| 发明名称 | Login using QR code | ||
| 摘要 | Systems and methods are disclosed herein for a user to use a trusted device to provide sensitive information to an identity provider via QR (Quick Response) code for the identity provider to broker a website login or to collect information for the website. A user may securely transact with the website from unsecured devices by entering sensitive information into the trusted device. The identity provider may generate the QR code for display by the website on an unsecured device. A user running an application from the identity provider on the trusted device may scan the QR code to transmit the QR code to the identity provider. The identity provider may validate the QR code and may receive credential information to authenticate the user or may collect information for the website. Advantageously, the user may perform a safe login to the website from untrusted devices using the trusted device. | ||
| 申请公布号 | US9288198(B2) | 申请公布日期 | 2016.03.15 |
| 申请号 | US201414557646 | 申请日期 | 2014.12.02 |
| 申请人 | PAYPAL, INC. | 发明人 | DeSoto Daniel B.;Peskin Mark Andrew |
| 分类号 | G06F21/36;H04L29/06;H04W12/06;G06F21/62 | 主分类号 | G06F21/36 |
| 代理机构 | Haynes and Boone, LLP | 代理人 | Haynes and Boone, LLP |
| 主权项 | 1. A provider server system, comprising: a non-transitory memory comprising instructions; and one or more hardware processors coupled to the non-transitory memory, and configured to read the instructions to cause the provider server system to perform operations comprising: generating, by a code generation unit of the one or more hardware processors, encoded data;transmitting the encoded data to a first device to display quick response data on a graphical user interface (GUI) of the first device;receiving credential information from a second device, wherein the credential information corresponds to the quick response data processed by a quick response component of the second device based at least on a physical scan of the quick response data displayed on a surface of the GUI interface of the first device;determining a level of trust associated with the credential information that corresponds to the quick response data processed by the quick response component of the second device based at least on the physical scan of the quick response data displayed on the surface of the GUI interface of the first device; andsending a security token to a website server that enables a data transmittal associated with the first device and the website server based at least on the level of trust determined. | ||
| 地址 | San Jose CA US | ||