Method for secure user and transaction authentication and risk management
US-10284549-B2 · May 7, 2019 · US
Single use passcode authentication
US10893041B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10893041-B2 |
| Application number | US-201816156117-A |
| Country | US |
| Kind code | B2 |
| Filing date | Oct 10, 2018 |
| Priority date | Oct 10, 2018 |
| Publication date | Jan 12, 2021 |
| Grant date | Jan 12, 2021 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
According to aspects of the present disclosure, a computer-implemented method includes generating, by a host processing system, a single use authentication map to map a private set of characters to a public set of characters. The method further includes transmitting, by the host processing system, the single use authentication map to a user processing system that presents an authentication interface comprising the public set of characters to enable a user to enter a user passcode using the public set of characters. The user processing system encodes the user passcode into a single use passcode using the single use authentication map. The method further includes the host processing system receiving the single use passcode from the user processing system, decoding the single use passcode back the user passcode using the single use authentication map, and determining whether the user passcode matches an expected passcode.
First claim
Opening claim text (preview).
What is claimed is: 1. A computer-implemented method for single use passcode authentication, the method comprising: generating, by a host processing system, a single use authentication map to map a private set of characters to a public set of characters; transmitting, by the host processing system, the single use authentication map to a user processing system, the user processing system presenting an authentication interface comprising the public set of characters to a user to enable the user to enter a user passcode using the public set of characters, the user processing system encoding the user passcode into a single use passcode based at least in part on the single use authentication map; receiving, by the host processing system, the single use passcode from the user processing system; decoding, by the host processing system, the single use passcode back into the user passcode based at least in part on the single use authentication map; determining, by the host processing system, whether the user passcode matches an expected passcode; and responsive to determining that the user passcode does not match the expected passcode, generating, by the host processing system, a second single use authentication map to map a second private set of characters to the public set of characters, the second single use authentication map differing from the single use authentication map. 2. The computer-implemented method of claim 1 further comprising, responsive to determining that the user passcode matches the expected passcode, authorizing, by the host processing system, the user processing system to access a restricted resource. 3. The computer-implemented method of claim 1 further comprising, responsive to determining that the user passcode does not match the expected passcode, denying the user processing system access to a restricted resource. 4. The computer-implemented method of claim 1 further comprising, responsive to determining that the user passcode matches the expected passcode, generating, by the host processing system, a second single use authentication map to map a second private set of characters to the public set of characters, the second single use authentication map differing from the single use authentication map. 5. The computer-implemented method of claim 1 further comprising: transmitting, by the host processing system, the second single use authentication map to the user processing system, the user processing system presenting the authentication interface comprising the public set of characters to the user to enable the user to enter the user passcode using the public set of characters, the user processing system encoding the user passcode into a second single use passcode based at least in part on the second single use authentication map; receiving, by the host processing system, the second single use passcode from the user processing system; decoding, by the host processing system, the second single use passcode back the user passcode based at least in part on the second single use authentication map; and determining, by the host processing system, whether the user passcode matches the expected passcode. 6. The computer-implemented method of claim 1 , wherein the private set of characters is a first set of numbers, and wherein the public set of characters is a second set of numbers. 7. The computer-implemented method of claim 1 , wherein the private set of characters is a set of numbers, and wherein the public set of characters is a set of letters. 8. The computer-implemented method of claim 1 , wherein the private set of characters is a first set of letters, and wherein the public set of characters is a second set of letters. 9. The computer-implemented method of claim 1 , wherein at least one character of the private set of characters differs from at least one character of the public set of characters. 10. A system comprising: a memory comprising computer readable instructions; and a processing device for executing the computer readable instructions for performing a method for single use passcode authentication, the method comprising: generating, by a host processing system, a single use authentication map to map a private set of characters to a public set of characters; transmitting, by the host processing system, the single use authentication map to a user processing system, the user processing system presenting an authentication interface comprising the public set of characters to a user to enable the user to enter a user passcode using the public set of characters, the user processing system encoding the user passcode into a single use passcode based at least in part on the single use authentication map; receiving, by the host processing system, the single use passcode from the user processing system; decoding, by the host processing system, the single use passcode back into the user passcode based at least in part on the single use authentication map; determining, by the host processing system, whether the user passcode matches an expected passcode; and responsive to determining that the user passcode does not match the expected passcode, generating, by the host processing system, a second single use authentication map to map a second private set of characters to the public set of characters, the second single use authentication map differing from the single use authentication map. 11. The system of claim 10 , wherein the method further comprises, responsive to determining that the user passcode matches the expected passcode, authorizing, by the host processing system, the user processing system to access a restricted resource. 12. The system of claim 10 , wherein the method further comprises, responsive to determining that the user passcode does not match the expected passcode, denying the user processing system access to a restricted resource. 13. The system of claim 10 , wherein the method further comprises, responsive to determining that the user passcode matches the expected passcode, generating, by the host processing system, a second single use authentication map to map a second private set of characters to the public set of characters, the second single use authentication map differing from the single use authentication map. 14. The system of claim 10 , wherein the method further comprises: transmitting, by the host processing system, the second single use authentication map to the user processing system, the user processing system presenting the authentication interface comprising the public set of characters to the user to enable the user to enter the user passcode using the public set of characters, the user processing system encoding the user passcode into a second single use passcode based at least in part on the second single use authentication map; receiving, by the host processing system, the second single use passcode from the user processing system; decoding, by the host processing system, the second single use passcode back the user passcode based at least in part on the second single use authentication map; and determining, by the host processing system, whether the user passcode matches the expected passcode. 15. The system of claim 10 , wherein the private set of characters is a first set of numbers, and wherein the public set of characters is a second set of numbers. 16. The system of claim 10 , wherein the private set of characters is a set of numbers, and wherein the public set of characters is a set of letters. 17. The system of claim 10 , wherein the private set of characters is a first set of letters, and wher
Assignees
Inventors
Classifications
- H04L63/0838Primary
using one-time-passwords · CPC title
for controlling access to devices or network resources · CPC title
in which an application is distributed across nodes in the network (software deployment G06F8/60; multiprogramming arrangements G06F9/46) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10893041B2 cover?
- According to aspects of the present disclosure, a computer-implemented method includes generating, by a host processing system, a single use authentication map to map a private set of characters to a public set of characters. The method further includes transmitting, by the host processing system, the single use authentication map to a user processing system that presents an authentication inte…
- Who is the assignee on this patent?
- IBM
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0838. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jan 12 2021 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 5 related publications on this page (citations in our corpus or others sharing the same primary CPC).