摘要 |
Multi-factor authentication techniques are described that use secure push authentication technology for transactions. An embodiment includes receiving, by an assurance platform operating as an authentication service platform, a user authentication request and transaction data from an access control server (ACS), determining an authentication rule, generating a user validation request message, transmitting the user validation request message to a user mobile device, and receiving user authentication data. The assurance platform then validates the user authentication data, transmits a device authentication request, receives a device authentication response signed with a private key of the user, and authenticates the user based on the device authentication response and private key. |
主权项 |
1. An assurance platform authentication process, comprising:
receiving, by an assurance platform operating as an authentication service platform, a user authentication request and transaction data from an access control server (ACS); determining, by the assurance platform, based on the user authentication request an authentication rule concerning a policy associated with an entity; generating, by the assurance platform based on the authentication rule, a user validation request message; transmitting, by the assurance platform to a user mobile device, the user validation request message; receiving, by the assurance platform from the user mobile device, user authentication data; validating, by the assurance platform, the user authentication data; transmitting, by the assurance platform to the user mobile device, a device authentication request; receiving, by the assurance platform from the user mobile device, a device authentication response signed with a private key of the user; and authenticating, by the assurance platform, the user based on the device authentication response and private key. |