What technology area does this patent fall under?

Primary CPC classification H04W12/06. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Apr 25 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Code-based authorization of mobile device

US9635550B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9635550-B2
Application number	US-201414487319-A
Country	US
Kind code	B2
Filing date	Sep 16, 2014
Priority date	Aug 9, 2012
Publication date	Apr 25, 2017
Grant date	Apr 25, 2017

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A system and method for authenticating mobile communications devices. The method comprises: generating a code corresponding to a user configured to be rendered on a rendering device to produce a rendered code, the rendered code being readable by a mobile communications device having a code reading device, the rendered code comprising a secret token; storing the secret token along with information identifying the user on a first storage device; providing the code to the user; receiving, at the authentication server, a setup message from the mobile device, the message includes a device identifier and the secret token; comparing the received secret token and the secret token stored on the first storage device; if the received secret token matches the secret token stored on the first storage device, storing, on a second storage device, information identifying the user and a trusted device value corresponding to the device identifier.

First claim

Opening claim text (preview).

What is claimed is: 1. A method of authenticating a mobile communications device for access to secure web services, the method comprising: storing a credential associated with information identifying a user on a first storage device associated with an authentication server; generating, at the authentication server, a Quick Response (QR) code corresponding to a user and comprising the credential; providing the QR code for rendering in a form that is readable by a first electronic device having a code reading device, the first electronic device being used by the user, wherein the providing of the QR code includes sending, by the authentication server, the QR code to a second electronic device; and receiving, at the authentication server, at least one authentication message from the first electronic device, the at least one authentication message comprising the credential and authentication information, wherein the first electronic device obtained the credential from the QR code. 2. The method of claim 1 , wherein the authentication information comprises information identifying the user associated with the credential. 3. The method of claim 2 , wherein the authentication information further comprises a password associated with the user. 4. The method of claim 1 , further comprising: authenticating, by the authentication server, the user based on one or more of the credential and the authentication information included in the at least one authentication message. 5. The method of claim 4 , wherein the authentication information comprises one or more of information identifying the user associated with the credential, and a password associated with the user, and wherein the authenticating of the user comprises: authenticating, by the authentication server, the user using one or more of the credential, the information identifying the user associated with the credential, and the password associated with the user. 6. The method of claim 4 , wherein the authenticating of the user further comprises: determining, by the authentication server, whether the credential and the authentication information included in the at least one authentication message matches the information identifying the user and the credential associated with information identifying the user that is stored on the first storage device associated with the authentication server. 7. The method of claim 6 , in response to determining that the credential and the authentication information included in the at least one authentication message matches the information identifying the user and the credential associated with information identifying the user that is stored on the first storage device associated with the authentication server, storing, on a second storage device associated with the authentication server, information identifying the user and a trusted electronic device value corresponding to an electronic device identifier that is transmitted in the at least one authentication message. 8. The method of claim 7 , further comprising: receiving, at the authentication server, information pertaining to a request by a requesting electronic device for access to a web service, the information comprising a requesting electronic device identifier; determining whether the requesting electronic device identifier corresponds to the trusted electronic device value stored on the second storage device; and denying access to the web service if the requesting electronic device identifier does not correspond to the trusted electronic device value. 9. The method of claim 1 , wherein the QR code comprises an identifier of a server for sending the at least one authentication message. 10. The method of claim 1 , wherein the providing the QR code for rendering comprises one or more of: displaying the QR code on a display unit; and reproducing the QR code on a readable medium. 11. A system for authenticating a mobile communications device for access to secure web services, the system comprising: an authentication server; a first storage device associated with the authentication server; and a second storage device associated with the authentication server, the authentication server comprising at least one processor, the at least one processor configured to: store a credential associated with information identifying a user on the first storage device associated with the authentication server; generate a Quick Response (QR) code corresponding to a user and comprising the credential; providing the QR code for rendering in a form that is readable by a first electronic device having a code reading device, the first electronic device being used by the user, wherein the providing of the QR code includes sending, by the authentication server, the QR code to a second electronic device; and receive at least one authentication message from the first electronic device, the at least one authentication message comprising the credential and authentication information, wherein the first electronic device obtained the credential from the QR code. 12. The system of claim 11 , wherein the authentication information comprises information identifying the user associated with the credential. 13. The system of claim 12 , wherein the authentication information further comprises a password associated with the user. 14. The system of claim 11 , wherein the at least one processor is further configured to: authenticate the user based on one or more of the credential and the authentication information included in the at least one authentication message. 15. The system of claim 14 , wherein the authentication information comprises one or more of information identifying the user associated with the credential, and a password associated with the user, and wherein the at least one processor is further configured to authenticate the user using one or more of the credential, the information identifying the user associated with the credential, and the password associated with the user. 16. The system of claim 14 , wherein the at least one processor is further configured to determine whether the credential and the authentication information included in the at least one authentication message matches the information identifying the user and the credential associated with information identifying the user that is stored on the first storage device associated with the authentication server. 17. The system of claim 6 , wherein the at least one processor is further configured to, in response to determining that the credential and the authentication information included in the at least one authentication message matches the information identifying the user and the credential associated with information identifying the user that is stored on the first storage device associated with the authentication server, store, on the second storage device associated with the authentication server, information identifying the user and a trusted electronic device value corresponding to an electronic device identifier that is transmitted in the at least one authentication message. 18. The system of claim 17 , wherein the at least one processor is further configured to: receive information pertaining to a request by a requesting electronic device for access to a web service, the information comprising a requesting electronic device identifier, determine whether the requesting electronic device identifier corresponds to the trusted electronic device value stored on the second storage device, and deny access to the web service if the requesting electronic

Assignees

D2L Corp

Inventors

Auger Jeremy

Classifications

H04W12/06Primary
Authentication · CPC title
H04L67/02
based on web technology, e.g. hypertext transfer protocol [HTTP] · CPC title
G06K5/00
Methods or arrangements for verifying the correctness of markings on a record carrier; Column detection devices · CPC title
G06F21/36
by graphic or iconic representation · CPC title
H04L63/08
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title

Patent family

Related publications grouped by family.

View patent family 50067241

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9635550B2 cover?: A system and method for authenticating mobile communications devices. The method comprises: generating a code corresponding to a user configured to be rendered on a rendering device to produce a rendered code, the rendered code being readable by a mobile communications device having a code reading device, the rendered code comprising a secret token; storing the secret token along with informati…
Who is the assignee on this patent?: D2L Corp
What technology area does this patent fall under?: Primary CPC classification H04W12/06. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Apr 25 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).