Authenticating users during and after suspicious voice calls and browsing
US-2024364684-A1 · Oct 31, 2024 · US
Event driven second factor credential authentication
US9769161B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9769161-B2 |
| Application number | US-201114131854-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 12, 2011 |
| Priority date | Jul 12, 2011 |
| Publication date | Sep 19, 2017 |
| Grant date | Sep 19, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A reader configured to perform dual-factor authentication is provided. The reader is configured to analyze credential data as well as event-based user inputs. The event-based user inputs are received in response to the reader presenting one or more events to a user and monitoring the user's reaction thereto. Utilization of an event-based user input enables the reader to perform dual-factor authentication without necessarily being provided with a keyboard or other advanced user input device.
First claim
Opening claim text (preview).
What is claimed is: 1. A method, comprising detecting, at a reader, a credential within a read range of the reader; receiving, at the reader, credential data from the credential; detecting, at the reader, user input related to a sequence of multiple events controlled by the reader to count time, wherein the sequence of multiple events controlled by the reader to count time is selected from a group of possible events including: (i) a plurality of light flashes; (ii) a plurality of illuminated light sources; (iii) a pattern of illuminated versus non-illuminated light sources; (iv) a color of a light source; and (v) a plurality of beeps emitted by the reader; analyzing the event-based user input, wherein the event-based user input corresponds to a single user action detected at a particular time during the sequence of multiple events controlled by the reader to count time; based on a successful authentication of the event-based user input, releasing the credential data from the reader; and upon determining that the credential data and the event-based user input are both valid, permitting user access to an asset protected by the reader. 2. The method of claim 1 , further comprising: analyzing the credential data at the reader. 3. The method of claim 2 , wherein the credential data is split across a plurality of credentials and wherein the credential data is determined to be valid when each of the plurality of credentials are presented in a predetermined order. 4. The method of claim 1 , wherein the sequence of multiple events controlled by the reader comprise at least one of flashing a light and beeping a buzzer a plurality of times. 5. The method of claim 1 , wherein the event-based user input comprises monitoring and detecting a user action that occurs at a predetermined time during presentation of the sequence of multiple events controlled by the reader. 6. The method of claim 1 , wherein a valid event-based user input comprises an N-digit PIN that is specific to the user and wherein the event-based user input is detected by monitoring an amount of time that a credential is selectively presented and not presented to the reader during presentation of the sequence of events controlled by the reader. 7. A reader, comprising: a network interface that enables the reader to communicate with a networked device; a credential interface that enables the reader to communicate with a credential carried by a user and receive information from the credential describing a sequence of multiple events to be performed by the reader in connection with proving the user's knowledge of a secret; a user interface configured to present the sequence of multiple events to the user as a count of time; a processor; and computer memory coupled with the processor, the computer memory comprising instructions that enable the processor to perform the following functions: monitor user reactions to the sequence of events, the user reactions including moving a credential closer to or further away from the reader at a particular time during a display of the sequence of multiple events; and determine, based on the user reaction, whether the user has provided a valid event-based user input that proves the secret is known by the user; wherein the reader forwards credential data to a networked device for analysis only in response to the processor determining that the event-based user input is valid. 8. The reader of claim 7 , wherein the user interface does not include a user input device. 9. The reader of claim 7 , wherein the user interface comprises at least one Light Emitting Diode (LED). 10. The reader of claim 7 , wherein the user interface comprises at least one of a buzzer and speaker. 11. The reader of claim 7 , wherein the instructions, when executed by the processor, further enable the processor to determine whether a credential presented by the user is within a read range of the reader as a part of monitoring the user reaction to the sequence of events. 12. The reader of claim 11 , wherein the reader further retrieves credential data from the credential presented by the user. 13. A method of performing dual-factor authentication, comprising: receiving, at a reader, credential data from a credential; analyzing the credential data; upon determining that the credential data is valid, presenting to a user of the credential a sequence of multiple events controlled by the reader to count time, wherein the sequence of multiple events controlled by the reader to count time is selected from a group of possible events including: (i) a number of light flashes; (ii) a number of illuminated light sources; (iii) a pattern of illuminated versus non-illuminated light sources; (iv) a color of a light source; and (v) a number of beeps emitted by the reader; receiving, at the reader, user input related to the sequence of events controlled by the reader to count time; analyzing the event-based user input, wherein the event-based user input corresponds to a single user action detected at a particular time during the sequence of multiple events controlled by the reader to count time; and based on a successful authentication of the event-based user input and determination that the credential data is valid, permitting the user access to an asset protected by the reader. 14. The method of claim 13 , wherein the user input includes moving the credential closer to or further away from the reader during the presentation of the sequence of events. 15. The method of claim 13 , wherein the reader forwards the credential data to a networked device for analysis only in response to determining that the event-based user input is valid. 16. The method of claim 13 , wherein a valid event-based user input comprises an N-digit PIN. 17. The method of claim 13 , wherein the credential data includes information that is used by the reader to select the sequence of multiple events from the group of possible events. 18. The method of claim 17 , wherein the information that is used by the reader to select the sequence of multiple events from the group of possible events changes over time. 19. The method of claim 13 , wherein the credential data is split across a plurality of credentials and wherein the credential data is determined to be valid when each of the plurality of credentials are presented in a predetermined order.
Assignees
Inventors
Classifications
in combination with an identity check of the pass holder · CPC title
specially adapted for controlling several coin-freed apparatus from one place · CPC title
- H04L63/0853Primary
using an additional device, e.g. smartcard, SIM or a different communication terminal (cryptographic mechanisms or cryptographic arrangements for entity authentication involving additional secure or trusted devices H04L9/3234) · CPC title
involving the use of external additional devices, e.g. dongles or smart cards · CPC title
applying multi-factor authentication · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9769161B2 cover?
- A reader configured to perform dual-factor authentication is provided. The reader is configured to analyze credential data as well as event-based user inputs. The event-based user inputs are received in response to the reader presenting one or more events to a user and monitoring the user's reaction thereto. Utilization of an event-based user input enables the reader to perform dual-factor auth…
- Who is the assignee on this patent?
- Davis Masha Leah, Robinton Mark, Klammer Peter F, and 1 more
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0853. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Sep 19 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).