Authentication tokens managed for use with multiple sites
US9363262B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Sep 15, 2008 |
| Grant date | Jun 7, 2016 |
| Priority date | — |
| Expiry date | Apr 27, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/082
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and system for authenticating an account holder using multi-factor authentication. An account holder is associated with a token device configured to supply the account holder with a dynamic password. The dynamic password has a current value that is synchronously stored at an aggregator service and at the token device. The dynamic password is changed periodically. The aggregator service also associates the account holder with at least one account maintained by the account providers. The aggregator service receives an authorization request from either the user or from one of the account providers. The aggregator service performs an authorization operation for determining if a proffered dynamic password submitted by the user during an attempt to login matches the current value of the dynamic password stored at the aggregator service.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.