Providing authentication using previously-validated authentication credentials
US-2015227725-A1 · Aug 13, 2015 · US
User authentication
US10423796B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10423796-B2 |
| Application number | US-201415515283-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 30, 2014 |
| Priority date | Sep 30, 2014 |
| Publication date | Sep 24, 2019 |
| Grant date | Sep 24, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
According to an example, to authenticate a user of a computing device, a user login request with at least one primary credential is received from a computing device. At least one primary credential is validated to authenticate the user, and a first device token is created and transmitted to the computing device. A secondary credential is received from the computing device, and a server token and a reference to the server token is created. The server token is encrypted and stored and the server token reference is sent to computing device for use in a subsequent authentication with the secondary credential.
First claim
Opening claim text (preview).
What is claimed is: 1. A method of authenticating a user of a computing device, comprising: receiving a user login request with at least one primary credential from a computing device; validating the at least one primary credential to authenticate the user; creating a first device token and transmitting the first device token to the computing device; receiving a secondary credential from the computing device; creating a server token and a server token reference; encrypting and storing the server token; and sending the server token reference to the computing device for use in a subsequent authentication with the secondary credential. 2. The method according to claim 1 , wherein the subsequent authentication comprises re-activating a previous authentication session. 3. The method according to claim 1 , further comprising receiving the server token reference and the secondary credential from the computing device, fetching the server token from the reference, decrypting the server token, creating a second device token, and transmitting the second device token to the computing device. 4. The method according to claim 1 , wherein the server token reference is stored on the computing device. 5. The method according to claim 1 , wherein encrypting the server token comprises using a key derived from a user input. 6. The method according to claim 5 , wherein the user input is the secondary credential. 7. The method according to claim 1 , wherein encrypting the server token comprises using a hash value of a user input and the server token reference. 8. The method according to claim 1 , further comprising associating the server token reference with a user identifier for display on the computing device. 9. A computing device comprising: a processor; a memory; and a network interface, wherein the memory comprises instructions executable by the processor to receive a login request and a credential for re-activating an authentication session from a user entered on the computing device and fetch a reference stored on the computing device to an encrypted server token, and wherein the network interface is to transmit the reference and the credential for re-activating an authentication session to a server for decryption, and wherein the network interface is to receive a device token from the server to re-activate an authentication session. 10. The computing device according to claim 9 , wherein the login request comprises a user identifier associated with the reference stored on the computing device to the encrypted server token. 11. The computing device according to claim 9 , wherein the network interface is to receive the device token from the server following decryption of the encrypted server token. 12. The computing device according to claim 9 , wherein the processor is to authenticate a session on the computing device using the device token. 13. The computing device according to claim 9 , further comprising a touch input device for selecting a user identifier associated with the reference to the encrypted server token stored on the computing device. 14. A non-transitory computer readable storage medium on which is embedded a computer program, said computer program to authenticate a user of a computing device, said computer program comprising a set of instructions executable by a processor: receive a first login request with a primary credential from a computing device; create a first device token and transmit the first device token to the computing device; receive a secondary credential from the computing device; create an encrypted server token and an encrypted server token reference; send the encrypted server token reference to the computing device; receive a second login request with the secondary credential and the encrypted server token reference from the computing device; fetch the server token from the encrypted server token reference and decrypt the server token, and transmit a second device token to the computing device to authenticate a user. 15. The non-transitory computer readable storage medium of claim 14 , wherein the secondary credential is a personal identification number.
Assignees
Inventors
Classifications
using biometric data, e.g. fingerprints, iris scans or voiceprints · CPC title
User authentication · CPC title
using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates H04L9/3263) · CPC title
- G06F21/33Primary
using certificates · CPC title
based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10423796B2 cover?
- According to an example, to authenticate a user of a computing device, a user login request with at least one primary credential is received from a computing device. At least one primary credential is validated to authenticate the user, and a first device token is created and transmitted to the computing device. A secondary credential is received from the computing device, and a server token an…
- Who is the assignee on this patent?
- Hewlett Packard Development Co
- What technology area does this patent fall under?
- Primary CPC classification G06F21/33. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Sep 24 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).