发明名称 |
Systems and methods for securely transferring authentication information between a user and an electronic resource |
摘要 |
Systems and methods for securely transferring authentication information between a user and an electronic resource are disclosed herein. The methods include providing an authentication image to a user interface. The authentication image is associated with a resource-side coordinate system and the providing includes encoding the resource-side coordinate system to generate a user-side coordinate system that is different from the resource-side coordinate system and transmitting the authentication image and the user-side coordinate system to the user interface. The methods further include receiving an encoded coordinate set, which uniquely identifies an authentication location in the user-side coordinate set and that is user-selected from the authentication image, from the user interface and decoding the encoded coordinate set to generate a decoded coordinate set that uniquely identifies the authentication location in the resource-side coordinate set. The systems include systems that perform the methods. |
申请公布号 |
US9172692(B2) |
申请公布日期 |
2015.10.27 |
申请号 |
US201414207065 |
申请日期 |
2014.03.12 |
申请人 |
|
发明人 |
Langley William M. |
分类号 |
H04L29/06;G06F21/36 |
主分类号 |
H04L29/06 |
代理机构 |
DASCENZO Intellectual Property Law, P.A. |
代理人 |
DASCENZO Intellectual Property Law, P.A. |
主权项 |
1. A method of authenticating a user for access to an electronic resource from a user interface, the method comprising:
receiving an authentication query from the user interface, wherein the receiving the authentication query includes receiving a user name from the user interface; receiving authentication information that corresponds to the user name from the user interface, wherein the receiving the authentication information includes:
providing an authentication image to the user interface, wherein the authentication image is associated with a resource-side coordinate system that uniquely defines a plurality of locations within the authentication image, wherein the authentication image includes a map, and further wherein the providing includes:
(i) encoding the resource-side coordinate system using a session-specific coordinate transformation to generate a user-side coordinate system that is different from the resource-side coordinate system; and(ii) transmitting the authentication image and the user-side coordinate system to the user interface;receiving an encoded coordinate set from the user interface, wherein the encoded coordinate set uniquely specifies a single authentication location that is user-selected from the plurality of locations within the authentication image and that is identified in the user-side coordinate system; anddecoding the encoded coordinate set by reversing the session-specific coordinate transformation to generate a decoded coordinate set that uniquely specifies the authentication location and that is identified in the resource-side coordinate system; and comparing the decoded coordinate set to a previously defined user-specific authentication data set; and one of:
(i) selectively granting the user access to the electronic resource responsive to determining that the decoded coordinate set corresponds to the user-specific authentication data set; and(ii) selectively denying the user access to the electronic resource responsive to determining that the decoded coordinate set does not correspond to the user-specific authentication data set. |
地址 |
|