Patent · US Active

Methods and systems for secure user authentication

US12101409B1 · kind B1 · utility

0Cited by

37References

20Claims

0Family size

Assignee

CITICORP CREDIT SERVICES, INC. (USA) · US

Inventors

Ronald King-Hang Chu · Los Angeles, US
Mark Kogen · Torrance, US
Warren Tan · Thousand Oaks, US
Simon Ma · Torrance, US
Yosif Smushkovich · Santa Monica, US
Gerry Glindro · Carson, US
Jeffrey William Coyte Nicholas · Los Angeles, US

Key dates

Filing date	Feb 21, 2024
Grant date	Sep 24, 2024
Priority date	—
Expiry date	Feb 21, 2044

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/3228
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Secure user authentication using an OTP involve pre-storing an OTP application on a first computing device for generating a valid OTP value for the user responsive to receiving entry of a valid PIN value of the user, no part of the valid PIN value is stored on the first computing device and pre-storing on a back-end server the valid PIN value and a valid shared secret for the user. Upon receiving entry of a purported PIN value, a purported shared secret is dynamically synthesized by the OTP application based on the purported PIN value of the user and a purported OTP value is generated. Upon receiving entry of the purported OTP value in a login attempt on the back-end server from another device, the server cryptographically calculates a window of OTP values, and login is allowed if the calculated window of OTP values corresponds to the received OTP value.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.