment transactions in a manner that helps prevent identify theft and without relying on transferring amounts to/from one stored value account to another.
133 citations
Patent•
31 Jul 2000
TL;DR: In this article, the authors described a number of encoders for encoding a data signal within an audio signal, where the data signal is separated into a tonal part and a residual part.
Abstract: There is described a number of encoders for encoding a data signal within an audio signal. In some of the encoders, the audio signal is separated into a tonal part and a residual part, and the data signal is shaped based on the residual part. In other encoders, the data signal is separated into a tonal part and a residual part, and the data signal is combined with the audio signal independence upon the residual part. In other encoders, the rate at which the data is encoded within the audio signal is varied in dependence upon the audio signal. There are also described various decoders associated with the described encoders.
98 citations
Patent•
02 Oct 2006
TL;DR: In this article, a user authentication system consisting of a user terminal, a mobile phone, a password issuing unit, and a service providing unit is presented, which is capable of maintaining high-level security and of reducing a user's load of operations necessary for login.
Abstract: A user authentication system capable of maintaining high-level security and of reducing a user's load of operations necessary for login is provided. The user authentication system includes a user terminal, a mobile phone, a password issuing unit, and a service providing unit. When a user accesses the system via the user terminal, the service providing unit encodes connection information of the password issuing unit into a code, and sends the encoded code to the user terminal. The mobile phone decodes the code displayed on the user terminal, and accesses the password issuing unit using the connection information. The password issuing unit generates a one-time password, and sends the one-time password to the service providing unit and also to the mobile phone. The user terminal sends the one-time password displayed on the mobile phone and user identification information to the service providing unit. When the service providing unit determines that the two one-time passwords each sent from the user terminal and the password issuing unit are identical, the service providing unit permits the access of the user via the user terminal.
78 citations