Event management in distributed computing system
US-12155753-B2 · Nov 26, 2024 · US
System and method for digital user authentication
US9282085B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9282085-B2 |
| Application number | US-201113332027-A |
| Country | US |
| Kind code | B2 |
| Filing date | Dec 20, 2011 |
| Priority date | Dec 20, 2010 |
| Publication date | Mar 8, 2016 |
| Grant date | Mar 8, 2016 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method according to preferred embodiment can include receiving a request at a server from a private key module associated with a first user device; directing a request for a first portion of the private key from the server to a second user device; and in response to a successful user challenge creating a first portion of a digital signature and a second portion of a digital signature at the server. The method of the preferred embodiment can further include combining the first portion of the digital signature and the second portion of the digital signature; and delivering the digital signature to the first user device. The method of the preferred embodiment can function to secure the digital signature process by splitting or dividing the user's private key into two or more portions, each of which require independent authorization from the user in order to create the digital signature.
First claim
Opening claim text (preview).
What is claimed is: 1. A method of digital user authentication comprising: receiving a request at a server from a private key module associated with a first user device; directing a request for a user challenge from the server to a second user device, wherein the second user device is a smartphone or a tablet, wherein successful completion of the user challenge is required to access a first portion of a private key; and in response to a successful user challenge completed on the second user device, creating at least a second portion of a digital signature associated with a second portion of the private key at the server to authenticate the user to a third party. 2. The method of claim 1 , wherein the first user device and the second user device are distinct user devices. 3. The method of claim 1 , wherein the second portion of the private key is located on the server. 4. The method of claim 3 , wherein the first portion of the private key is located on the first user device. 5. The method of claim 3 , wherein the first portion of the private key is located on the second user device. 6. The method of claim 1 , wherein the first and second user devices communicate though the server. 7. The method of claim 1 , wherein the first and second user devices communicate directly. 8. The method of claim 7 , wherein the first and second user devices are connectable through a near field communication protocol. 9. The method of claim 7 , wherein the first and second user devices are connectable through a wired connector. 10. The method of claim 1 , further comprising creating a first portion of the digital signature at the server and combining the first portion of the digital signature and the second portion of the digital signature. 11. The method of claim 10 , further comprising delivering the digital signature to the first user device. 12. The method of claim 1 , wherein the private key is a portion of an asymmetric key pair having an encryption portion and a decryption portion; wherein the private key is the encryption portion of the asymmetric key pair. 13. The method of claim 1 , wherein the successful user challenge is performed by a user responding directly to a prompt, the prompt displayed on an electronic display of the second user device, using a touchscreen of the second user device. 14. A method of digital user authentication comprising: delivering a public key from a first user device to a third party; generating a first portion of a digital signature, the first portion derived from a first portion of a private key, on the first user device; requesting a second portion of a digital signature, the second portion derived from a second portion of the private key by the first user device; receiving at the first user device at least a second portion of a digital signature derived from the second portion of the private key in response to a successful user challenge completed on a second user device, wherein the second user device is a smartphone or a tablet; and delivering a digital signature from the first user device to the third party. 15. The method of claim 14 , further comprising storing the first portion of the private key on the first user device. 16. The method of claim 14 , further comprising receiving the second portion of the digital signature from the server in response to a successful user challenge completed on the second user device. 17. The method of claim 14 , further comprising receiving the second portion of the digital signature from the second user device. 18. The method of claim 14 , further comprising receiving the complete digital signature at the first user device from one of the server or the second user device. 19. The method of claim 14 , wherein the first user device and the second user device are connectable through a near field communication protocol. 20. The method of claim 14 , wherein the first and second user devices are connectable through a wired connector. 21. The method of claim 14 , wherein the private key is a portion of an asymmetric key pair having an encryption portion and a decryption portion; wherein the private key is the encryption portion of the asymmetric key pair. 22. The method of claim 14 , wherein the successful user challenge is performed by a user responding directly to a prompt, the prompt displayed on an electronic display of the second user device, using a touchscreen of the second user device. 23. A method of digital user authentication comprising: receiving a request at a server from a private key module associated with a first user device; directing a request for a first portion of a digital signature derived from a first portion of a private key from the server to a second user device; wherein the second user device is a smartphone or tablet; in response to a successful user challenge completed on the second device, creating at least a second portion of a digital signature derived from a second portion of the private key at the server; combining the first portion of the digital signature and the second portion of the digital signature at the server; and delivering the digital signature from the server to the first user device. 24. The method of claim 23 , wherein the first user device and the second user device are distinct user devices. 25. The method of claim 23 , wherein the first user device and the second user device are connectable through a near field communication protocol. 26. The method of claim 23 , wherein the first and second user devices are connectable through a wired connector. 27. The method of claim 23 , wherein the private key is a portion of an asymmetric key pair having an encryption portion and a decryption portion; wherein the private key is the encryption portion of the asymmetric key pair. 28. The method of claim 23 , wherein the successful user challenge is performed by a user responding directly to a prompt, the prompt displayed on an electronic display of the second user device, using a touchscreen of the second user device.
Assignees
Inventors
Classifications
- H04L63/062Primary
for key distribution, e.g. centrally by trusted party (cryptographic mechanisms or cryptographic arrangements for key distribution involving a central third party H04L9/0819) · CPC title
the source of the received data · CPC title
for key exchange, e.g. in peer-to-peer networks (cryptographic mechanisms or cryptographic arrangements for key agreement H04L9/0838) · CPC title
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9282085B2 cover?
- A method according to preferred embodiment can include receiving a request at a server from a private key module associated with a first user device; directing a request for a first portion of the private key from the server to a second user device; and in response to a successful user challenge creating a first portion of a digital signature and a second portion of a digital signature at the s…
- Who is the assignee on this patent?
- Oberheide Jon, Song Douglas, Goodman Adam, and 1 more
- What technology area does this patent fall under?
- Primary CPC classification H04L63/062. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Mar 08 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).