摘要 |
A method of authenticating users to reduce transaction risks includes indicating a desire to conduct a transaction and determining whether the transaction requires access to protected resources. Moreover, the method determines whether inputted information is known, determines a state of a communications device (20) when the inputted information is known, and transmits a biometric authentication request from a server (12) to an authentication system (16) when the state of the communications device (20) is enrolled. Additionally, the method includes validating the communications device (20), capturing biometric authentication data in accordance with a biometric authentication data capture request with the communications device (20), biometrically authenticating the user, generating a one-time pass-phrase and storing the one-time pass-phrase on the authentication system (16) when the user is authenticated, comparing the transmitted one-time pass-phrase against the stored one-time pass-phrase, and granting access to the protected resources when the transmitted and stored one-time pass-phrases match.
|