What technology area does this patent fall under?

Primary CPC classification H04L63/0861. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Jun 20 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Multi factor user authentication on multiple devices

US9686272B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9686272-B2
Application number	US-201514630363-A
Country	US
Kind code	B2
Filing date	Feb 24, 2015
Priority date	Feb 24, 2015
Publication date	Jun 20, 2017
Grant date	Jun 20, 2017

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Systems and methods of the present invention provide for a first and second client computer configured to receive and transmit an authentication credential and at least one additional authentication credential respectively. The authentication credentials may be selected from authentication credentials known only to a user, identifying a client computer and/or identifying a characteristic unique to the user. A server computer communicatively coupled to the network may be configured to receive the authentication credentials and verify the identity of the user via a match, in a database, of a first authentication credential, a second authentication credential and a third authentication credential.

First claim

Opening claim text (preview).

The invention claimed is: 1. A system, comprising: at least one processor executing software instructions within a memory of a server computing device coupled to a network, the software instructions causing the server computing device to: transmit, to a first client computer coupled to the network, a software module configured for installation on the first client computer; receive, from the software module installed on the first client computer: a public key from a public/private key pair generated by the software module on the first client computer; and a biometric data input, by a user, into the first client computer using the software module; store, within a database coupled to the network, the public key and the biometric data; generate an authentication challenge user interface comprising a request for an authentication credential from the user; transmit the authentication challenge user interface to a second client computer coupled to the network; responsive to receiving the authentication credential from the second client computer: verify an identity of the user via a match, within the database, to the authentication credential; generate a notification requesting a biometric input from the user; and transmit the notification, for display on the software module; receive, from the first client computer, the biometric input, digitally signed using a private key from the public/private key pair; decrypt the biometric input using the public key; and responsive to a determination that the biometric input matches the biometric data stored in the database, authenticate the user. 2. The system of claim 1 , wherein the authentication credential comprises a time-based one time password or a tap code. 3. The system of claim 1 , wherein the software instructions further cause the server computing device, responsive to a determination that a response received within the authentication challenge user interface is not correct, or that the biometric input does not match the biometric data, to generate an alert to be displayed on the first client computer or the second client computer an alert. 4. The system of claim 1 , wherein the public key and the biometric data are stored in at least one data record in the database in association with a user identifier for the user. 5. The system of claim 4 , wherein the private key and the public key bind a first software code on the first client computer with a second software code on the server computing device via an exclusive encryption channel between the first client computer and the server computing device. 6. The system of claim 1 , wherein the software instructions further cause the server computing device, responsive to a determination that the first client computer and the second client computer are the same device, to generate an alert to be displayed on the first client computer or the second client computer. 7. The system of claim 1 , wherein the authentication of the user authorizes the user to access a domain name administration software, a bank account, a retail website, or at least one private health record. 8. The system of claim 7 , wherein the first client computer is configured to: store the biometric data; and responsive to receiving the notification, and without user input: encrypt the biometric data using the private key; and transmit the biometric data to the server computing device. 9. The system of claim 8 , wherein, upon authentication of the user, the server computing device is configured to perform a requested action for which the authentication is required. 10. The system of claim 1 , wherein the biometric data comprises a finger or thumb print, a capillary distribution, or a software identification of the user's face, voice, retina, or DNA. 11. A method, comprising the steps of: transmitting, by a server computing device coupled to a network and comprising at least one processor executing software instructions within a memory, a software module configured for installation on a first client computer coupled to the network; receiving, by the server computing device, from the software module installed on the first client computer: a public key from a public/private key pair generated by the software module on the first client computer; and a biometric data input, by a user, into the first client computer using the software module; storing, by the server computing device, within a database coupled to the network, the public key and the biometric data; generating, by the server computing device, an authentication challenge user interface comprising a request for an authentication credential from the user; transmitting, by the server computing device, the authentication challenge user interface to a second client computer coupled to the network; responsive to receiving the authentication credential from the second client computer: verifying, by the server computing device, an identity of the user via a match, within the database, to the authentication credential; generating, by the server computing device, a notification requesting a biometric input from the user; and transmitting, by the server computing device, the notification, for display on the software module; receiving, by the server computing device, from the first client computer, the biometric input, digitally signed using a private key from the public/private key pair; decrypting, by the server computing device, the biometric input using the public key; responsive to a determination that the biometric input matches the biometric data stored in the database, authenticating, by the server computing device, the user. 12. The method of claim 11 , wherein the authentication credential comprises a time-based one time password or a tap code. 13. The method of claim 11 , further comprising the step of, responsive to a determination that a response received within the authentication challenge user interface is not correct, or that the biometric input does not match the biometric data, generating, by the server computing device, an alert to be displayed on the first client computer or the second client computer. 14. The method of claim 11 , wherein the public key and the biometric data are stored in at least one data record in the database in association with a user identifier for the user. 15. The method of claim 14 , wherein the public key and the private key bind a first software code on the server computing device with a second software code on the first client computer via an exclusive encryption channel between the server computing device and the first client computer. 16. The method of claim 11 , further comprising the step of: responsive to a determination that the first client computer and the second client computer are the same device, generating, by the server computing device an alert to be displayed on the first client computer or the second client computer. 17. The method of claim 11 , wherein the authentication of the user authorizes the user to access a domain name administration software, a bank account, a retail website, or at least one private health record. 18. The method of claim 17 , wherein the first client computer is configured to: store the biometric data; and responsive to receiving the notification, and without user input: encrypt the biometric data using the private key; and transmit the biometric data to the server computing device. 19. The method of claim 18 , wherein, upon authentication of the user, the server computing device is configured to pe

Assignees

Go Daddy Operating Co Llc

Inventors

Blinn Arnold Neil

Classifications

H04L63/0861Primary
using biometrical features, e.g. fingerprint, retina-scan (cryptographic mechanisms or cryptographic arrangements for entity authentication using biological data H04L9/3231) · CPC title
H04L63/083Primary
using passwords (cryptographic mechanisms or cryptographic arrangements for entity authentication using a predetermined code H04L9/3226) · CPC title
G06F21/34
involving the use of external additional devices, e.g. dongles or smart cards · CPC title
H04L63/0428
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
H04L2463/082
applying multi-factor authentication · CPC title

Patent family

Related publications grouped by family.

View patent family 56693734

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9686272B2 cover?: Systems and methods of the present invention provide for a first and second client computer configured to receive and transmit an authentication credential and at least one additional authentication credential respectively. The authentication credentials may be selected from authentication credentials known only to a user, identifying a client computer and/or identifying a characteristic unique…
Who is the assignee on this patent?: Go Daddy Operating Co Llc
What technology area does this patent fall under?: Primary CPC classification H04L63/0861. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Jun 20 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).

How to read this patent

Abstract

First claim

Assignees

Inventors

Classifications

Patent family

External sources

Related patents

Pairing Computing Devices According To A Multi-Level Security Protocol

Seamless authentication across multiple entities

Proximity-based authentication

System and method for verifying status of an authentication device

Frequently asked questions