Proximity-based user authentication for providing a webpage of an access-controlled application
US-2019332787-A1 · Oct 31, 2019 · US
Secure authentication
US12008096B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12008096-B2 |
| Application number | US-202318350044-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 11, 2023 |
| Priority date | Jul 7, 2021 |
| Publication date | Jun 11, 2024 |
| Grant date | Jun 11, 2024 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Methods and systems are disclosed herein for authenticating a user. A security device may use an object associated with a user and a device of the user to authenticate the user, for example, if the user has forgotten a password. A user may insert the object (e.g., a card, or other object) into the security device and may select an option to authenticate via a device that is trusted by both the security device and the user, rather than authenticating by entering a password at the security device.
First claim
Opening claim text (preview).
What is claimed is: 1. A security device for authenticating users in physical proximity of the security device, the security device comprising: one or more processors and computer program instructions that, when executed by the one or more processors, cause operations comprising: detecting a user interaction with the security device, the user interaction corresponding to a profile associated with a user, the profile indicating one or more devices as potential devices for authenticating the user with the security device; generating for display, based on the user interaction, a presentation of the one or more devices indicated by the profile associated with the user; wirelessly broadcasting, based on a first device of the one or more devices being within a threshold distance of the security device, via a wireless personal area network (WPAN), a first access code to an environment surrounding the security device; sending, to a server system, an identification of the first device and a command that causes the server system to send a notification to the first device; and in response to receiving a second access code within a threshold amount of time after wirelessly broadcasting the first access code via the WPAN and determining that the first access code matches the second access code, granting access to information accessible via the security device. 2. The security device of claim 1 , wherein the WPAN comprises two or more devices within the threshold distance of the security device. 3. The security device of claim 1 , wherein wirelessly broadcasting the first access code comprises: encrypting the first access code prior to wirelessly broadcasting the first access code; generating a unique uniform resource locator (URL) associated with a decryption key for the first access code; and sending the URL with the command to the server system. 4. A method comprising: determining a user interaction with a security device, the user interaction corresponding to a profile associated with a user, the profile indicating one or more devices as potential devices for authenticating the user with the security device; generating for display, based on the user interaction, a presentation of the one or more devices indicated by the profile associated with the user; wirelessly broadcasting, based on a first device of the one or more devices being within a threshold distance of the security device, a first access code to an environment surrounding the security device; sending, to a server system, an identification of the first device and a command that causes the server system to send a notification to the first device; receiving a second access code within a threshold amount of time via the first device after wirelessly broadcasting the first access code and determining that the first access code matches the second access code; and in response to receiving the second access code within the threshold amount of time after wirelessly broadcasting the first access code and determining that the first access code matches the second access code, granting access to information accessible via the security device. 5. The method of claim 4 , wherein wirelessly broadcasting the first access code comprises: encrypting the first access code prior to wirelessly broadcasting the first access code; generating a unique uniform resource locator (URL) associated with a decryption key for the first access code; and sending the URL with the command to the server system. 6. The method of claim 4 , wherein wirelessly broadcasting the first access code comprises: generating an encryption key and a decryption key; encrypting the first access code using the encryption key prior to outputting the first access code; sending the encrypted first access code to the first device; sending the decryption key to the server system; and receiving the second access code from the first device, wherein the first device receives the decryption key from the server system and decrypts the first access code using the decryption key. 7. The method of claim 4 , further comprising: receiving information via near field communication protocol from the first device, wherein determining that the first device is within the threshold distance comprises determining, based on receiving information via near field communication protocol from the first device, that the first device is within the threshold distance of the security device. 8. The method of claim 4 , wherein wirelessly broadcasting the first access code comprises switching from wirelessly broadcasting a prior access code to wirelessly broadcasting the first access code after wirelessly broadcasting the prior access code for a predetermined amount of time. 9. The method of claim 4 , wherein granting access to information accessible via the security device comprises granting access to information accessible via the security device to the first device. 10. The method of claim 4 , wherein granting access to information accessible via the security device comprises granting access to information accessible via the security device to at least one device associated with the user. 11. The method of claim 4 , further comprising: receiving an indication that the first device is greater than the threshold distance from the security device after granting access to information accessible via the security device; and in response to determining that the first device is greater than the threshold distance from the security device, locking a user account associated with the profile. 12. The method of claim 4 , wherein granting access to information accessible via the security device comprises: determining, based on receiving information from multiple devices via near field communication, that multiple users are present in the environment surrounding the security device; in response to determining that multiple users are present in the environment surrounding the security device, establishing a connection with the first device; causing, via the connection, a graphical user interface (GUI) associated with the security device to be presented on the first device; and receiving, by the security device and via the connection with the first device, information indicating user input at the GUI. 13. One or more non-transitory computer-readable media storing instructions that, when executed by one or more processors, cause operations comprising: determining a user interaction with a security device, the user interaction corresponding to a profile associated with a user, the profile indicating one or more devices as potential devices for authenticating the user with the security device; generating for display, based on the user interaction, a presentation of the one or more devices indicated by the profile associated with the user; wirelessly broadcasting, based on a first device of the one or more devices being within a threshold distance of the security device, a first access code to an environment surrounding the security device; sending, to a server system, an identification of the first device and a command that causes the server system to send a notification to the first device; receiving a second access code within a time period related to wirelessly broadcasting the first access code and determining that the first access code matches the second access code; and in response to receiving the second access code within the time period related to wirelessly broadcasting the first access code and determining that the first access code matches the second access code, granting access to information accessible via the security device.
Assignees
Inventors
Classifications
by using a location-limited connection, e.g. near-field communication or limited proximity of entities · CPC title
wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption (cryptographic mechanisms or cryptographic arrangements for public-key encryption H04L9/30) · CPC title
using time-dependent-passwords, e.g. periodically changing passwords · CPC title
using one-time-passwords · CPC title
Entity profiles · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12008096B2 cover?
- Methods and systems are disclosed herein for authenticating a user. A security device may use an object associated with a user and a device of the user to authenticate the user, for example, if the user has forgotten a password. A user may insert the object (e.g., a card, or other object) into the security device and may select an option to authenticate via a device that is trusted by both the …
- Who is the assignee on this patent?
- Capital One Services Llc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/35. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Jun 11 2024 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 3 related publications on this page (citations in our corpus or others sharing the same primary CPC).