Patent · US Active

Methods and systems for secure user authentication

US11917069B1 · kind B1 · utility

0Cited by

37References

20Claims

0Family size

Assignee

CITICORP CREDIT SERVICES, INC. (USA) · US

Inventors

Ronald King-Hang Chu · Los Angeles, US
Mark Kogen · Torrance, US
Warren Tan · Thousand Oaks, US
Simon Ma · Torrance, US
Yosif Smushkovich · Santa Monica, US
Gerry Glindro · Carson, US
Jeffrey William Coyte Nicholas · Los Angeles, US

Key dates

Filing date	Jun 29, 2023
Grant date	Feb 27, 2024
Priority date	—
Expiry date	Jun 29, 2043

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/3228
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Secure user authentication using a OTP involve pre-storing an application on a first device for generating a valid OTP for the user responsive to receiving entry of a valid PIN, no part of the valid PIN is stored on the first device and pre-storing on a back-end server the valid PIN and a valid shared secret for the user. Upon receiving entry of a purported PIN, a purported shared secret is dynamically synthesized on the first device by the application based on the purported PIN and a purported OTP is generated on the first device. When entry of the purported OTP is received by the server in an attempt to log on the server from a second device, the server cryptographically calculates a window of OTPs, and logs on to the server from the second device is allowed if the calculated window of OTPs corresponds to the received OTP.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.