摘要 |
In one aspect, the present disclosure describes a server-implemented method for authenticating a login without a password. The method includes: a) receiving, from a request initiator, a request to authenticate a login, the request including a user identifier; b) providing, to a device pre-registered for use in association with the user identifier, an acknowledgement request, the device being configured to generate a prompt in response to receiving the acknowledgment request, the prompt requesting input to authenticate the login; c) initiating a timer; d) determining that a login confirmation message has been received from the pre-registered device before expiration of the timer; and e) in response to determining that the login confirmation message has been received from the pre-registered device before expiration of the timer, providing an authentication acknowledgment message to the request initiator. |
主权项 |
1. A server-implemented method for authenticating a login without a password, the method comprising:
receiving, at the server and from a request initiator, a request to authenticate a login, the request including a user identifier; providing, from the server and to a device pre-registered for use in association with the user identifier, an acknowledgement request, the device being configured to generate a prompt in response to receiving the acknowledgment request, the prompt requesting input to authenticate the login; initiating a timer at the server, the timer tracking the amount of time that the device has had access to the acknowledgment request; determining, by the server, that a login confirmation message has been received from the pre-registered device before expiration of the timer; and in response to determining that the login confirmation message has been received from the pre-registered device before expiration of the timer, providing, by the server, an authentication acknowledgment message to the request initiator such that the login is authenticated without the use of a password. |