What technology area does this patent fall under?

Primary CPC classification H04L63/0823. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Mar 20 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).

Systems and methods for using imaging to authenticate online users

US9923885B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9923885-B2
Application number	US-201514813214-A
Country	US
Kind code	B2
Filing date	Jul 30, 2015
Priority date	Mar 15, 2013
Publication date	Mar 20, 2018
Grant date	Mar 20, 2018

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Systems and methods are disclosed for authenticating an identity of an online user. One method includes receiving from the user, through a first device, a request to access a web page associated with the user's online account; transmitting to the user an image that contains a unique ID and a URL of an authentication server; and receiving from the user, through the first device, an authentication request containing the unique ID. The method also includes receiving from the user, through a second device, a log-in ID associated with the user and the unique ID; and authenticating the identity of the user to grant the user access, through the first device, to the web page associated with the user's online account.

First claim

Opening claim text (preview).

What is claimed is: 1. A method for authenticating an identity of an online user, the method including: receiving registration data of an online user, wherein the registration data is used to access a web page associated with the online user; receiving, from a registration device, a request to access the web page associated with the online user; transmitting, by an authentication server, in response to the request to access the web page from the registration device, an image that contains a unique identifier (“ID”) and a uniform resource locator (“URL”) of the authentication server; storing, by the authentication server, the unique ID in association with a session identifier (“ID”) and the registration data of the online user; receiving, at the authentication server from the online user through a first device, an authentication request containing a digital certificate, the unique ID and a log-in identifier (“ID”); authenticating, by the authentication server, the first device of the online user based on the digital certificate, the unique ID and log-in ID; associating the first device of the online user with the session ID stored in association with the registration data of the online user when the first user device is authenticated; transmitting the web page associated with the online user to the first user device when the first user device is authenticated, the requested web page including an access number and a unique authentication code associated with the registration data of the online user; receiving, at a voice recognition server associated with the access number, the unique authentication code associated with the registration data of the online user; receiving, at the voice recognition server, a voice sample of the online user for authenticating the online user based on biometric matching, wherein the biometric matching uses predefined grammar in directed dialogues and includes both speech recognition and voice recognition; and associating the voice sample of the online user with the registration data of the online user, wherein the voice sample of the online user for authenticating the user based on biometric matching is received through one of an Internet connection and a public switched telephone network connection. 2. The method of claim 1 , wherein the registration device is one of a personal computer, a public computer, and a public kiosk, and the first device is a mobile device. 3. The method of claim 1 , wherein the image is a two-dimensional barcode or a quick response code. 4. The method of claim 1 , wherein the authentication request containing the unique ID is received upon the online user requesting the URL of the authentication server, and includes a request for notice of completed log-in for the unique ID. 5. The method of claim 1 , further comprising: providing the online user with a mobile application enabling the online user to extract the unique ID from the image, by taking a picture of a display of the registration device using a camera of the first device. 6. The method of claim 1 , further comprising: storing, upon receiving the authentication request containing the unique ID, the unique ID in relation to a browser session ID of the registration device. 7. The method of claim 6 , further comprising: looking up the browser session ID of the registration device based on the unique ID received from the user through the first device. 8. The method of claim 1 , further comprising: sending the first device one of the digital certificate and access token storing a log-in ID of the online user. 9. The method of claim 8 , wherein the log-in ID of the online user and the unique ID are received from the online user within one of the digital certificate and access token. 10. A system for authenticating an identity of an online user, the system including: a data storage device for storing instructions for authenticating an identity of an online user; and a processor configured to execute the instructions to perform a method including: receiving registration data of an online user, wherein the registration data is used to access a web page associated with the online user; receiving, from a registration device, a request to access the web page associated with the online user; transmitting, by an authentication server, in response to the request to access the web page from the registration device, an image that contains a unique identifier (“ID”) and a uniform resource locator (“URL”) of the authentication server; storing, by the authentication server, the unique ID in association with a session identifier (“ID”) and the registration data of the online user; receiving, at the authentication server from the online user through a first device, an authentication request containing a digital certificate, the unique ID and a log-in identifier (“ID”); authenticating, by the authentication server, the first device of the online user based on the digital certificate, the unique ID and the log-in ID; associating the first device of the online user with the session ID stored in association with the registration data of the online user when the first user device is authenticated; transmitting the web page associated with the online user to the first user device when the first user device is authenticated, the requested web page including an access number and a unique authentication code associated with the registration data of the online user; receiving, at a voice recognition server associated with the access number, the unique authentication code associated with the registration data of the online user; receiving, at the voice recognition server, a voice sample of the online user for authenticating the online user based on biometric matching, wherein the biometric matching uses predefined grammar in directed dialogues and includes both speech recognition and voice recognition; and associating the voice sample of the online user with the registration data of the online user, wherein the voice sample of the online user for authenticating the user based on biometric matching is received through one of an Internet connection and a public switched telephone network connection. 11. The system of claim 10 , wherein the registration device is one of a personal computer, a public computer, and a public kiosk, and the first device is a mobile device. 12. The system of claim 10 , wherein the image is a two-dimensional barcode or a quick response code. 13. The system of claim 10 , wherein the authentication request containing the unique ID is received upon the online user requesting the URL of the authentication server, and includes a request for notice of completed log-in for the unique ID. 14. The system of claim 10 , wherein the processor is further configured to execute the instructions to perform the method including: providing the online user with a mobile application enabling the online user to extract the unique ID from the image, by taking a picture of a display of the registration device using a camera of the first device. 15. The system of claim 10 , wherein the processor is further configured to execute the instructions to perform the method including: storing, upon receiving the authentication request containing the unique ID, the unique ID in relation to a browser session ID of the registration device. 16. The system of claim 15 , wherein the processor is further configured to execute the instructions to perform the method including: looking up the browser session ID of the registration device based on the unique ID received from the user through

Assignees

Oath Inc

Inventors

Classifications

G06F21/35
communicating wirelessly · CPC title
H04L63/0853
using an additional device, e.g. smartcard, SIM or a different communication terminal (cryptographic mechanisms or cryptographic arrangements for entity authentication involving additional secure or trusted devices H04L9/3234) · CPC title
G06F21/33
using certificates · CPC title
H04L63/0823Primary
using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates H04L9/3263) · CPC title
G06F21/36
by graphic or iconic representation · CPC title

Patent family

Related publications grouped by family.

View patent family 50625119

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9923885B2 cover?: Systems and methods are disclosed for authenticating an identity of an online user. One method includes receiving from the user, through a first device, a request to access a web page associated with the user's online account; transmitting to the user an image that contains a unique ID and a URL of an authentication server; and receiving from the user, through the first device, an authenticatio…
Who is the assignee on this patent?: Oath Inc
What technology area does this patent fall under?: Primary CPC classification H04L63/0823. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Mar 20 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).