Method and system of providing authentication of user access to a computer resource via a mobile device using multiple separate security factors
US9210133B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Feb 6, 2014 |
| Grant date | Dec 8, 2015 |
| Priority date | — |
| Expiry date | Feb 6, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/082
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and system of authenticating a computer resource such as an application or data on a mobile device uses a contactless token to provide multi-factor user authentication. User credentials are stored on the token in the form of private keys, and encrypted data and passwords are stored on the device. When application user requires access to the resource an encrypted password is transmitted to and decrypted on the token using a stored private key. An unencrypted data encryption key or password is then transmitted back to the device under the protection of a cryptographic session key which is generated as a result of strong mutual authentication between the device and the token.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.