Method and system for authenticated login using static or dynamic codes

Assignee

• Ping Identity Corporation · US

Inventors

• Armin Ebrahimi · Palo Alto, US
• Gaurav Khot · Cupertino, US
• Vladimir Reshetnikov · Cupertino, US
• Robert Gadbois · Los Gatos, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/0876
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Method of authentication including sending a login web page to a first device of a user including a scannable code having an envelope ID and a login challenge. The envelope ID generated by an identity manager is associated with a first envelope of data including a session ID. A confirmation login request is received from a second device associated with the user, and includes a second envelope of data comprising the session ID, a user ID, and a seal of the user ID registering the user ID with the identity manager. The confirmation login request to the login challenge is verified using the session ID, and the user is verified using the user ID and seal. User login is authorized upon successful verification of the login challenge and user, and a communication session having the session ID is established between the web server and the first device.