US20070277224A1 - Methods and Systems for Graphical Image Authentication - Google Patents
Methods and Systems for Graphical Image Authentication Download PDFInfo
- Publication number
- US20070277224A1 US20070277224A1 US11/677,562 US67756207A US2007277224A1 US 20070277224 A1 US20070277224 A1 US 20070277224A1 US 67756207 A US67756207 A US 67756207A US 2007277224 A1 US2007277224 A1 US 2007277224A1
- Authority
- US
- United States
- Prior art keywords
- user
- authenticating
- images
- password
- graphical
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/36—User authentication by graphic or iconic representation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F18/00—Pattern recognition
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06T—IMAGE DATA PROCESSING OR GENERATION, IN GENERAL
- G06T1/00—General purpose image data processing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
Definitions
- the present invention is directed to a method and system of authenticating identity to a computer system.
- the present invention is directed to a graphical image identity authentication system.
- Computer networks particularly those with global reach such as the Internet, have greatly influenced the way that individuals, companies and institutions conduct transactions, and store and retrieve documents, images, music, and video. Convenience, ease of use, speed, and low overhead costs are contributing factors to the widespread use of the Internet for purchasing goods as well as conducting confidential transactions. Entire industries have emerged as a result of the evolution of the Internet.
- a pervasive tool used in obtaining confidential information is keystroke-logging software, which constitutes a program that monitors and records what users type on their computers. Such software often comprises the payload of viruses, worms, Trojan horses, and other forms of malware. Keystroke-logging software can reveal what a user is typing on a computer without the user's knowledge of this event occurring.
- Login information may also be “heard” by sophisticated analysis of the distinct sounds made by different keys.
- An inexpensive microphone near a keyboard can reveal most of what is being typed with a surprising degree of accuracy
- the present invention thwarts attempts to record the successful completion to the login process, as the keystrokes typed cannot be linked to the user's true authentication parameters.
- Login information is also vulnerable to simple spying or “shoulder-surfing,” as a person with malicious intent watches an unsuspecting user sign into his or her account.
- the present invention employs a method that significantly reduces the likelihood of a successful shoulder-surfing style of attack.
- Enterprises and institutions are using costly physical devices to identify legitimate customers and users.
- the existing devices generate a unique pass code for each user every 30 to 60 seconds. If an attacker manages to intercept a user ID and password, the information cannot be used to access the site without an additional authentication identifier displayed by the device.
- the devices significantly reduce instances of identity or information theft, but present challenges for both the institutions and individual users.
- the enterprise may meet with consumer resistance in implementing use of the physical device. If the user does not have the device, he or she cannot gain access to the site. Besides the tremendous initial cost of purchasing the physical devices and implementing the new system, if the device is lost, stolen, or damaged, the enterprise will incur even more significant costs. In the context of business use of the device, the company incurs the cost of lost productivity from a worker who cannot access company information, as well as the cost of replacing the actual device. In the context of consumer use, if the consumer cannot access his or her accounts because of a lost device, the direct costs, and more significantly the indirect costs incurred by the enterprise to assist the consumer in gaining access far outweighs the advantages of using the device system.
- U.S. Patent Application Publication No. 2003/0191947 to Stubblefield uses inkblots as images for authentication of a user's identity when logging into computer systems.
- the authentication method described in this patent provides for a display of a random sequence of inkblots that the user has identified when he or she enrolled his or her login information.
- One drawback to this process stems from the identification of the inkblot. Although the user is required to identify and verify the alphanumeric text associated with the inkblots in the enrollment process, the ineffable nature of inkblots will cause consumers problems in remembering the code for their inkblot selections.
- U.S. Patent Application Publication No. 2004/0230843 to Jansen which is a login authentication process using a sequence of images selected by the user, illustrates the potential of image-based authentication in protecting users from identity theft.
- the authentication method described in this patent application begins with the user selecting an image theme, such as animals, and then selecting a sequence of images within the image theme that becomes the password (e.g. if the category chosen is animals, one possible sequence is horse, cat, dog, cat, cat, horse).
- the success of the login process is predicated on the user's ability to replicate the sequence of images he or she has chosen within the image theme. In other words, the user must memorize the proper sequence.
- U.S. Patent Application Publication No. 2005/0268100 and Publication No. 2005/0268101 to Gasparini et al. discloses two way authentication including images which serve as customization information so that an entity can authenticate itself to a user, but is otherwise dissimilar.
- an improved system and method is needed to create password values that are both exceedingly difficult for an intruder to compromise, while simultaneously easy for a user to apply and maintain.
- the present invention provides a system and method for the secure identity authentication to a computer system. It is a further object and purpose of the present invention to provide an authentication and security system, which requires graphical discernment of one or more image categories from a grid of distinct visual images.
- Various aspects of the invention described herein may be applied to any of the particular applications set forth below.
- the invention may be applied as a standalone authentication system or also as a revenue generating advertising component to an integrated authentication solution.
- the invention can be optionally integrated into existing business and authentication processes seamlessly. It shall be understood that different aspects of the invention can be appreciated individually, collectively or in combination with each other.
- An aspect of the present invention provides an enrollment mechanism and process for new or first-time users. During an enrollment stage, a user will be required to select a series of one or more image categories, which will serve as the user's authentication sequence.
- Another aspect of the invention provides systems and methods for providing graphical image authentication of a user.
- An embodiment provided in accordance with this aspect of the present invention requires the user to input a username at the point of user login. After validating the username, a grid of images corresponding to the pre-defined categories will be displayed. One image from each category will appear at a random location within the grid. If the number of available categories exceeds the number of image positions in the grid, the displayed categories may be selected from the pool of available categories.
- a preferable embodiment of the present invention overlays each image with a randomly generated sequence of one or more characters. This sequence is known as an “image key” or “image identifier.” Within the image grid, the user will identify the images corresponding to the pre-selected authentication sequence, and input each associated image identifier in the provided input field. In accordance with these and other embodiments of the present invention described elsewhere herein, the identity of a user can be authenticated by matching the image identifier(s) input by the user with the correct image identifiers(s) derived from the pre-chosen authentication sequence.
- Another aspect of the present invention provides authentication systems that are essentially immune from attacks using keystroke loggers.
- Preferable embodiments of the invention include a corresponding image identifier for each image that is a randomly generated sequence of one or more characters.
- the authentication sequence can be input by the user using or entering the series of one or more randomly generated image identifiers. Without the images displayed, the text entered by the user will be effectively random characters and will not provide clues to the authentication sequence of the user. Attackers will not be able to ascertain the image category authentication sequence of a user by capturing keystrokes.
- Preferable embodiments of the invention display different images with different randomly generated image identifiers during a subsequent authentication process such that a previously observed set of keystrokes or password will not be accepted. It shall be understood that as with other embodiments of the invention herein, the combination of one or more image identifiers derived from a given set of displayed images may preferably give rise to a new password at each login or step in a process calling for authentication.
- the risk of attacks involving shoulder surfing is also mitigated.
- traditional username/password authentication systems could be compromised if attackers visually discern the keystrokes entered by the user during the login process.
- the present invention requires the attacker to visually discern both the keystroke entered by the user in the form of image identifier as well as the graphical discernment of the images for the mapping between image identifier and the image category.
- the authentication sequence of the user is compromised only if both forms of information are captured. Accordingly, this aspect of the invention increases the difficulty in successfully executing such kinds of attacks committed while users are entering password information.
- the search space for a preferable embodiment of the present invention that renders a grid of generated images during an authentication process is equal to:
- g is the number of elements in the image grid and n is the length of the authentication sequence to be entered by a user.
- n is the length of the authentication sequence to be entered by a user.
- a reasonable implementation of the invention may call for a grid size of 16, and an authentication sequence length of 3. This would result in a brute force search space of:
- the brute force attack would succeed after 2048 tries. While this seems like a low number in the context of security algorithms, risk is mitigated by the nature of the algorithm as well as by additional safeguards.
- the mapping between the image identifier and the image category in preferable embodiments of the invention requires graphical discernment of images. Image identifiers could be obfuscated on the image using captcha techniques, making them discernable only by humans. This means the brute force attack must be perpetrated by a human and cannot be automated. An automated agent could only randomly guess the image identifier. Accordingly, the search space for the instance of this brute force attack is:
- the threat from brute force attacks could be further mitigated by implementing a timed lockout policy after unsuccessful logins.
- a reasonable policy would be to temporarily disable the account for 10 minutes after three unsuccessful logins in a row.
- the time it would take to succeed with a brute force attack would be:
- the size of the image grid, the length of the authentication sequence, and the lock out time could be increased to exponentially increase the brute force search time.
- More preferable embodiments of the present invention can be implemented in conjunction with a traditional identity authentication paradigm such as username/password as an extra layer of security, thereby increasing the security provided by the overall system.
- Another aspect of the invention provides systems and methods for sponsored authentication.
- the invention may also facilitate advertisement campaigns by displaying images, descriptions, and/or references supplied by or chosen by advertisers.
- Preferable embodiments of the invention provide a series of one or more graphical images displayed in a predetermined grid or other arrangement for viewing by the user. Because the user is conducting an authentication process, it is highly likely that the user is giving his/her full or undivided attention to the graphical image and its corresponding image identifier. This level of attention and ability to target advertising based on a preselected category of images by a user creates a powerful marketing and advertisement opportunity.
- Preferable embodiments of the invention may be extended by replacing or augmenting the images in the image grid with audio, video, or other forms of media or multimedia. This aspect of the present invention provides a number of other preferable embodiments or models as set forth in further detail herein.
- FIG. 1 For example, networked computer systems, automated teller machines (“ATMs”), mobile telephones and devices, personal digital assistants (PDAs including Blackberry or similar devices with e-mail and Internet access capabilities), and online retail web sites and banking services.
- ATMs automated teller machines
- PDAs personal digital assistants
- Many of the computer-based systems used today which rely on single factor authentication such as entering a password or access code which can be modified in accordance with the invention in order to provide stronger authentication before allowing access to secured information and resources.
- WAN wide area network
- LAN local area network
- Access can be provided at a local node or other such client computer within the network such as user personal computers (“PCs”).
- PCs user personal computers
- Such systems with display capabilities may identify the user to the network by accepting a user name or initials (which may be referred to as the “User ID”), and then authenticate the user upon entry of one or more appropriate password elements derived from an dynamic arrangement of graphical images such as a visual grid.
- a user may seek to obtain access to a secure networked resource, such as a World Wide Web (“Web”) site on the Internet or other online service. This may include access to online banking services or other information subject to restricted access. Furthermore, the user may want to shop for and purchase a product or service available via a retail Web site. The user may be authenticated in accordance with the concepts of the dynamic graphical image arrangements described elsewhere herein before gaining access to a secured resource or conducting an online purchase requiring entry of credit card number or similar information to make a transaction.
- a secure networked resource such as a World Wide Web (“Web”) site on the Internet or other online service. This may include access to online banking services or other information subject to restricted access.
- the user may want to shop for and purchase a product or service available via a retail Web site.
- the user may be authenticated in accordance with the concepts of the dynamic graphical image arrangements described elsewhere herein before gaining access to a secured resource or conducting an online purchase requiring entry of credit card number or similar information to make a transaction.
- a user typically will be provided with a card having a readable magnetic strip which identifies the user to the ATM network.
- a conventional static personal identification number, or PIN which must be entered by the user
- an arrangement or grid of dynamic graphical icons can be presented such that corresponding password elements corresponding to icons falling within an authenticating category can be entered by the user.
- the password element(s) can be different between logons or transactions.
- the password element(s) may be entered through an alphanumeric keypad ordinarily used for PIN entries.
- the user can then be granted access to bank accounts in order to conduct transactions such as withdrawal of cash and a wide range of other banking activity, including online banking transactions.
- digital representations or images of financial documents or instruments such as checks can be displayed to a user following authentication.
- a cashed check can be displayed to the user after processing by known check imaging systems (e.g., Merchant Capture) that may transform paper checks into images.
- check imaging systems e.g., Merchant Capture
- ACH Automated Clearing House
- Secured systems such as the ones described above and others can be guarded against fraud and theft by implementing dynamic graphical password systems provided herein.
- password elements within a graphical image arrangement preferably change in between sessions or transactions, there is no imminent breach of or loss of security even if a perpetrator observes entry of the actual password sequence.
- Someone observing entry of the password elements by the user cannot readily determine the relevant authenticating category or logic behind the password based on observation of the key entries alone since the locations and selection of the graphical images or icons are preferably randomized.
- the selection of displayed graphical images, their positioning within an arrangement or grid, and their corresponding password elements are preferably varied between authentication processes.
- the user does not have to memorize exact password characters but can rather look for graphical images falling within a selected authenticating category and enter in corresponding password elements as to those images only. Accordingly, various types of the over-the-shoulder attacks can be defended against by applying these and other concepts of the invention.
- FIG. 1 illustrates a simplified flowchart diagram of an enrollment process used in connection with the present invention directed to a graphical image authentication and security system
- FIG. 2 illustrates a simplified flowchart diagram of a preferred embodiment in accordance with the present invention directed to a graphical image authentication and security system
- FIG. 3 illustrates a simplified flowchart diagram of an alternate embodiment of the present invention.
- FIGS. 4 and 5 illustrate examples of screen displays that would be incorporated as a part of the present invention as shown in FIGS. 2 or 3 .
- FIG. 6 illustrates a display device for rendering an arrangement of icons.
- FIG. 7 shows a dynamic graphical password grid that includes various graphical images corresponding to advertisement campaigns.
- FIG. 8 is a flowchart describing methods of authenticating users in accordance with the invention.
- FIG. 9 is an illustration of client/server architecture for user authentication over the Internet.
- the present invention provides a method and system for user identity authentication to a computer system which requires users to select an authentication sequence based on categories during enrollment and recreating the authentication sequence during login by graphically discerning images belonging to the previously selected categories.
- FIG. 1 illustrates a simplified flow chart diagram of an initial enrollment process in order to enroll a user to utilize the present invention.
- the user shown as 2 will be presented with an initial enrollment screen in box 4 where the desired username is entered in diamond 6 .
- a second enrollment screen in box 8 is presented to select the traditional password and the image category authentication sequence for the system.
- the authentication information is entered in diamond 9 and stored into the authentication database in box 10 .
- FIG. 2 illustrates a simplified flowchart diagram of a preferred embodiment of the present invention.
- a graphical image authentication and security system is used in conjunction with a traditional username/password authentication paradigm to increase the overall level of security in a system.
- the overall process includes a number of discreet steps to authenticate identity to a computer system.
- the computer device operated by the user may include a personal computer (PC) having a central processing unit (CPU), a keyboard or other input device and monitor; a personal digital assistant (PDA); a user terminal at a bank automated teller machine (ATM); a cellular mobile telephone; or other device.
- PC personal computer
- CPU central processing unit
- PDA personal digital assistant
- ATM bank automated teller machine
- cellular mobile telephone or other device.
- the user 12 will enter a first login account identifier, such as his or her username, and a traditional password, represented by diamond 14 in an input device such as a keyboard.
- a first login account identifier such as his or her username
- a traditional password represented by diamond 14 in an input device such as a keyboard.
- the username may be a series of alphanumeric characters, as is well known.
- the password may be a series of alphanumeric and special characters, as is well known.
- FIG. 4 shows an example of the traditional username/password login screen.
- the username/password is validated in box 16 . If the authentication fails because of the username/password entered, a fake grid of images that appears normal is displayed as shown at box 20 , the user will be able to enter an image identifier normally at diamond 22 however any authentication attempt fails as shown at reference numeral 26 . If the username/password pair is authenticated, an image grid will be generated and displayed at box 34 . The cells of the grid will display images from different categories (such as those in FIG. 5 ). The location of the categories in the grid is randomized. The specific image for each category is chosen randomly from a database of images for that specific category. Each image will be overlaid with a unique randomly generated image key. Captcha techniques could be employed to obfuscate image keys so they are not machine-readable. This would require human perception and cognition to mediate the login which could prevent automated brute force attacks on the authentication process.
- the user will select the image on the grid according to the categories in their authentication sequence by entering the image key overlaid on the images, box 36 .
- the sequence of image keys is sent to the authentication server for validation, box 38 . If the image keys are validated, the authentication concludes successfully, box 40 . If the image keys are not validated, authentication fails and the login process must be reinitiated. A timed lockout of 10 minutes as shown by 18 is applied after three unsuccessful logins to mediate the threat from brute force attacks that attempt to guess an authentication sequence.
- FIG. 3 illustrates an alternate embodiment of the present invention that extends the preferred embodiment from FIG. 2 to incorporate advertisements.
- the enrollment process for this embodiment will be identical to that of the previously described embodiment illustrated in FIG. 1 , and the login process is also similar to that illustrated in FIG. 2 .
- the user 42 will enter a first login account identifier, such as his or her username, and a traditional password, represented by diamond 44 in an input device such as a keyboard.
- the username may be a series of alphanumeric characters, as is well known.
- the password may be a series of alphanumeric and special characters, as is well known.
- the username/password is validated in box 46 .
- FIG. 4 shows an example of a traditional username/password login screen that may be displayed to a user for entry of authentication information in any of the embodiments of the invention described herein.
- the cells of an image grid will display a variety of images from different categories.
- the location of the categories in the grid is randomized.
- the specific image for each category is chosen from a database of images for that specific category.
- Each image will be overlaid with a unique randomly generated image key. Captcha techniques could be employed to obfuscate the image key so that it is not machine-readable. This would require a human to mediate the login and prevent automated brute force attacks on the authentication process.
- An ancillary benefit of the present invention stems from the requirement of the user to view each of the visual images to determine which image is in the user's category. Advertising opportunities are presented for advertisers to display products in an array of images. The user cannot ignore the advertising, since the user must view and discern each of the images presented during authentication in order to choose the appropriate user selected image category.
- the images in the database for this embodiment will contain advertisement images provided by advertisers.
- the image selected to be displayed on the grid will be based on the websites, the advertisement campaigns, and other parameters.
- the image grid displayed in box 48 and 50 will behave identically.
- the diamond in 54 is abbreviated and embodies 52 , 60 , and 56 .
- additional information and links about the advertisement will be provided (which could otherwise be displayed automatically without cursor movement by the user). If the user chooses to follow an advertisement link, the destination of the link will open in a new window as shown in 60 .
- the user finishes browsing the advertisement website the user will return to the log in screen through diamond 58 .
- the user would not need to reenter the username and password after viewing an advertisement link, or in an alternative embodiment, the user would have to reenter authentication information after viewing an advertisement link, preferably when a predetermined amount of time has passed for security purposes.
- the image grid is refreshed and displayed again in 48 and 50 respectively.
- the user will select the image on the grid according to the categories in their authentication sequence by entering the image key overlaid on the images, box 64 .
- the sequence of image keys is sent to the authentication server for validation, box 66 . If the image keys are validated, the authentication concludes successfully, box 70 . If the image keys are not validated, authentication fails at 68 and the login process is reinitiated. A timed lockout of 10 minutes is applied after three unsuccessful logins to mediate the threat from brute force guessing of the authentication sequence, box 72 .
- a preferable embodiment of the invention provides an authentication system that generates an arrangement of dynamic images.
- the arrangement of dynamic images may preferably provide a user with a one-time or persistent access code that can be entered at the last minute, and just in time for login.
- the images in the arrangement which may be arranged in what may be characterized as a dynamic image grid pattern, can be different and/or arranged differently each time a user logs in or performs some other action requiring an authentication process.
- the user knows which image(s) to look for and select within the arrangement because the images are based upon a preselected category designated by the user or third party during an enrollment process as described elsewhere herein.
- While a series of one or more graphical images within an arrangement can be dynamically altered in between logins or authentication processes, the preselected category can remain the same from the perspective of the user so long as desired or permitted according to established guidelines. So even if stronger authentication is provided in accordance with this embodiment of the invention, which eliminates any reliance on static hard-to-remember passwords or challenge questions, it may be preferred for certain applications to require a user nonetheless to renew or pick another category of images as the basis for a password or access code when desired (change password option) or after a specified length of time (automatic expiration of passwords that provide a number of opportunities to voluntarily change the category before it is mandatory pursuant to an established protocol).
- the categories of images displayed within a dynamic image arrangement may include the following: horses, flowers, mountains, money, objects in space, boats, airplanes, golf and cars.
- the image of an object falling within each of these categories can be shown in a predetermined arrangement such as a 3 ⁇ 3 grid or a tic-tac-toe grid for preferable embodiments of the invention.
- a category was chosen or designated by the entity requesting authentication such as a financial institution.
- the basis for a user selection could be some thing(s) that could be easily remembered by that person or something of interest such as cars, for example.
- the user can look for and find any image(s) displayed within the arrangement falling within the selected category of cars.
- the user is able to view an access code corresponding to the image representing the category. That access code becomes the password or portion of a password to the user for logging onto the system or during that particular authentication process.
- a variety of images falling within the selected category and non-selected categories will be arranged, preferably in a random manner.
- the images representing these categories can be randomly chosen among dozens, hundreds or more images in each category.
- the access codes corresponding to the images are preferably different with each login or authentication process, even if the user is being keystroke logged, the keystrokes observed are useless on future login or authentication attempts.
- the basis for selection by the user of the access codes and corresponding images is relatively difficult to identify. It may not be readily apparent to an ordinary observer (or fraudster) as to what is the reference point to the user or why a user selects certain images over others. Without explicitly revealing the authenticating category (shared secret), the user is therefore able to complete an authentication process with added security.
- the graphical passwords provided in accordance with this aspect of the invention include images or icons corresponding to one of any number of selected categories which forms the basis of authentication.
- one or more graphical images such as icons can be displayed to a user on a display device according to a predetermined arrangement or pattern.
- a corresponding access code or password element PE 1 , PE 2 . . .
- the series of one or more password elements can be therefore entered by the user as a password for that particular authentication process.
- the same password or combination of password elements does not work for a subsequent authentication process in accordance with a preferable embodiment of the invention.
- the series of one or more graphical images and corresponding password elements that make-up dynamic passwords are preferably changed between each authentication processes. But the authenticating category of images remains the same or unchanged for the user until an authorized change is made.
- the authenticating and non-authenticating categories of graphical images are not limited to particular objects only but can include any variety of themes or topics. This allows a wide variety of easy-to-remember categories which avoids requiring a user to memorize conventional character-based character strings or having to enter characters generated periodically by separate hard tokens (e.g., RSA SecureID tokens) since the password elements are displayed concurrently with intuitive corresponding graphical. images.
- the graphical images or icons with respect to FIG. 6 are displayed to a user and may serve indirectly as constantly-changing yet identifiable reference points to password elements. It shall be further understood that the one or more graphical images may be organized in a selected arrangement such as a series of rows and columns (matrix), arrays or any other pattern within a display image.
- the display device illustrated in FIG. 6 may receive information to render a display image with two icons and two corresponding password elements.
- Icon # 1 may be an image of a Rolls Royce
- Icon # 2 may be an image of a banana.
- Icon # 1 may include and display a corresponding PE 1 that is “AB”
- Icon # 2 may include and display a corresponding PE 2 that is “CD.”
- An authentication server system (not shown) connected to the display device can compare the selected password elements against a reference password generated for that authentication process.
- the reference passwords may be generated by a variety of random number or character generator programs. Accordingly, a perpetrator or even an authorized user would not know what password elements to enter prior to viewing the display image, but only the user would preferably know the authenticating category and look for intuitive graphical icons corresponding thereto while ignoring those from non-authenticating categories. Preferable embodiments of the invention would render each time different types of icons to the user within a particular authenticating category and/or different password elements (alphanumeric characters, symbols).
- the authentication systems and methods herein can generate another series of icons in a different random pattern on the display device, preferably with a different display image background, and preferably with different icons corresponding to both authenticating and non-authenticating categories.
- a dynamic graphical image grid can be displayed having a plurality of advertisements or messages paid by sponsors or advertisers.
- advertisements can be introduced into the authentication systems and methods herein.
- Such advertisements or sponsored messages can serve the dual-purpose of authentication and generating advertising revenue.
- the advertisements or messages themselves can function as the graphical images viewed by users which fall into authenticating and non-authenticating categories. While user attention may be greater for advertisements relating to an authenticating category for the user, advertisements relating to non-authenticating users are also valuable as they too are displayed.
- a dynamic image grid as shown in FIG. 7 may include a selected arrangement of advertisements (ads) that may be rendered during each authentication process for different users.
- the arrangement may include any number of ads displayed for viewing, but a preferable embodiment of the invention is shown having nine (9) ads arranged in a 3 ⁇ 3 grid (AD 1 - 9 ) each having a corresponding password element (PE 1 - 9 ).
- AD 1 and AD 9 may thus include ads for cars sold by Car Manufacturer #1 (e.g., Ford).
- AD 2 and AD 8 may include ads for bottles of wine sold by Wine Maker #1 (e.g., Gallo), and AD 3 and AD 7 may be ads for cosmetics sold by Cosmetics Company #1 (e.g., Avon) etc.
- a user who selected or was assigned an authenticating category of automobiles would type or enter within a PASSWORD field the characters displayed for PE 1 and PE 9 .
- an authenticating category is wine
- the user would select PE 2 and PE 8 .
- cosmetics are chosen the authenticating category
- the user would select PE 3 and PE 7 . While some of the preceding examples describe the use of passwords composed of two or three password elements, it shall be understood that any number of one or more password elements may be used for authentication.
- ads may cross numerous markets such as consumer products when a user selects a theme such as “red” or “things that are red.”
- the authentication password would be the combination of PE 1 +PE 2 +PE 3 when AD 1 is a red Mustang, AD 2 is a bottle of cabernet sauvignon, AD 3 is a tube of lipstick.
- this aspect of the invention can be applied to other embodiments of the invention described herein which provide arrangements of dynamic graphical images or icons. Rather than categorizing an object to be displayed based on what it is—the thing itself—alternative embodiments of the invention may include categories of graphical or visual images, icons or ads that are based on some common attribute, feature, theme or characteristic of the displayed object—something about the thing.
- a user may select an authenticating category based on a certain “attribute” about the (displayed images) such as “things featuring water” (a beach, a pool, rain, bottled water), “things that are round” (a golf ball, a hot air balloon, a tire), “things that are blue” (a clear sky, a blue tropical fish, a blue shirt, a recycling bin for glass/plastic), and “things made of wood” (a baseball bat, a log cabin, a tree, a forest).
- a certain “attribute” about the (displayed images) such as “things featuring water” (a beach, a pool, rain, bottled water), “things that are round” (a golf ball, a hot air balloon, a tire), “things that are blue” (a clear sky, a blue tropical fish, a blue shirt, a recycling bin for glass/plastic), and “things made of wood” (a baseball bat, a log cabin, a tree, a forest).
- ads or graphical images herein may fall within one or more categories available as a way to authenticate a person. Ads or graphical images can be also displayed more often within regularly scheduled display cycles even if they are within non-authenticating categories. The ads or graphical images that are selected for display within an arrangement or grid may nevertheless capture the attention of users even if they do not necessarily fall within an authenticating category since graphical images or ads for non-authenticating categories are also displayed.
- the sequence in which the password elements (image identifiers) are entered may be of consequence or not depending upon the desired level of authentication.
- their order or sequence matters e.g., PE 1 +PE 9
- typically stronger authentication is offered when compared to authentication where order does not matter and can be completed with any sequence of one or more password elements (e.g., PE 1 +PE 9 or PE 9 +PE 1 ).
- an intuitive or explicit order of entry can be provided to the user. For example, when presented by a 3 ⁇ 3 grid such instruction may not be required as the user may be reminded of a telephonic keypad with consecutive numbers 1-9.
- the order of entry may be therefore entering characters within password elements from top to bottom of the display, and from left to right.
- FIG. 8 is a flow diagram describing another aspect of the invention that provides various methods of authentication using dynamic graphical images.
- a plurality of graphical images may be stored within a database or a computer memory that correspond to one or more available categories. From the numerous available categories, a user may designate an authenticating category from the plurality of categories during an enrollment process.
- a dynamic graphical image arrangement may be generated by a server system containing at least one graphical image, and at least one corresponding image identifier or password element.
- a random password generator may construct a reference password to be used for an authentication process, such as “4847.” Each character or digit within the password may be assigned as the image identifier (or part thereof) to preselected images falling with the authenticating category.
- a series of other graphical images from non-authenticating categories may be also assigned non-authenticating image identifiers to fill-out the arrangement.
- the server system may be instructed to randomly select (or not) the pattern in which to present the graphical images to the user.
- the graphical images falling within the authenticating category may be randomly (or not) positioned within the arrangement, and their corresponding image identifiers are displayed too.
- the graphical images from non-authenticating categories can be randomly (or not) positioned within remaining portions of the arrangement.
- four (4) graphical images of one or more cars can be displayed as part of an authenticating category of automobiles, each having a corresponding image identifier “4,” “8”,“4”, and “7.”
- twelve (12) graphical images from non-authenticating categories are displayed to fill-out the arrangement which preferably have nothing to do with automobiles.
- the image identifier information and associated data for the generated arrangement is then stored by the server system in a memory.
- the arrangement or layout of the graphical images, the images themselves, and the characters of the displayed image identifiers, are preferably different between authentication processes. Alternatively, any or all of these properties may remain the same (static) in between authentication processes.
- the authenticating category can remain the same until an authorized change is made which can be accomplished in a manner similar to the enrollment process described above.
- the arrangement of dynamic graphical images can be delivered and presented to a user on a display device or display within the client system.
- the user may input the one or more image identifiers (e.g., 4-8-4-7) corresponding to the graphical images falling within the designated authenticating category.
- the client system receives the input from the user, and transmits it to the server system, which compares the image identifier information to the stored reference password (e.g., 4847).
- the server system which compares the image identifier information to the stored reference password (e.g., 4847).
- the reference password e.g. 4847
- authentication can be completed and access granted to the requested resource, online account or any other secured information.
- image identifier information or a password does not match the references password, then access is denied.
- a user may be also permitted a predetermined number of attempts before account lock-out or any other administrative action is instituted such as the implementation of network security measures indicating the possibility of hacking or attacks.
- FIG. 9 illustrates an authentication system provided in accordance with another embodiment of the invention.
- a server system may include or be configured as an authentication server that generates an arrangement of pseudo-randomly positioned images or icons each associated with a password element.
- the arrangement may include one or more authenticating images, which form at least part of an authenticating sequence, plus one or more non-authenticating images or icons that do not form at least part of the authenticating sequence. Thereafter the arrangement can be sent to the client system for display on a display device.
- the user may select or input the image identifiers or password element(s) corresponding to the images or icons selected within the arrangement. Selected password elements can then be communicated by the client system to the server system.
- the server system can compare the user selected password elements relative to a reference password, and further analyze related information with any other associated authentication data that may be stored in a memory within the server system.
- the authentication system may be configured to accept either a sequential or non-sequential entry of password elements in order to properly authenticate a user. Upon the correct entry of the one or more password elements, which matches the reference password, authentication of the user can be completed.
- the term “password” can be described as a form of secret authentication data that is used to control access to a resource. It need not be an actual word and can be a series of one or more alphanumeric characters or symbols, for example. In controlling access to resources, there are often trade-offs between security and convenience. The accessibility of password-protected systems can depend on a variety of parameters taking into consideration the level of security desired. While earlier forms of passwords may have been limited in the possible number of characters or numbers (e.g., max.
- passwords today there are very few limitations to available passwords today which could also be incorporated into the methods and systems provided herein (e.g., combination of numbers and upper/lower case letters with character lengths of 6, 7, 8, 9 or more, symbols, punctuation, and device inputs).
- selected password strengths may be chosen for different applications in accordance with the invention. For applications that may not require stronger security, a relatively weak password can be adopted for the sake of convenience that prompts users for entry of only a few characters or password elements. For applications that may require stronger security, a relatively strong password can be adopted that includes a longer string and/or combination of characters to better withstand a brute force attack based on subsets of words from a dictionary or similar source.
- a pseudo-random or random password generator may be incorporated with the invention that can be provided as a software program and/or hardware device.
- an input is received from a random or pseudo-random number generator which in turn creates a password.
- a variety of known random password generators may be selected for the authentication systems and methods herein that can generate a string of characters etc. of any desired length. It shall be understood that selected passwords and password generation programs can be customized or modified to comply with established or desired password policies setting forth the kinds of password elements that can be used or combinations thereof to produce a mix of letters, numbers, symbols, characters etc.
- the authentication systems provided herein may include a client system with which a user interacts, and a server system to which the user wants to gain access.
- the server may control access to a resource, a database or file system, or a private communication channel.
- the server may also include a computer readable memory, a comparator and a communications interface such as a modem or network adapter with appropriate software drivers that support communication with the client system over a communications system.
- the server system may further include a secured network, file systems or resources and information stored in databases as described elsewhere herein.
- the databases may contain one or more libraries of graphical images or icons that can be displayed for authentication and other purposes (e.g., advertising).
- the server system may also include numerous devices such as file servers (Web site servers), authentication servers, password databases, repositories or databases of graphical images or icons that may be identified as part of authenticating and non-authenticating categories.
- a memory device in the server system may store information regarding the relationship between the graphical images and image identifiers displayed to a user during authentication.
- a memory look-up table can be used to store this information for mapping this information.
- the memory may be implemented using random access memory (“RAM”), flash memory, disk drives or any other rewritable memory technology. In some applications, the memory may also be implemented using non-rewritable memory such as read only memory (“ROM”) chips.
- the client system may include various devices such as a desktop or laptop computer, a PDA, an ATM, or any device capable of displaying graphical images having a key entry pad or keyboard for entering data.
- a client system device preferably includes an input device, a display device and an appropriate communications interface which allows data from the input device to be transmitted to the server system.
- the communications interface might include a modem, network adapter, radio transmitter/receiver, or other such communications devices, along with appropriate software.
- the display device may be any type of display capable of displaying various graphical images or icons, such as computer monitors and flat panel displays.
- the input device may a computer keyboard or a keypad, or other such entry system that allows image identifiers or password elements to be entered.
- the client and server systems can communicate over a variety of telecommunication systems including wireless networks.
- the telecommunications system may also include a variety of data communications systems generally known in the art such as a LAN, a WAN, a wireless system such as cellular, satellite and personal communications services (“PCS”) systems, or a dedicated line or connection.
- PCS personal communications services
- server side and client side do not require a direct communication therebetween and intermediate computers may be present.
- a computer acting as a server could transmit information to an intermediate computer which could then transmit the information to another computer where the user enters data.
- client and “server” as used herein are general and are not limited to so-called “client/server” systems. It shall be further understood that references to a server and a client also may apply to a peer-to-peer system or architecture with any two communicating computers, where at least one such computer controls or possesses a resource, and another computer is used to access the resource.
- a user may select a device (client) on which to access a secured resource or information stored on a server system.
- the user may be identified by the server system with an account number, name or other user identification information.
- the server system determines the user is a recognized user, it can generate a display image including an arrangement of dynamic graphical images or icons arranged for presentation on the display device.
- the server may generate the display image by selecting, pseudo-randomly in a preferable embodiment, graphical images based on prior user selection or otherwise of an authenticating category.
- display image may be pre-generated or displayed according to a pre-established routine or computer program, and stored in a database system.
- the display image and graphical display images or icons may be implemented as a bit mapped image, a raster image or in any other suitable image file format.
- the display image may also include image identifiers corresponding to each of the graphical images or icons displayed.
- the user may input an image identifier sequence corresponding to graphical images within an authenticating category.
- the arrangement of the images is pseudo-randomly varied with each server access request.
- the particular images/scheme and image identifiers presented in the display image may be varied with each authentication process.
- the appropriate image identifiers for authenticating images within the display image are identified by the user.
- the user enters on the input device the image identifiers by the user and communicated to the server system.
- the sequence in which the password information is entered is important in which case the user understands or is advised of the order of entry (left to right, right to left, top to bottom, bottom to top).
- the server system utilizes a comparator to compare the selected image identifiers with reference password information as described elsewhere herein.
- the comparator in the server system can compare the one or more image identifiers entered by the user to reference password information to determine whether they correspond to each other and match. If so, the user will be allowed appropriate access to the server system. It shall be understood that the comparator, and other components to the aforementioned client/server systems implemented in any of the authentication systems and methods herein, may incorporate software using techniques known in the prior art.
- Many embodiments of the invention can provide dynamic image authentication arrangements that can be incorporated into existing authentication systems for preventing unauthorized access. Because cyber crimes often begin with unauthorized users gaining access to accounts to online accounts and applications, concepts of the invention herein can be implemented to create a first line of defense that provides stronger user authentication.
- Various embodiments of the invention provide secure login routines for user authentication that are effective against many prevalent forms of hacking, including historic threats like phishing, as well as new and growing threats like brute-force attacks, keystroke logging, and man-in-the-middle (MITM) spying. Additional embodiments of the invention can be modified for a variety of applications including network login, virtual private network (VPN) access, and web-based applications and websites.
- VPN virtual private network
Abstract
Systems and methods for providing authentication using an arrangement of dynamic graphical images. The graphical images can be arranged as a grid or matrix for presentation on a device display for authentication of a user. The kinds of graphical images can be derived from a designated authentication category and non-authenticating categories. A series of password elements corresponding to the graphical images can be displayed with the graphical images. The user may enter the series of one or more password elements corresponding to graphical images from the authentication category which combine to form a password entry. An authentication server can compare the password entry to an authentication password corresponding to the particular arrangement of dynamic graphical images. The selection of graphical images, their arrangement and their corresponding password elements, may dynamically change in between authentication processes.
Description
- This is a continuation-in-part patent application claiming the benefit of priority to U.S. patent application Ser. No. 11/420,061 filed on May 24, 2006, which is hereby incorporated by reference herein its entirety.
- 1. Field of the Invention
- The present invention is directed to a method and system of authenticating identity to a computer system. In particular, the present invention is directed to a graphical image identity authentication system.
- 2. Background
- Computer networks, particularly those with global reach such as the Internet, have greatly influenced the way that individuals, companies and institutions conduct transactions, and store and retrieve documents, images, music, and video. Convenience, ease of use, speed, and low overhead costs are contributing factors to the widespread use of the Internet for purchasing goods as well as conducting confidential transactions. Entire industries have emerged as a result of the evolution of the Internet.
- Secure access to computer systems and computer networks has been traditionally guarded with a username and password pair. This requires the user to protect the username and password from unauthorized use. If the username and password are not protected, accounts and files can be compromised. Unfortunately, a number of rogue individuals and organizations have emerged that are dedicated to fraudulently obtaining confidential information for unauthorized or criminal activities.
- A pervasive tool used in obtaining confidential information is keystroke-logging software, which constitutes a program that monitors and records what users type on their computers. Such software often comprises the payload of viruses, worms, Trojan horses, and other forms of malware. Keystroke-logging software can reveal what a user is typing on a computer without the user's knowledge of this event occurring.
- Companies and institutions routinely use keystroke-logging software to monitor employee activity. Also, families may use these types of programs to monitor children's online activities. The widespread availability of this type of software, however, has led to unauthorized or criminal use, resulting in the alarming rate of identity theft seen throughout the world.
- Prime targets for these attacks are financial institutions, as more and more consumers and businesses use electronic methods for purchasing and making payments. According to the American Banker's Association, cash and checks now account for only 45 percent of consumer's monthly payments, down from 57 percent in 2001, and 49 percent in 2003. The trend is clearly in favor of electronic transactions, providing a wider field for identity theft.
- Login information may also be “heard” by sophisticated analysis of the distinct sounds made by different keys. An inexpensive microphone near a keyboard can reveal most of what is being typed with a surprising degree of accuracy
- (http://www.schneier.com/blog/archives/2005/09/snooping_on_tex.html). The present invention thwarts attempts to record the successful completion to the login process, as the keystrokes typed cannot be linked to the user's true authentication parameters.
- Login information is also vulnerable to simple spying or “shoulder-surfing,” as a person with malicious intent watches an unsuspecting user sign into his or her account. The present invention employs a method that significantly reduces the likelihood of a successful shoulder-surfing style of attack.
- Additional security mechanisms are necessary in addition to the username/password paradigm to provide stronger identity authentication. There have been various other attempts to do so.
- Enterprises and institutions are using costly physical devices to identify legitimate customers and users. The existing devices generate a unique pass code for each user every 30 to 60 seconds. If an attacker manages to intercept a user ID and password, the information cannot be used to access the site without an additional authentication identifier displayed by the device. The devices significantly reduce instances of identity or information theft, but present challenges for both the institutions and individual users.
- The enterprise may meet with consumer resistance in implementing use of the physical device. If the user does not have the device, he or she cannot gain access to the site. Besides the tremendous initial cost of purchasing the physical devices and implementing the new system, if the device is lost, stolen, or damaged, the enterprise will incur even more significant costs. In the context of business use of the device, the company incurs the cost of lost productivity from a worker who cannot access company information, as well as the cost of replacing the actual device. In the context of consumer use, if the consumer cannot access his or her accounts because of a lost device, the direct costs, and more significantly the indirect costs incurred by the enterprise to assist the consumer in gaining access far outweighs the advantages of using the device system.
- In U.S. Pat. No. 5,559,961, Blonder provides a solution for utilizing graphical passwords. The framework described displays a static image in which the user touches predetermined areas of the screen, called “tap regions,” in a particular sequence. As the user taps various areas on the display, the regions tapped are successively removed from the screen. These regions of the screen, and the order of the sequence they are tapped, are chosen by the user during an initial enrollment phase. The sequence and regions of taps is stored in the system as the user's password. One shortcoming of this solution is the likelihood of a shoulder-surfing attack: once an attacker views a user entering the sequence by touching areas of the screen, he or she is then easily able to replicate the sequence to successfully gain access to the user's account.
- U.S. Patent Application Publication No. 2003/0191947 to Stubblefield uses inkblots as images for authentication of a user's identity when logging into computer systems. The authentication method described in this patent provides for a display of a random sequence of inkblots that the user has identified when he or she enrolled his or her login information. One drawback to this process stems from the identification of the inkblot. Although the user is required to identify and verify the alphanumeric text associated with the inkblots in the enrollment process, the ineffable nature of inkblots will cause consumers problems in remembering the code for their inkblot selections. A frustrated user will simply save their password information on their computer, write the information down, or enter incorrect password information, which defeats the security offered by this system. Also, this process is very intimidating for users, especially those who are neophyte users, because the inkblot is easily misconstrued as a myriad of different objects. The inkblot is just that: a blot on a screen the user will associate with a real world object. If that user misinterprets or forgets the association they have made with the inkblot they are denied access to their system. More importantly, the sequence process significantly increases login time for users. Currently, users are demanding more secure login techniques, but they desire to maintain the same level of convenience that they currently enjoy with the username/password login process. This authentication technique does not provide the ease of use that consumers desire.
- U.S. Patent Application Publication No. 2004/0230843 to Jansen, which is a login authentication process using a sequence of images selected by the user, illustrates the potential of image-based authentication in protecting users from identity theft. The authentication method described in this patent application begins with the user selecting an image theme, such as animals, and then selecting a sequence of images within the image theme that becomes the password (e.g. if the category chosen is animals, one possible sequence is horse, cat, dog, cat, cat, horse). The success of the login process is predicated on the user's ability to replicate the sequence of images he or she has chosen within the image theme. In other words, the user must memorize the proper sequence. One drawback appears to be the complex nature of the sequence process. As defined in the patent application, if a user feels that he or she will be unable to remember the password, the user will simply write down the password so that recall becomes unnecessary. Also, because the images are typically static (the user can elect to “shuffle” images between login attempts, but most will likely stay with the simple default configuration), software can be created to automate the process. In this scenario the authentication requires no human interaction to complete the login, which tremendously decreases the level of security provided. Although the positions of the images can be shuffled within the grid, the fact that they are static means that shuffling only prevents attackers from guessing the likely placement of the sequence, not the images themselves. Moreover, the traditional text password is completely removed from the login process, meaning that the security offered in this solution is only single layer, whereas authentication processes that complement the existing login process provide multiple levels of security.
- U.S. Patent Application Publication No. 2005/0268100 and Publication No. 2005/0268101 to Gasparini et al. discloses two way authentication including images which serve as customization information so that an entity can authenticate itself to a user, but is otherwise dissimilar.
- Because of these noted shortcomings, an improved system and method is needed to create password values that are both exceedingly difficult for an intruder to compromise, while simultaneously easy for a user to apply and maintain.
- The present invention provides a system and method for the secure identity authentication to a computer system. It is a further object and purpose of the present invention to provide an authentication and security system, which requires graphical discernment of one or more image categories from a grid of distinct visual images. Various aspects of the invention described herein may be applied to any of the particular applications set forth below. The invention may be applied as a standalone authentication system or also as a revenue generating advertising component to an integrated authentication solution. The invention can be optionally integrated into existing business and authentication processes seamlessly. It shall be understood that different aspects of the invention can be appreciated individually, collectively or in combination with each other.
- An aspect of the present invention provides an enrollment mechanism and process for new or first-time users. During an enrollment stage, a user will be required to select a series of one or more image categories, which will serve as the user's authentication sequence.
- Another aspect of the invention provides systems and methods for providing graphical image authentication of a user. An embodiment provided in accordance with this aspect of the present invention requires the user to input a username at the point of user login. After validating the username, a grid of images corresponding to the pre-defined categories will be displayed. One image from each category will appear at a random location within the grid. If the number of available categories exceeds the number of image positions in the grid, the displayed categories may be selected from the pool of available categories.
- A preferable embodiment of the present invention overlays each image with a randomly generated sequence of one or more characters. This sequence is known as an “image key” or “image identifier.” Within the image grid, the user will identify the images corresponding to the pre-selected authentication sequence, and input each associated image identifier in the provided input field. In accordance with these and other embodiments of the present invention described elsewhere herein, the identity of a user can be authenticated by matching the image identifier(s) input by the user with the correct image identifiers(s) derived from the pre-chosen authentication sequence.
- Another aspect of the present invention provides authentication systems that are essentially immune from attacks using keystroke loggers. Preferable embodiments of the invention include a corresponding image identifier for each image that is a randomly generated sequence of one or more characters. There may be a predetermined mapping between the image identifier and the image category established by the authentication mechanism ahead of time. Meanwhile, during an authentication process, a user may ascertain that mapping by graphical discernment of the images. The authentication sequence can be input by the user using or entering the series of one or more randomly generated image identifiers. Without the images displayed, the text entered by the user will be effectively random characters and will not provide clues to the authentication sequence of the user. Attackers will not be able to ascertain the image category authentication sequence of a user by capturing keystrokes. Preferable embodiments of the invention display different images with different randomly generated image identifiers during a subsequent authentication process such that a previously observed set of keystrokes or password will not be accepted. It shall be understood that as with other embodiments of the invention herein, the combination of one or more image identifiers derived from a given set of displayed images may preferably give rise to a new password at each login or step in a process calling for authentication.
- With respect to yet another aspect of the invention that provides methods and systems for authentication, the risk of attacks involving shoulder surfing is also mitigated. For example, traditional username/password authentication systems could be compromised if attackers visually discern the keystrokes entered by the user during the login process. The present invention requires the attacker to visually discern both the keystroke entered by the user in the form of image identifier as well as the graphical discernment of the images for the mapping between image identifier and the image category. The authentication sequence of the user is compromised only if both forms of information are captured. Accordingly, this aspect of the invention increases the difficulty in successfully executing such kinds of attacks committed while users are entering password information.
- In terms of brute force attacks, the search space for a preferable embodiment of the present invention that renders a grid of generated images during an authentication process is equal to:
- where g is the number of elements in the image grid and n is the length of the authentication sequence to be entered by a user. For example, a reasonable implementation of the invention may call for a grid size of 16, and an authentication sequence length of 3. This would result in a brute force search space of:
- On average, the brute force attack would succeed after 2048 tries. While this seems like a low number in the context of security algorithms, risk is mitigated by the nature of the algorithm as well as by additional safeguards. The mapping between the image identifier and the image category in preferable embodiments of the invention requires graphical discernment of images. Image identifiers could be obfuscated on the image using captcha techniques, making them discernable only by humans. This means the brute force attack must be perpetrated by a human and cannot be automated. An automated agent could only randomly guess the image identifier. Accordingly, the search space for the instance of this brute force attack is:
- where 1 is the length of the image identifier, r is the range of the image identifier (26 if it is case insensitive alphabetical, 96 if it is displayable characters), and n is the length of the authentication sequence. A reasonable policy could call for an alphabetical image identifier of
length 2. In this case, the brute force search space is: - If the captcha obfuscation could be defeated, it is still effectively impossible with the current state of the art for automated processes to recognize the image category from a random image (i.e. recognize a random image of a Ford Mustang® as an automobile). Therefore, automated agents would not be able to perform a systematic brute force attack. They would have to enter random image identifier at each try. This attack would succeed on average after 4096 tries.
- In accordance with another embodiment of the invention, the threat from brute force attacks could be further mitigated by implementing a timed lockout policy after unsuccessful logins. A reasonable policy would be to temporarily disable the account for 10 minutes after three unsuccessful logins in a row. On average, the time it would take to succeed with a brute force attack would be:
-
(10 minutes)*(4096−3)=40930 minutes=28 days - Furthermore, the size of the image grid, the length of the authentication sequence, and the lock out time could be increased to exponentially increase the brute force search time.
- More preferable embodiments of the present invention can be implemented in conjunction with a traditional identity authentication paradigm such as username/password as an extra layer of security, thereby increasing the security provided by the overall system.
- Another aspect of the invention provides systems and methods for sponsored authentication. In addition to providing authentication solutions to guard against fraud and other types of illegal activity, the invention may also facilitate advertisement campaigns by displaying images, descriptions, and/or references supplied by or chosen by advertisers. Preferable embodiments of the invention provide a series of one or more graphical images displayed in a predetermined grid or other arrangement for viewing by the user. Because the user is conducting an authentication process, it is highly likely that the user is giving his/her full or undivided attention to the graphical image and its corresponding image identifier. This level of attention and ability to target advertising based on a preselected category of images by a user creates a powerful marketing and advertisement opportunity. Preferable embodiments of the invention may be extended by replacing or augmenting the images in the image grid with audio, video, or other forms of media or multimedia. This aspect of the present invention provides a number of other preferable embodiments or models as set forth in further detail herein.
- Other embodiments of the invention provide systems and methods that allow secured data and/or password entry to computer-based systems, such as for example, networked computer systems, automated teller machines (“ATMs”), mobile telephones and devices, personal digital assistants (PDAs including Blackberry or similar devices with e-mail and Internet access capabilities), and online retail web sites and banking services. Many of the computer-based systems used today which rely on single factor authentication such as entering a password or access code which can be modified in accordance with the invention in order to provide stronger authentication before allowing access to secured information and resources. For example, in an office computer environment with access to a computer network such as a wide area network (“WAN”) or a local area network (“LAN”), access by individual users to the computer network can be controlled by dynamic graphical password systems provided herein. Access can be provided at a local node or other such client computer within the network such as user personal computers (“PCs”). Such systems with display capabilities may identify the user to the network by accepting a user name or initials (which may be referred to as the “User ID”), and then authenticate the user upon entry of one or more appropriate password elements derived from an dynamic arrangement of graphical images such as a visual grid.
- For online applications, a user may seek to obtain access to a secure networked resource, such as a World Wide Web (“Web”) site on the Internet or other online service. This may include access to online banking services or other information subject to restricted access. Furthermore, the user may want to shop for and purchase a product or service available via a retail Web site. The user may be authenticated in accordance with the concepts of the dynamic graphical image arrangements described elsewhere herein before gaining access to a secured resource or conducting an online purchase requiring entry of credit card number or similar information to make a transaction.
- In an ATM system, a user typically will be provided with a card having a readable magnetic strip which identifies the user to the ATM network. Instead or relying upon a conventional static personal identification number, or PIN, which must be entered by the user, an arrangement or grid of dynamic graphical icons can be presented such that corresponding password elements corresponding to icons falling within an authenticating category can be entered by the user. As described in the various authentication methods and systems provided herein, the password element(s) can be different between logons or transactions. The password element(s) may be entered through an alphanumeric keypad ordinarily used for PIN entries. After the one or more password elements are verified, the user can then be granted access to bank accounts in order to conduct transactions such as withdrawal of cash and a wide range of other banking activity, including online banking transactions. For example, digital representations or images of financial documents or instruments such as checks can be displayed to a user following authentication. A cashed check can be displayed to the user after processing by known check imaging systems (e.g., Merchant Capture) that may transform paper checks into images. Additionally, other forms of electronic or Automated Clearing House (ACH) payments can be authorized by the user following authentication. It shall be understood that financial transactions and other forms of secured network activity including e-commerce applications can be made more secure in accordance with the invention.
- Secured systems such as the ones described above and others can be guarded against fraud and theft by implementing dynamic graphical password systems provided herein. Because password elements within a graphical image arrangement preferably change in between sessions or transactions, there is no imminent breach of or loss of security even if a perpetrator observes entry of the actual password sequence. Someone observing entry of the password elements by the user cannot readily determine the relevant authenticating category or logic behind the password based on observation of the key entries alone since the locations and selection of the graphical images or icons are preferably randomized. Moreover, the selection of displayed graphical images, their positioning within an arrangement or grid, and their corresponding password elements, are preferably varied between authentication processes. The user does not have to memorize exact password characters but can rather look for graphical images falling within a selected authenticating category and enter in corresponding password elements as to those images only. Accordingly, various types of the over-the-shoulder attacks can be defended against by applying these and other concepts of the invention.
- Other goals and advantages of the invention will be further appreciated and understood when considered in conjunction with the following description and accompanying drawings. While the following description may contain specific details describing particular embodiments of the invention, this should not be construed as limitations to the scope of the invention but rather as an exemplification of preferable embodiments. For each aspect of the invention, many variations are possible as suggested herein that are known to those of ordinary skill in the art. A variety of changes and modifications can be made within the scope of the invention without departing from the spirit thereof.
- All publications and patent applications mentioned in this specification are herein incorporated by reference to the same extent as if each individual publication or patent application was specifically and individually indicated to be incorporated by reference.
-
FIG. 1 illustrates a simplified flowchart diagram of an enrollment process used in connection with the present invention directed to a graphical image authentication and security system; -
FIG. 2 illustrates a simplified flowchart diagram of a preferred embodiment in accordance with the present invention directed to a graphical image authentication and security system; -
FIG. 3 illustrates a simplified flowchart diagram of an alternate embodiment of the present invention; and -
FIGS. 4 and 5 illustrate examples of screen displays that would be incorporated as a part of the present invention as shown inFIGS. 2 or 3. -
FIG. 6 illustrates a display device for rendering an arrangement of icons. -
FIG. 7 shows a dynamic graphical password grid that includes various graphical images corresponding to advertisement campaigns. -
FIG. 8 is a flowchart describing methods of authenticating users in accordance with the invention. -
FIG. 9 is an illustration of client/server architecture for user authentication over the Internet. - The embodiments discussed herein are merely illustrative of specific manners in which to make and use the invention and are not to be interpreted as limiting the scope of the instant invention.
- While the invention has been described with a certain degree of particularity, it is to be noted that many modifications may be made in the details of the invention's construction and the arrangement of its components without departing from the spirit and scope of this disclosure. It is understood that the invention is not limited to the embodiments set forth herein for purposes of exemplification.
- The present invention provides a method and system for user identity authentication to a computer system which requires users to select an authentication sequence based on categories during enrollment and recreating the authentication sequence during login by graphically discerning images belonging to the previously selected categories.
- Referring to the drawings in detail,
FIG. 1 illustrates a simplified flow chart diagram of an initial enrollment process in order to enroll a user to utilize the present invention. During enrollment, the user shown as 2 will be presented with an initial enrollment screen inbox 4 where the desired username is entered indiamond 6. After the username is granted, a second enrollment screen inbox 8 is presented to select the traditional password and the image category authentication sequence for the system. The authentication information is entered indiamond 9 and stored into the authentication database inbox 10. - Referring to the drawings in detail,
FIG. 2 illustrates a simplified flowchart diagram of a preferred embodiment of the present invention. In this embodiment, a graphical image authentication and security system is used in conjunction with a traditional username/password authentication paradigm to increase the overall level of security in a system. The overall process includes a number of discreet steps to authenticate identity to a computer system. By way of example, but not limitation, the computer device operated by the user may include a personal computer (PC) having a central processing unit (CPU), a keyboard or other input device and monitor; a personal digital assistant (PDA); a user terminal at a bank automated teller machine (ATM); a cellular mobile telephone; or other device. - The
user 12 will enter a first login account identifier, such as his or her username, and a traditional password, represented bydiamond 14 in an input device such as a keyboard. By way of example, the username may be a series of alphanumeric characters, as is well known. By way of example, the password may be a series of alphanumeric and special characters, as is well known. (FIG. 4 shows an example of the traditional username/password login screen.) - The username/password is validated in
box 16. If the authentication fails because of the username/password entered, a fake grid of images that appears normal is displayed as shown atbox 20, the user will be able to enter an image identifier normally atdiamond 22 however any authentication attempt fails as shown atreference numeral 26. If the username/password pair is authenticated, an image grid will be generated and displayed atbox 34. The cells of the grid will display images from different categories (such as those inFIG. 5 ). The location of the categories in the grid is randomized. The specific image for each category is chosen randomly from a database of images for that specific category. Each image will be overlaid with a unique randomly generated image key. Captcha techniques could be employed to obfuscate image keys so they are not machine-readable. This would require human perception and cognition to mediate the login which could prevent automated brute force attacks on the authentication process. - The user will select the image on the grid according to the categories in their authentication sequence by entering the image key overlaid on the images,
box 36. The sequence of image keys is sent to the authentication server for validation,box 38. If the image keys are validated, the authentication concludes successfully,box 40. If the image keys are not validated, authentication fails and the login process must be reinitiated. A timed lockout of 10 minutes as shown by 18 is applied after three unsuccessful logins to mediate the threat from brute force attacks that attempt to guess an authentication sequence. -
FIG. 3 illustrates an alternate embodiment of the present invention that extends the preferred embodiment fromFIG. 2 to incorporate advertisements. The enrollment process for this embodiment will be identical to that of the previously described embodiment illustrated inFIG. 1 , and the login process is also similar to that illustrated inFIG. 2 . Theuser 42 will enter a first login account identifier, such as his or her username, and a traditional password, represented bydiamond 44 in an input device such as a keyboard. By way of example, the username may be a series of alphanumeric characters, as is well known. By way of example, the password may be a series of alphanumeric and special characters, as is well known. The username/password is validated inbox 46. If the authentication fails because of the username/password entered, a fake grid of images that appears normal is displayed as shown atbox 48. While the user will be able to enter image identifiers in a seemingly normal manner atdiamond 58, any authentication attempt fails as shown atreference numeral 68. If the username/password pair is authenticated, an image grid will be generated and displayed atbox 50. -
FIG. 4 shows an example of a traditional username/password login screen that may be displayed to a user for entry of authentication information in any of the embodiments of the invention described herein. - As shown on
FIG. 5 , the cells of an image grid will display a variety of images from different categories. The location of the categories in the grid is randomized. The specific image for each category is chosen from a database of images for that specific category. Each image will be overlaid with a unique randomly generated image key. Captcha techniques could be employed to obfuscate the image key so that it is not machine-readable. This would require a human to mediate the login and prevent automated brute force attacks on the authentication process. - An ancillary benefit of the present invention stems from the requirement of the user to view each of the visual images to determine which image is in the user's category. Advertising opportunities are presented for advertisers to display products in an array of images. The user cannot ignore the advertising, since the user must view and discern each of the images presented during authentication in order to choose the appropriate user selected image category.
- The images in the database for this embodiment will contain advertisement images provided by advertisers. The image selected to be displayed on the grid will be based on the websites, the advertisement campaigns, and other parameters. The image grid displayed in
box diamond 58. The user would not need to reenter the username and password after viewing an advertisement link, or in an alternative embodiment, the user would have to reenter authentication information after viewing an advertisement link, preferably when a predetermined amount of time has passed for security purposes. When the user finishes viewing the advertisement link, the image grid is refreshed and displayed again in 48 and 50 respectively. - In the case where the username/password is validated at 50, the user will select the image on the grid according to the categories in their authentication sequence by entering the image key overlaid on the images,
box 64. The sequence of image keys is sent to the authentication server for validation,box 66. If the image keys are validated, the authentication concludes successfully,box 70. If the image keys are not validated, authentication fails at 68 and the login process is reinitiated. A timed lockout of 10 minutes is applied after three unsuccessful logins to mediate the threat from brute force guessing of the authentication sequence,box 72. - As shown in
FIG. 5 , a preferable embodiment of the invention provides an authentication system that generates an arrangement of dynamic images. Unlike a conventional static username and password model developed decades ago, the arrangement of dynamic images may preferably provide a user with a one-time or persistent access code that can be entered at the last minute, and just in time for login. The images in the arrangement, which may be arranged in what may be characterized as a dynamic image grid pattern, can be different and/or arranged differently each time a user logs in or performs some other action requiring an authentication process. However, the user knows which image(s) to look for and select within the arrangement because the images are based upon a preselected category designated by the user or third party during an enrollment process as described elsewhere herein. While a series of one or more graphical images within an arrangement can be dynamically altered in between logins or authentication processes, the preselected category can remain the same from the perspective of the user so long as desired or permitted according to established guidelines. So even if stronger authentication is provided in accordance with this embodiment of the invention, which eliminates any reliance on static hard-to-remember passwords or challenge questions, it may be preferred for certain applications to require a user nonetheless to renew or pick another category of images as the basis for a password or access code when desired (change password option) or after a specified length of time (automatic expiration of passwords that provide a number of opportunities to voluntarily change the category before it is mandatory pursuant to an established protocol). - For example, in a preferable embodiment of the invention, the categories of images displayed within a dynamic image arrangement may include the following: horses, flowers, mountains, money, objects in space, boats, airplanes, golf and cars. The image of an object falling within each of these categories can be shown in a predetermined arrangement such as a 3×3 grid or a tic-tac-toe grid for preferable embodiments of the invention. When the user registered his username during enrollment, a category was chosen or designated by the entity requesting authentication such as a financial institution.
- The basis for a user selection could be some thing(s) that could be easily remembered by that person or something of interest such as cars, for example. During a login process, the user can look for and find any image(s) displayed within the arrangement falling within the selected category of cars. In spotting an appropriate image within this, the user is able to view an access code corresponding to the image representing the category. That access code becomes the password or portion of a password to the user for logging onto the system or during that particular authentication process. Meanwhile, during a subsequent process or next login, a variety of images falling within the selected category and non-selected categories will be arranged, preferably in a random manner. The images representing these categories can be randomly chosen among dozens, hundreds or more images in each category. Because the images appear and move randomly throughout the dynamic image arrangement between logins or between authentication processes, and because the images representing any category can be different each time, human-level cognition is needed to enter a series of one or more access codes through the authentication system. Since the access codes corresponding to the images are preferably different with each login or authentication process, even if the user is being keystroke logged, the keystrokes observed are useless on future login or authentication attempts. Moreover, the basis for selection by the user of the access codes and corresponding images is relatively difficult to identify. It may not be readily apparent to an ordinary observer (or fraudster) as to what is the reference point to the user or why a user selects certain images over others. Without explicitly revealing the authenticating category (shared secret), the user is therefore able to complete an authentication process with added security.
- Other embodiments of the invention provide dynamic graphical password authentication solutions which include some of the features described in the aforementioned processes and systems. These authentication systems and methods can provide stronger user authentication to reduce the risk of unauthorized access to or use with online accounts, Web sites or resources available on the Internet or enterprise network systems. The graphical passwords provided in accordance with this aspect of the invention include images or icons corresponding to one of any number of selected categories which forms the basis of authentication.
- As shown in
FIG. 6 , for example, one or more graphical images such as icons can be displayed to a user on a display device according to a predetermined arrangement or pattern. For each displayed icon (Icon # 1, #2 . . . ) within a display image, there may be a corresponding access code or password element (PE1, PE2 . . . ) shown to the user. The series of one or more password elements can be therefore entered by the user as a password for that particular authentication process. However, the same password or combination of password elements does not work for a subsequent authentication process in accordance with a preferable embodiment of the invention. Rather the selection of displayed icons themselves, their arrangement or location within a pattern, and their corresponding password elements are preferably different each time in order to create dynamic one-time graphical passwords. It shall be understood that as with other embodiments of the invention herein, each or all of these properties are not required to be dynamic and may be static (the same) instead during or in between authentication processes. - The series of one or more graphical images and corresponding password elements that make-up dynamic passwords are preferably changed between each authentication processes. But the authenticating category of images remains the same or unchanged for the user until an authorized change is made. The authenticating and non-authenticating categories of graphical images are not limited to particular objects only but can include any variety of themes or topics. This allows a wide variety of easy-to-remember categories which avoids requiring a user to memorize conventional character-based character strings or having to enter characters generated periodically by separate hard tokens (e.g., RSA SecureID tokens) since the password elements are displayed concurrently with intuitive corresponding graphical. images. The graphical images or icons with respect to
FIG. 6 are displayed to a user and may serve indirectly as constantly-changing yet identifiable reference points to password elements. It shall be further understood that the one or more graphical images may be organized in a selected arrangement such as a series of rows and columns (matrix), arrays or any other pattern within a display image. - For example, the display device illustrated in
FIG. 6 may receive information to render a display image with two icons and two corresponding password elements.Icon # 1 may be an image of a Rolls Royce, whileIcon # 2 may be an image of a banana. In addition,Icon # 1 may include and display a corresponding PE1 that is “AB” andIcon # 2 may include and display a corresponding PE2 that is “CD.” During an enrollment process such as those described elsewhere herein, a user that selected automobiles as an authenticating category would enter in password element “AB” for authentication. Meanwhile a user that may have selected fruits as an authenticating category would enter “CD” for authentication. An authentication server system (not shown) connected to the display device can compare the selected password elements against a reference password generated for that authentication process. As described elsewhere herein, the reference passwords may be generated by a variety of random number or character generator programs. Accordingly, a perpetrator or even an authorized user would not know what password elements to enter prior to viewing the display image, but only the user would preferably know the authenticating category and look for intuitive graphical icons corresponding thereto while ignoring those from non-authenticating categories. Preferable embodiments of the invention would render each time different types of icons to the user within a particular authenticating category and/or different password elements (alphanumeric characters, symbols). During a subsequent session or another authentication process, the authentication systems and methods herein can generate another series of icons in a different random pattern on the display device, preferably with a different display image background, and preferably with different icons corresponding to both authenticating and non-authenticating categories. - Another embodiment of the invention may capitalize on the focus and attention of users during an authentication process for advertising and marketing purposes. For example, as shown in
FIG. 7 , a dynamic graphical image grid can be displayed having a plurality of advertisements or messages paid by sponsors or advertisers. As part of an advertisement (ad) campaigns for a company, one or more advertisements can be introduced into the authentication systems and methods herein. Such advertisements or sponsored messages can serve the dual-purpose of authentication and generating advertising revenue. The advertisements or messages themselves can function as the graphical images viewed by users which fall into authenticating and non-authenticating categories. While user attention may be greater for advertisements relating to an authenticating category for the user, advertisements relating to non-authenticating users are also valuable as they too are displayed. - A dynamic image grid as shown in
FIG. 7 may include a selected arrangement of advertisements (ads) that may be rendered during each authentication process for different users. The arrangement may include any number of ads displayed for viewing, but a preferable embodiment of the invention is shown having nine (9) ads arranged in a 3×3 grid (AD1-9) each having a corresponding password element (PE1-9). Because of the wide range of both authenticating and non-authenticating categories that is available for carrying out the invention, each category presents advertising opportunities within many different channels. For example, a category may be selected such as automobiles. AD1 and AD9 may thus include ads for cars sold by Car Manufacturer #1 (e.g., Ford). AD2 and AD8 may include ads for bottles of wine sold by Wine Maker #1 (e.g., Gallo), and AD3 and AD7 may be ads for cosmetics sold by Cosmetics Company #1 (e.g., Avon) etc. Upon presentation of the dynamic image grid, a user who selected or was assigned an authenticating category of automobiles would type or enter within a PASSWORD field the characters displayed for PE1 and PE9. When an authenticating category is wine, the user would select PE2 and PE8. When cosmetics are chosen the authenticating category, the user would select PE3 and PE7. While some of the preceding examples describe the use of passwords composed of two or three password elements, it shall be understood that any number of one or more password elements may be used for authentication. - Furthermore, ads may cross numerous markets such as consumer products when a user selects a theme such as “red” or “things that are red.” For example, the authentication password would be the combination of PE1+PE2+PE3 when AD1 is a red Mustang, AD2 is a bottle of cabernet sauvignon, AD3 is a tube of lipstick. In addition to ads, this aspect of the invention can be applied to other embodiments of the invention described herein which provide arrangements of dynamic graphical images or icons. Rather than categorizing an object to be displayed based on what it is—the thing itself—alternative embodiments of the invention may include categories of graphical or visual images, icons or ads that are based on some common attribute, feature, theme or characteristic of the displayed object—something about the thing. For example, a user may select an authenticating category based on a certain “attribute” about the (displayed images) such as “things featuring water” (a beach, a pool, rain, bottled water), “things that are round” (a golf ball, a hot air balloon, a tire), “things that are blue” (a clear sky, a blue tropical fish, a blue shirt, a recycling bin for glass/plastic), and “things made of wood” (a baseball bat, a log cabin, a tree, a forest). Accordingly, advertisers may be provided the opportunity to present a diverse range of product ads that can be grouped into one or more selected categories according to some commonality that also serves as a shared secret between a user and a third party for purposes of authentication.
- It shall be understood that ads or graphical images herein may fall within one or more categories available as a way to authenticate a person. Ads or graphical images can be also displayed more often within regularly scheduled display cycles even if they are within non-authenticating categories. The ads or graphical images that are selected for display within an arrangement or grid may nevertheless capture the attention of users even if they do not necessarily fall within an authenticating category since graphical images or ads for non-authenticating categories are also displayed.
- As with other embodiments of the invention, the sequence in which the password elements (image identifiers) are entered may be of consequence or not depending upon the desired level of authentication. When their order or sequence matters (e.g., PE1+PE9), then typically stronger authentication is offered when compared to authentication where order does not matter and can be completed with any sequence of one or more password elements (e.g., PE1+PE9 or PE9+PE1). In preferable embodiments of the invention where specific sequences of entering the passwords are required, then either an intuitive or explicit order of entry can be provided to the user. For example, when presented by a 3×3 grid such instruction may not be required as the user may be reminded of a telephonic keypad with consecutive numbers 1-9. The order of entry may be therefore entering characters within password elements from top to bottom of the display, and from left to right.
-
FIG. 8 is a flow diagram describing another aspect of the invention that provides various methods of authentication using dynamic graphical images. A plurality of graphical images may be stored within a database or a computer memory that correspond to one or more available categories. From the numerous available categories, a user may designate an authenticating category from the plurality of categories during an enrollment process. During an authentication process, a dynamic graphical image arrangement may be generated by a server system containing at least one graphical image, and at least one corresponding image identifier or password element. For example, a random password generator may construct a reference password to be used for an authentication process, such as “4847.” Each character or digit within the password may be assigned as the image identifier (or part thereof) to preselected images falling with the authenticating category. A series of other graphical images from non-authenticating categories may be also assigned non-authenticating image identifiers to fill-out the arrangement. The server system may be instructed to randomly select (or not) the pattern in which to present the graphical images to the user. The graphical images falling within the authenticating category may be randomly (or not) positioned within the arrangement, and their corresponding image identifiers are displayed too. Furthermore, the graphical images from non-authenticating categories can be randomly (or not) positioned within remaining portions of the arrangement. For example, four (4) graphical images of one or more cars can be displayed as part of an authenticating category of automobiles, each having a corresponding image identifier “4,” “8”,“4”, and “7.” In an embodiment of the invention where a 4×4 image grid is provided (16 graphical images total), twelve (12) graphical images from non-authenticating categories are displayed to fill-out the arrangement which preferably have nothing to do with automobiles. The image identifier information and associated data for the generated arrangement is then stored by the server system in a memory. The arrangement or layout of the graphical images, the images themselves, and the characters of the displayed image identifiers, are preferably different between authentication processes. Alternatively, any or all of these properties may remain the same (static) in between authentication processes. The authenticating category can remain the same until an authorized change is made which can be accomplished in a manner similar to the enrollment process described above. - During an authentication process, the arrangement of dynamic graphical images can be delivered and presented to a user on a display device or display within the client system. The user may input the one or more image identifiers (e.g., 4-8-4-7) corresponding to the graphical images falling within the designated authenticating category. The client system receives the input from the user, and transmits it to the server system, which compares the image identifier information to the stored reference password (e.g., 4847). When the user input matches the reference password stored in the server system, authentication can be completed and access granted to the requested resource, online account or any other secured information. When image identifier information or a password does not match the references password, then access is denied. As with other embodiments of the invention, a user may be also permitted a predetermined number of attempts before account lock-out or any other administrative action is instituted such as the implementation of network security measures indicating the possibility of hacking or attacks.
-
FIG. 9 illustrates an authentication system provided in accordance with another embodiment of the invention. A server system may include or be configured as an authentication server that generates an arrangement of pseudo-randomly positioned images or icons each associated with a password element. The arrangement may include one or more authenticating images, which form at least part of an authenticating sequence, plus one or more non-authenticating images or icons that do not form at least part of the authenticating sequence. Thereafter the arrangement can be sent to the client system for display on a display device. The user may select or input the image identifiers or password element(s) corresponding to the images or icons selected within the arrangement. Selected password elements can then be communicated by the client system to the server system. The server system can compare the user selected password elements relative to a reference password, and further analyze related information with any other associated authentication data that may be stored in a memory within the server system. The authentication system may be configured to accept either a sequential or non-sequential entry of password elements in order to properly authenticate a user. Upon the correct entry of the one or more password elements, which matches the reference password, authentication of the user can be completed. - As with some of the other embodiments of the invention herein, the term “password” can be described as a form of secret authentication data that is used to control access to a resource. It need not be an actual word and can be a series of one or more alphanumeric characters or symbols, for example. In controlling access to resources, there are often trade-offs between security and convenience. The accessibility of password-protected systems can depend on a variety of parameters taking into consideration the level of security desired. While earlier forms of passwords may have been limited in the possible number of characters or numbers (e.g., max. four or five numbers only), there are very few limitations to available passwords today which could also be incorporated into the methods and systems provided herein (e.g., combination of numbers and upper/lower case letters with character lengths of 6, 7, 8, 9 or more, symbols, punctuation, and device inputs). Moreover, selected password strengths may be chosen for different applications in accordance with the invention. For applications that may not require stronger security, a relatively weak password can be adopted for the sake of convenience that prompts users for entry of only a few characters or password elements. For applications that may require stronger security, a relatively strong password can be adopted that includes a longer string and/or combination of characters to better withstand a brute force attack based on subsets of words from a dictionary or similar source. Furthermore, a pseudo-random or random password generator may be incorporated with the invention that can be provided as a software program and/or hardware device. In some instances, an input is received from a random or pseudo-random number generator which in turn creates a password. A variety of known random password generators may be selected for the authentication systems and methods herein that can generate a string of characters etc. of any desired length. It shall be understood that selected passwords and password generation programs can be customized or modified to comply with established or desired password policies setting forth the kinds of password elements that can be used or combinations thereof to produce a mix of letters, numbers, symbols, characters etc.
- The authentication systems provided herein may include a client system with which a user interacts, and a server system to which the user wants to gain access.
- The server (system) may control access to a resource, a database or file system, or a private communication channel. The server may also include a computer readable memory, a comparator and a communications interface such as a modem or network adapter with appropriate software drivers that support communication with the client system over a communications system. The server system may further include a secured network, file systems or resources and information stored in databases as described elsewhere herein. The databases may contain one or more libraries of graphical images or icons that can be displayed for authentication and other purposes (e.g., advertising). The server system may also include numerous devices such as file servers (Web site servers), authentication servers, password databases, repositories or databases of graphical images or icons that may be identified as part of authenticating and non-authenticating categories.
- A memory device in the server system may store information regarding the relationship between the graphical images and image identifiers displayed to a user during authentication. A memory look-up table can be used to store this information for mapping this information. The memory may be implemented using random access memory (“RAM”), flash memory, disk drives or any other rewritable memory technology. In some applications, the memory may also be implemented using non-rewritable memory such as read only memory (“ROM”) chips.
- The client system may include various devices such as a desktop or laptop computer, a PDA, an ATM, or any device capable of displaying graphical images having a key entry pad or keyboard for entering data. A client system device preferably includes an input device, a display device and an appropriate communications interface which allows data from the input device to be transmitted to the server system. The communications interface might include a modem, network adapter, radio transmitter/receiver, or other such communications devices, along with appropriate software. The display device may be any type of display capable of displaying various graphical images or icons, such as computer monitors and flat panel displays. The input device may a computer keyboard or a keypad, or other such entry system that allows image identifiers or password elements to be entered.
- Furthermore, the client and server systems can communicate over a variety of telecommunication systems including wireless networks. The telecommunications system may also include a variety of data communications systems generally known in the art such as a LAN, a WAN, a wireless system such as cellular, satellite and personal communications services (“PCS”) systems, or a dedicated line or connection. In this regard, it is noted that the references to server side and client side herein do not require a direct communication therebetween and intermediate computers may be present. Moreover, a computer acting as a server could transmit information to an intermediate computer which could then transmit the information to another computer where the user enters data. The terms “client” and “server” as used herein are general and are not limited to so-called “client/server” systems. It shall be further understood that references to a server and a client also may apply to a peer-to-peer system or architecture with any two communicating computers, where at least one such computer controls or possesses a resource, and another computer is used to access the resource.
- As shown in
FIG. 9 , a user may select a device (client) on which to access a secured resource or information stored on a server system. The user may be identified by the server system with an account number, name or other user identification information. When the server system determines the user is a recognized user, it can generate a display image including an arrangement of dynamic graphical images or icons arranged for presentation on the display device. - As with other embodiments of the invention, the server may generate the display image by selecting, pseudo-randomly in a preferable embodiment, graphical images based on prior user selection or otherwise of an authenticating category. Alternatively, display image may be pre-generated or displayed according to a pre-established routine or computer program, and stored in a database system. The display image and graphical display images or icons may be implemented as a bit mapped image, a raster image or in any other suitable image file format.
- The display image may also include image identifiers corresponding to each of the graphical images or icons displayed. The user may input an image identifier sequence corresponding to graphical images within an authenticating category. In a preferable embodiment of the invention, the arrangement of the images is pseudo-randomly varied with each server access request. In addition, the particular images/scheme and image identifiers presented in the display image may be varied with each authentication process.
- In order to enter user password information or other authentication data in accordance with this embodiment of the invention, the appropriate image identifiers for authenticating images within the display image are identified by the user. The user enters on the input device the image identifiers by the user and communicated to the server system. For some preferable embodiments of the invention, the sequence in which the password information is entered is important in which case the user understands or is advised of the order of entry (left to right, right to left, top to bottom, bottom to top). The server system utilizes a comparator to compare the selected image identifiers with reference password information as described elsewhere herein. The comparator in the server system can compare the one or more image identifiers entered by the user to reference password information to determine whether they correspond to each other and match. If so, the user will be allowed appropriate access to the server system. It shall be understood that the comparator, and other components to the aforementioned client/server systems implemented in any of the authentication systems and methods herein, may incorporate software using techniques known in the prior art.
- Many embodiments of the invention can provide dynamic image authentication arrangements that can be incorporated into existing authentication systems for preventing unauthorized access. Because cyber crimes often begin with unauthorized users gaining access to accounts to online accounts and applications, concepts of the invention herein can be implemented to create a first line of defense that provides stronger user authentication. Various embodiments of the invention provide secure login routines for user authentication that are effective against many prevalent forms of hacking, including historic threats like phishing, as well as new and growing threats like brute-force attacks, keystroke logging, and man-in-the-middle (MITM) spying. Additional embodiments of the invention can be modified for a variety of applications including network login, virtual private network (VPN) access, and web-based applications and websites.
- It should be understood from the foregoing that, while particular implementations have been illustrated and described, various modifications can be made thereto and are contemplated herein. It is also not intended that the invention be limited by the specific examples provided within the specification. While the invention has been described with reference to the aforementioned specification, the descriptions and illustrations of the preferable embodiments herein are not meant to be construed in a limiting sense. These are described as examples in relation to the drawings attached hereto and further modifications, apart from those shown or suggested herein, may be made within the spirit and scope of the invention. Furthermore, it shall be understood that all aspects of the invention are not limited to the specific configurations set forth herein which depend upon a variety of conditions and variables. Various modifications in form and detail of the embodiments of the invention will be apparent to a person skilled in the art. It is therefore contemplated that the invention shall also cover any such modifications, variations and equivalents.
Claims (25)
1. A method for authenticating a user comprising the following steps of:
generating at least one dynamic graphical arrangement of images having: at least one image selected from an authenticating category of graphical images; and at least one image selected from a non-authenticating category of graphical images, each image having a corresponding access code;
presenting the dynamic graphical arrangement of images to a user;
receiving as input from the user the series of one or more access codes corresponding to images from the authenticating category of graphical images; and
comparing the series of one or more access codes to an authenticating reference code to authenticate the user.
2. The method for authenticating a user as recited in claim 1 further comprising:
denying access to the user if the input is determined not to match the authentication reference code.
3. The method for authenticating a user as recited in claim 1 , wherein the dynamic graphical arrangement is presented on a display corresponding to a computer device that provides user access to confidential information.
4. The method for authenticating a user as recited in claim 1 , wherein the plurality of graphical images comprises images that are presented to the user for a purpose in addition to authenticating the user.
5. The method for authenticating a user as recited in claim 4 , wherein the purpose in addition to authenticating the user is advertising.
6. The method for authenticating a user as recited in claim 1 , wherein the dynamic graphical arrangement of images is presented to the user on a mobile device display.
7. The method for authenticating a user as recited in claim 1 , wherein the images selected from an authenticating category of graphical images are randomly arranged within the dynamic graphical arrangement of images.
8. The method for authenticating a user as recited in claim 1 , wherein the access codes for the images selected from the authenticating category are randomly selected.
9. The method for authenticating a user as recited in claim 1 , wherein the images from the authenticating category are randomly selected.
10. The method for authenticating a user as recited in claim 1 , wherein the authenticating category is preselected by the user from a plurality of different categories.
11. A method for authenticating a user comprising the following steps:
selecting a series of one or more graphical images each having a corresponding password element, wherein each graphical image is selected from an authenticating category and a non-authenticating category of images;
presenting the series of one or more graphical images on a device display; and
receiving a password entry from a user composed of the password element corresponding to at least one graphical image corresponding to the authenticating category of images; and
authenticating the user when the password entry matches a reference password.
12. The method for authenticating a user as recited in claim 11 , wherein the graphical images relate to sponsored messages or advertisements.
13. The method for authenticating a user as recited in claim 11 , wherein the password elements are formed of one or more alphanumeric characters or symbols.
14. The method for authenticating a user as recited in claim 11 , wherein the user is authenticated only when the password elements are entered by the user in a specific sequence.
15. The method for authenticating a user as recited in claim 11 , wherein the user is authenticated regardless of the order in which the password elements are entered by the user.
16. The method for authenticating a user as recited in claim 11 , wherein the device display is for a Web enabled computer or mobile device.
17. The method for authenticating a user as recited in claim 11 , wherein the series of one or more graphical images is static and presented again during a subsequent authentication process.
18. A computer program product bearing machine readable instructions to carry out the method for authenticating a user as recited in claim 11 .
19. A computer system having a computer readable medium that stores a computer program with machine readable instructions for carrying out the method for authenticating a user as recited in claim 11 .
20. A graphical interface for user authentication and advertising comprising:
a dynamic graphical image grid having a plurality of advertisements selected from an authenticating category of advertisements and a non-authenticating category of advertisements, wherein each of the advertisements includes a corresponding password element, and wherein at least one password element forms at least part of an authentication password.
21. The graphical interface as recited in claim 20 , wherein the dynamic graphical image grid is configured as a three by three grid.
22. The graphical interface as recited in claim 20 , wherein the authenticating category of advertisements is selected by a user during an enrollment process.
23. The graphical interface as recited in claim 20 , wherein the plurality of advertisements are randomly arranged within the dynamic graphical image grid.
24. The graphical interface as recited in claim 20 , wherein the plurality of advertisements are different during each rendering of the dynamic graphical image grid, and wherein password elements fore each advertisement are different during each rendering of the dynamic graphical image grid.
25. The graphical interface as recited in claim 20 , wherein the positioning of the plurality of advertisements within the dynamic graphical image grid are different during each rendering of the dynamic graphical image grid.
Priority Applications (12)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/677,562 US20070277224A1 (en) | 2006-05-24 | 2007-02-21 | Methods and Systems for Graphical Image Authentication |
JP2007162472A JP2008204424A (en) | 2007-02-21 | 2007-06-20 | Method and system for graphical image authentication |
KR1020070061768A KR100812411B1 (en) | 2007-02-21 | 2007-06-22 | Methods and systems for graphical image authentication |
US12/035,377 US8117458B2 (en) | 2006-05-24 | 2008-02-21 | Methods and systems for graphical image authentication |
CA002679153A CA2679153A1 (en) | 2007-02-21 | 2008-02-21 | Methods and systems for graphical image authentication |
EP08730403A EP2126773A1 (en) | 2007-02-21 | 2008-02-21 | Methods and systems for graphical image authentication |
PCT/US2008/054592 WO2008103834A1 (en) | 2007-02-21 | 2008-02-21 | Methods and systems for graphical image authentication |
AU2008218262A AU2008218262B2 (en) | 2007-02-21 | 2008-02-21 | Methods and systems for graphical image authentication |
CN200880012958A CN101663672A (en) | 2007-02-21 | 2008-02-21 | The method and system that is used for graphical image authentication |
US12/977,559 US8850519B2 (en) | 2006-05-24 | 2010-12-23 | Methods and systems for graphical image authentication |
US13/464,734 US9189603B2 (en) | 2006-05-24 | 2012-05-04 | Kill switch security method and system |
US13/485,799 US8997177B2 (en) | 2006-05-24 | 2012-05-31 | Graphical encryption and display of codes and text |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US42006106A | 2006-05-24 | 2006-05-24 | |
US11/677,562 US20070277224A1 (en) | 2006-05-24 | 2007-02-21 | Methods and Systems for Graphical Image Authentication |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US42006106A Continuation-In-Part | 2006-05-24 | 2006-05-24 |
Related Child Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US12/035,377 Continuation-In-Part US8117458B2 (en) | 2006-05-24 | 2008-02-21 | Methods and systems for graphical image authentication |
US12/977,559 Continuation US8850519B2 (en) | 2006-05-24 | 2010-12-23 | Methods and systems for graphical image authentication |
Publications (1)
Publication Number | Publication Date |
---|---|
US20070277224A1 true US20070277224A1 (en) | 2007-11-29 |
Family
ID=39398430
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US11/677,562 Abandoned US20070277224A1 (en) | 2006-05-24 | 2007-02-21 | Methods and Systems for Graphical Image Authentication |
US12/977,559 Active 2026-11-19 US8850519B2 (en) | 2006-05-24 | 2010-12-23 | Methods and systems for graphical image authentication |
Family Applications After (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US12/977,559 Active 2026-11-19 US8850519B2 (en) | 2006-05-24 | 2010-12-23 | Methods and systems for graphical image authentication |
Country Status (8)
Country | Link |
---|---|
US (2) | US20070277224A1 (en) |
EP (1) | EP2126773A1 (en) |
JP (1) | JP2008204424A (en) |
KR (1) | KR100812411B1 (en) |
CN (1) | CN101663672A (en) |
AU (1) | AU2008218262B2 (en) |
CA (1) | CA2679153A1 (en) |
WO (1) | WO2008103834A1 (en) |
Cited By (233)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20060206918A1 (en) * | 2005-03-01 | 2006-09-14 | Mclean Ivan H | System and method for using a visual password scheme |
US20080148366A1 (en) * | 2006-12-16 | 2008-06-19 | Mark Frederick Wahl | System and method for authentication in a social network service |
US20080184363A1 (en) * | 2005-05-13 | 2008-07-31 | Sarangan Narasimhan | Coordinate Based Computer Authentication System and Methods |
WO2008092263A1 (en) * | 2007-01-31 | 2008-08-07 | Binary Monkeys, Inc. | Method and apparatus for network authentication of human interaction and user identity |
US20080222710A1 (en) * | 2007-03-05 | 2008-09-11 | Microsoft Corporation | Simplified electronic messaging system |
US20080235590A1 (en) * | 2007-03-20 | 2008-09-25 | At&T Knowledge Ventures, Lp | System and method of accessing a multimedia timeline |
US20080235591A1 (en) * | 2007-03-20 | 2008-09-25 | At&T Knowledge Ventures, Lp | System and method of displaying a multimedia timeline |
US20080244700A1 (en) * | 2006-05-24 | 2008-10-02 | Osborn Steven L | Methods and systems for graphical image authentication |
US20080295165A1 (en) * | 2004-03-31 | 2008-11-27 | Merlinnovations & Consulting Gmbh | Method for Safely Logging Onto a Technical System |
US20080301786A1 (en) * | 2007-06-01 | 2008-12-04 | Shaun Cuttill | Times 2 security system |
US20090113294A1 (en) * | 2007-10-30 | 2009-04-30 | Yahoo! Inc. | Progressive captcha |
US20090119177A1 (en) * | 2007-11-05 | 2009-05-07 | John Thomas K | Outdoor and out of home advertising method and system |
US20090150986A1 (en) * | 2007-12-05 | 2009-06-11 | International Business Machines Corporation | User Authorization Using An Automated Turing Test |
US20090165106A1 (en) * | 2007-12-21 | 2009-06-25 | International Business Machines Corporation | Network Security Management for Ambiguous User Names |
US20090172775A1 (en) * | 2007-12-28 | 2009-07-02 | Upendra Mardikar | Mobile anti-phishing |
US20090210937A1 (en) * | 2008-02-15 | 2009-08-20 | Alexander Kraft | Captcha advertising |
US20090240578A1 (en) * | 2008-03-18 | 2009-09-24 | Christopher James Lee | Methods and systems for graphical security authentication and advertising |
WO2009121437A1 (en) * | 2008-03-31 | 2009-10-08 | Albert Josef Zeier | Dynamic authentication method |
US20090282464A1 (en) * | 2008-05-06 | 2009-11-12 | International Business Machines Corporation | System and method for authenticating an end user |
US20090313694A1 (en) * | 2008-06-16 | 2009-12-17 | Mates John W | Generating a challenge response image including a recognizable image |
US20090320124A1 (en) * | 2008-06-23 | 2009-12-24 | Echostar Technologies Llc | Apparatus and methods for dynamic pictorial image authentication |
US20090328163A1 (en) * | 2008-06-28 | 2009-12-31 | Yahoo! Inc. | System and method using streaming captcha for online verification |
US20090328175A1 (en) * | 2008-06-24 | 2009-12-31 | Gary Stephen Shuster | Identity verification via selection of sensible output from recorded digital data |
US20100011419A1 (en) * | 2008-01-14 | 2010-01-14 | Rsupport Co., Ltd. | Authentication method using icon password |
US20100024022A1 (en) * | 2008-07-22 | 2010-01-28 | Wells David L | Methods and systems for secure key entry via communication networks |
US20100024004A1 (en) * | 2007-12-31 | 2010-01-28 | International Business Machines Corporation | Method and system for securing access to an unsecure network utilizing a transparent identification member |
US7659869B1 (en) | 2008-11-21 | 2010-02-09 | Inernational Business Machines Corporation | System and method for authenticating an end user |
US20100037313A1 (en) * | 2007-04-10 | 2010-02-11 | Thomas Joseph Tomeny | Identification and Authentication using Public Templates and Private Patterns |
US20100043062A1 (en) * | 2007-09-17 | 2010-02-18 | Samuel Wayne Alexander | Methods and Systems for Management of Image-Based Password Accounts |
US20100079680A1 (en) * | 2008-09-30 | 2010-04-01 | Echostar Technologies Llc | Systems and methods for configuration of a remote control device |
US20100079682A1 (en) * | 2008-09-30 | 2010-04-01 | Echostar Technologies Llc | Systems and methods for automatic configuration of a remote control device |
US20100083310A1 (en) * | 2008-09-30 | 2010-04-01 | Echostar Technologies Llc | Methods and apparatus for providing multiple channel recall on a television receiver |
US20100095371A1 (en) * | 2008-10-14 | 2010-04-15 | Mark Rubin | Visual authentication systems and methods |
EP2182457A1 (en) * | 2008-10-31 | 2010-05-05 | Gemalto SA | Dynamic PIN verification for insecure environment |
US20100115607A1 (en) * | 2008-11-06 | 2010-05-06 | At&T Intellectual Property I, L.P. | System and method for device security with a plurality of authentication modes |
US20100138912A1 (en) * | 2008-11-28 | 2010-06-03 | International Business Machines Corporation | System and method for authenticating an end user |
US20100138657A1 (en) * | 2008-11-28 | 2010-06-03 | International Business Machines Corporation | System and method for authenticating an end user |
US20100162357A1 (en) * | 2008-12-19 | 2010-06-24 | Microsoft Corporation | Image-based human interactive proofs |
US20100169399A1 (en) * | 2008-12-29 | 2010-07-01 | General Instrument Corporation | Personal identification number (pin) generation between two devices in a network |
US20100164693A1 (en) * | 2008-12-29 | 2010-07-01 | General Instrument Corporation | Method of targeted discovery of devices in a network |
US20100180336A1 (en) * | 2009-01-13 | 2010-07-15 | Nolan Jones | System and Method for Authenticating a User Using a Graphical Password |
US20100250937A1 (en) * | 2007-03-05 | 2010-09-30 | Vidoop, Llc | Method And System For Securely Caching Authentication Elements |
US20100257354A1 (en) * | 2007-09-07 | 2010-10-07 | Dis-Ent, Llc | Software based multi-channel polymorphic data obfuscation |
US20100322485A1 (en) * | 2009-06-18 | 2010-12-23 | Research In Motion Limited | Graphical authentication |
US20100325654A1 (en) * | 2009-06-17 | 2010-12-23 | General Instrument Corporation | Communicating a device descriptor between two devices when registering onto a network |
US20100325721A1 (en) * | 2009-06-17 | 2010-12-23 | Microsoft Corporation | Image-based unlock functionality on a computing device |
US20110023112A1 (en) * | 2009-07-23 | 2011-01-27 | Konica Minolta Holdings, Inc. | Authentication Method, Authentication Device and Computer-Readable Medium Storing Instructions for Authentication Processing Capable of Ensuring Security and Usability |
US20110029436A1 (en) * | 2007-02-05 | 2011-02-03 | Vidoop, Llc | Methods And Systems For Delivering Sponsored Out-Of-Band Passwords |
US20110047605A1 (en) * | 2007-02-06 | 2011-02-24 | Vidoop, Llc | System And Method For Authenticating A User To A Computer System |
EP2304545A1 (en) * | 2008-06-12 | 2011-04-06 | ADS Captcha Ltd | A time-resolved&user-spatially-activated feedback entrance and method thereof |
US20110081640A1 (en) * | 2009-10-07 | 2011-04-07 | Hsia-Yen Tseng | Systems and Methods for Protecting Websites from Automated Processes Using Visually-Based Children's Cognitive Tests |
US20110145899A1 (en) * | 2009-12-10 | 2011-06-16 | Verisign, Inc. | Single Action Authentication via Mobile Devices |
US20110191820A1 (en) * | 2010-01-29 | 2011-08-04 | Christopher Liam Ivey | System and Method for Restricting Access to a Computer System to Live Persons by Means of Semantic Association of Images |
US20110191838A1 (en) * | 2010-02-02 | 2011-08-04 | Kazu Yanagihara | Authentication Using Transient Event Data |
WO2011115765A1 (en) | 2010-03-16 | 2011-09-22 | Telcordia Technologies, Inc. | System and methods for authenticating a receiver in an on-demand sender-receiver transaction |
WO2011124267A1 (en) * | 2010-04-09 | 2011-10-13 | Jasbir Singh | Authentication system and method thereof |
US20110277024A1 (en) * | 2010-05-07 | 2011-11-10 | Research In Motion Limited | Locally stored phishing countermeasure |
CN102281137A (en) * | 2010-06-12 | 2011-12-14 | 杭州驭强科技有限公司 | Dynamic password authentication method of mutual-authentication challenge response mechanism |
US20120030118A1 (en) * | 2010-07-29 | 2012-02-02 | Bank Of America Corporation | Remote capture of multiple deposit items using a grid |
CN102347929A (en) * | 2010-07-28 | 2012-02-08 | 阿里巴巴集团控股有限公司 | Verification method of user identity and apparatus thereof |
CN102360505A (en) * | 2011-08-16 | 2012-02-22 | 北京新媒传信科技有限公司 | Graphical verification code generation method |
US20120047584A1 (en) * | 2010-08-19 | 2012-02-23 | Hon Hai Precision Industry Co., Ltd. | User request approval system using advertisments and method |
US20120054833A1 (en) * | 2010-08-31 | 2012-03-01 | At&T Intellectual Property I, L.P. | Authenticating a User with Picture Messaging |
US8151343B1 (en) | 2007-07-30 | 2012-04-03 | Intuit Inc. | Method and system for providing authentication credentials |
WO2012059756A1 (en) * | 2010-11-02 | 2012-05-10 | Michael Ian Hawkes | Method and Apparatus for Securing Network Communications |
US20120151045A1 (en) * | 2010-12-09 | 2012-06-14 | Wavemarket, Inc. | System and method for improved detection and monitoring of online accounts |
US20120159608A1 (en) * | 2010-12-16 | 2012-06-21 | Research In Motion Limited | Password entry using 3d image with spatial alignment |
WO2012085908A2 (en) | 2010-12-22 | 2012-06-28 | May Patents Ltd. | System and method for routing-based internet security |
EP2489149A1 (en) * | 2009-10-16 | 2012-08-22 | Armorlog Ltd | System and method for improving security of user account access |
US20120266236A1 (en) * | 2011-04-13 | 2012-10-18 | Lenovo (Singapore) Pte. Ltd. | Password input method using visual object |
US8296659B1 (en) * | 2007-10-19 | 2012-10-23 | Cellco Partnership | Method for distinguishing a live actor from an automation |
EP2514135A1 (en) * | 2009-12-14 | 2012-10-24 | Telcordia Technologies, Inc. | Systems and methods for authenticating a server by combining image recognition with codes |
US20120324570A1 (en) * | 2011-06-17 | 2012-12-20 | Kenichi Taniuchi | Information processor, information processing method, and computer program product |
CN102867025A (en) * | 2012-08-23 | 2013-01-09 | 百度在线网络技术(北京)有限公司 | Method and device for acquiring picture marking data |
US20130014248A1 (en) * | 2011-07-07 | 2013-01-10 | Bottomline Technologies (De), Inc. | Mobile application security system and method |
EP2546774A1 (en) * | 2011-05-24 | 2013-01-16 | Shoji Kodama | Authentication system and method |
US20130023241A1 (en) * | 2010-03-26 | 2013-01-24 | Igrove, Inc. | Authentication method and system using portable terminal |
WO2013025581A1 (en) * | 2011-08-15 | 2013-02-21 | Bank Of America Corporation | Apparatus and method for token-based access control |
US8392975B1 (en) * | 2008-05-29 | 2013-03-05 | Google Inc. | Method and system for image-based user authentication |
US8397262B2 (en) | 2008-09-30 | 2013-03-12 | Echostar Technologies L.L.C. | Systems and methods for graphical control of user interface features in a television receiver |
US20130077786A1 (en) * | 2011-09-27 | 2013-03-28 | Oki Data Corporation | Image processing apparatus |
US8413220B1 (en) * | 2007-07-30 | 2013-04-02 | Intuit Inc. | System and method for user authentication |
GB2495567A (en) * | 2012-04-19 | 2013-04-17 | Wonga Technology Ltd | User authentication using images of a geographical area |
US8474056B2 (en) | 2011-08-15 | 2013-06-25 | Bank Of America Corporation | Method and apparatus for token-based virtual machine recycling |
US8473979B2 (en) | 2008-09-30 | 2013-06-25 | Echostar Technologies L.L.C. | Systems and methods for graphical adjustment of an electronic program guide |
CN103200011A (en) * | 2013-04-26 | 2013-07-10 | 福建伊时代信息科技股份有限公司 | Password authentication method and device |
US20130251212A1 (en) * | 2012-03-23 | 2013-09-26 | Ebay, Inc. | Hardening Security Images |
US20130276100A1 (en) * | 2012-04-17 | 2013-10-17 | Soongsil University Research Consortium Techno-Park | Method and apparatus for authenticating password |
US8566918B2 (en) | 2011-08-15 | 2013-10-22 | Bank Of America Corporation | Method and apparatus for token-based container chaining |
US8572651B2 (en) | 2008-09-22 | 2013-10-29 | EchoStar Technologies, L.L.C. | Methods and apparatus for presenting supplemental information in an electronic programming guide |
US8582957B2 (en) | 2008-09-22 | 2013-11-12 | EchoStar Technologies, L.L.C. | Methods and apparatus for visually displaying recording timer information |
US20130340071A1 (en) * | 2012-06-19 | 2013-12-19 | Paychief Llc | Methods and systems for providing bidirectional authentication |
US20130340057A1 (en) * | 2012-06-13 | 2013-12-19 | Rawllin International Inc. | Image Facilitated Password Generation User Authentication And Password Recovery |
US8621578B1 (en) * | 2008-12-10 | 2013-12-31 | Confident Technologies, Inc. | Methods and systems for protecting website forms from automated access |
US8631487B2 (en) | 2010-12-16 | 2014-01-14 | Research In Motion Limited | Simple algebraic and multi-layer passwords |
US8635676B2 (en) | 2010-12-16 | 2014-01-21 | Blackberry Limited | Visual or touchscreen password entry |
US8650627B2 (en) | 2011-12-28 | 2014-02-11 | Tata Consultancy Services Ltd. | Computer implemented system and method for providing challenge-response solutions to authenticate a user |
US8650635B2 (en) | 2010-12-16 | 2014-02-11 | Blackberry Limited | Pressure sensitive multi-layer passwords |
US8650636B2 (en) | 2011-05-24 | 2014-02-11 | Microsoft Corporation | Picture gesture authentication |
TWI426764B (en) * | 2011-01-31 | 2014-02-11 | Gamania Digital Entertainment Co Ltd | Randomly generate methods for verifying graphics and questionnaires |
US8650624B2 (en) | 2010-12-16 | 2014-02-11 | Blackberry Limited | Obscuring visual login |
US8655027B1 (en) | 2011-03-25 | 2014-02-18 | The United States of America, as represented by the Director, National Security Agency | Method of image-based user authentication |
US8661530B2 (en) | 2010-12-16 | 2014-02-25 | Blackberry Limited | Multi-layer orientation-changing password |
US20140059673A1 (en) * | 2005-06-16 | 2014-02-27 | Sensible Vision, Inc. | System and Method for Disabling Secure Access to an Electronic Device Using Detection of a Unique Motion |
US20140123275A1 (en) * | 2012-01-09 | 2014-05-01 | Sensible Vision, Inc. | System and method for disabling secure access to an electronic device using detection of a predetermined device orientation |
US8745694B2 (en) | 2010-12-16 | 2014-06-03 | Research In Motion Limited | Adjusting the position of an endpoint reference for increasing security during device log-on |
US8752123B2 (en) | 2011-08-15 | 2014-06-10 | Bank Of America Corporation | Apparatus and method for performing data tokenization |
US8756672B1 (en) | 2010-10-25 | 2014-06-17 | Wms Gaming, Inc. | Authentication using multi-layered graphical passwords |
US8763045B2 (en) | 2008-09-30 | 2014-06-24 | Echostar Technologies L.L.C. | Systems and methods for providing customer service features via a graphical user interface in a television receiver |
WO2014099603A1 (en) * | 2012-12-21 | 2014-06-26 | Abbott Laboratories | Methods and apparatus for authenticating user login |
US8769668B2 (en) | 2011-05-09 | 2014-07-01 | Blackberry Limited | Touchscreen password entry |
US8769641B2 (en) | 2010-12-16 | 2014-07-01 | Blackberry Limited | Multi-layer multi-point or pathway-based passwords |
US8788834B1 (en) * | 2010-05-25 | 2014-07-22 | Symantec Corporation | Systems and methods for altering the state of a computing device via a contacting sequence |
US8788657B2 (en) | 2010-12-09 | 2014-07-22 | Wavemarket, Inc. | Communication monitoring system and method enabling designating a peer |
US8812861B2 (en) | 2006-05-24 | 2014-08-19 | Confident Technologies, Inc. | Graphical image authentication and security system |
US20140259103A1 (en) * | 2013-03-11 | 2014-09-11 | Don Gunasekara | Access control, establishing trust in a wireless network |
US8850519B2 (en) | 2006-05-24 | 2014-09-30 | Confident Technologies, Inc. | Methods and systems for graphical image authentication |
US8881251B1 (en) * | 2012-05-30 | 2014-11-04 | RememberIN, Inc. | Electronic authentication using pictures and images |
US8904508B2 (en) | 2012-09-21 | 2014-12-02 | International Business Machines Corporation | System and method for real time secure image based key generation using partial polygons assembled into a master composite image |
US20140359726A1 (en) * | 2013-06-04 | 2014-12-04 | Mark Rodney Anson | Login Process for Mobile Phones, Tablets and Other Types of Touch Screen Devices or Computers |
US8910274B2 (en) | 2011-07-28 | 2014-12-09 | Xerox Corporation | Multi-factor authentication using digital images of barcodes |
US20140380465A1 (en) * | 2007-09-24 | 2014-12-25 | Apple Inc. | Embedded authentication systems in an electronic device |
US8931083B2 (en) | 2010-12-16 | 2015-01-06 | Blackberry Limited | Multi-layer multi-point or randomized passwords |
US8937687B2 (en) | 2008-09-30 | 2015-01-20 | Echostar Technologies L.L.C. | Systems and methods for graphical control of symbol-based features in a television receiver |
US8959619B2 (en) | 2011-12-21 | 2015-02-17 | Fleet One, Llc. | Graphical image password authentication method |
GB2517136A (en) * | 2013-07-05 | 2015-02-18 | Logincident Ltd | Authentication System and Method |
US20150074795A1 (en) * | 2013-09-09 | 2015-03-12 | Young Man Hwang | One-time password generation apparatus and method using virtual input means |
US8978975B2 (en) * | 2011-07-18 | 2015-03-17 | Accullink, Inc. | Systems and methods for authenticating near field communcation financial transactions |
US20150101041A1 (en) * | 2013-10-03 | 2015-04-09 | Samsung Electronics Co., Ltd. | Method and apparatus for user authentication |
US9027099B1 (en) | 2012-07-11 | 2015-05-05 | Microstrategy Incorporated | User credentials |
CN104601332A (en) * | 2015-01-26 | 2015-05-06 | 上海众人科技有限公司 | Enhancement type dynamic two-dimensional code authentication system and authentication method thereof |
US9069943B2 (en) | 2011-08-15 | 2015-06-30 | Bank Of America Corporation | Method and apparatus for token-based tamper detection |
US20150212681A1 (en) * | 2012-10-10 | 2015-07-30 | Olympus Corporation | Head-mounted display, unlocking system, and method for controlling unlocking system |
US9100614B2 (en) | 2008-10-31 | 2015-08-04 | Echostar Technologies L.L.C. | Graphical interface navigation based on image element proximity |
US20150220723A1 (en) * | 2014-02-06 | 2015-08-06 | International Business Machines Corporation | User authentication using temporal knowledge of dynamic images |
WO2015122716A1 (en) * | 2014-02-14 | 2015-08-20 | Samsung Electronics Co., Ltd. | Electronic device, method for authenticating user, and computer readable recording medium |
US20150254661A1 (en) * | 2006-10-25 | 2015-09-10 | Payfont Limited | Secure authentication and payment system |
US9135426B2 (en) | 2010-12-16 | 2015-09-15 | Blackberry Limited | Password entry using moving images |
US20150281215A1 (en) * | 2014-03-27 | 2015-10-01 | Yahya Zia | Method of Dynamically Adapting a Graphical Password Sequence by Executing Computer-Executable Instructions Stored On a Non-Transitory Computer-Readable Medium |
US9154303B1 (en) | 2013-03-14 | 2015-10-06 | Microstrategy Incorporated | Third-party authorization of user credentials |
US20150312040A1 (en) * | 2014-04-24 | 2015-10-29 | Smart Electronic Industrial (Dong Guan) Co., Ltd. | Password verifying device and method |
US9183597B2 (en) | 2012-02-16 | 2015-11-10 | Location Labs, Inc. | Mobile user classification system and method |
US9189603B2 (en) | 2006-05-24 | 2015-11-17 | Confident Technologies, Inc. | Kill switch security method and system |
EP2953048A1 (en) * | 2014-06-03 | 2015-12-09 | Nxp B.V. | Mobile device, method of authenticating a user and computer program |
US9219720B1 (en) | 2012-12-06 | 2015-12-22 | Intuit Inc. | Method and system for authenticating a user using media objects |
US9223948B2 (en) | 2011-11-01 | 2015-12-29 | Blackberry Limited | Combined passcode and activity launch modifier |
US9258123B2 (en) | 2010-12-16 | 2016-02-09 | Blackberry Limited | Multi-layered color-sensitive passwords |
US20160044025A1 (en) * | 2014-08-07 | 2016-02-11 | Puneet Goyal | System and method for security enhancement |
US9342611B2 (en) | 2012-06-22 | 2016-05-17 | Paychief Llc | Systems and methods for transferring personal data using a symbology |
US9342674B2 (en) | 2003-05-30 | 2016-05-17 | Apple Inc. | Man-machine interface for controlling access to electronic devices |
US9357262B2 (en) | 2008-09-30 | 2016-05-31 | Echostar Technologies L.L.C. | Systems and methods for graphical control of picture-in-picture windows |
US20160154980A1 (en) * | 2013-07-12 | 2016-06-02 | ADUCID s.r.o | Method of secret information entering into electronic digital devices |
US9361447B1 (en) | 2014-09-04 | 2016-06-07 | Emc Corporation | Authentication based on user-selected image overlay effects |
US20160183088A1 (en) * | 2014-12-20 | 2016-06-23 | Ziv Yekutieli | Smartphone Memory Diagnostics |
US9438685B2 (en) | 2013-03-15 | 2016-09-06 | Location Labs, Inc. | System and method for display of user relationships corresponding to network-enabled communications |
US9460299B2 (en) | 2010-12-09 | 2016-10-04 | Location Labs, Inc. | System and method for monitoring and reporting peer communications |
GB2538379A (en) * | 2015-04-17 | 2016-11-16 | Outbound Services Pty Ltd | Method of authentication |
WO2016203474A1 (en) * | 2015-06-18 | 2016-12-22 | Googale (2009) Ltd | Secured computerized system for children and/or pre- literate/ illiterate users |
US9537848B2 (en) | 2011-07-07 | 2017-01-03 | Bottomline Technologies, Inc. | Application security system and method |
US9571590B2 (en) | 2010-12-09 | 2017-02-14 | Location Labs, Inc. | System and method for improved detection and monitoring of online accounts |
CN106407788A (en) * | 2016-08-31 | 2017-02-15 | 深圳天珑无线科技有限公司 | Unlocking method, unlocking apparatus, and terminal |
WO2017037275A1 (en) | 2015-09-04 | 2017-03-09 | Worldline | Method for authorising an action by interactive and intuitive authentication of a user and associated device |
US9633192B2 (en) | 2012-06-22 | 2017-04-25 | Paychief Llc | Systems and methods for providing a one-time authorization |
US9640001B1 (en) | 2012-11-30 | 2017-05-02 | Microstrategy Incorporated | Time-varying representations of user credentials |
US20170161490A1 (en) * | 2015-12-08 | 2017-06-08 | Google Inc. | Dynamically Updating CAPTCHA Challenges |
CN106911722A (en) * | 2017-04-25 | 2017-06-30 | 北京帕斯沃得科技有限公司 | A kind of intelligent cipher signature identity differentiates mutual authentication method and system |
CN107341384A (en) * | 2016-04-28 | 2017-11-10 | 苏宁云商集团股份有限公司 | A kind of service verification method and system |
JP2017211907A (en) * | 2016-05-27 | 2017-11-30 | 株式会社フォトロン | Information processing device |
US9847999B2 (en) | 2016-05-19 | 2017-12-19 | Apple Inc. | User interface for a device requesting remote authorization |
US9871798B2 (en) | 2015-06-18 | 2018-01-16 | Googale (2009) Ltd. | Computerized system facilitating secured electronic communication between and with children |
US9886569B1 (en) | 2012-10-26 | 2018-02-06 | Microstrategy Incorporated | Credential tracking |
US9887992B1 (en) | 2012-07-11 | 2018-02-06 | Microstrategy Incorporated | Sight codes for website authentication |
RU2644117C2 (en) * | 2013-10-25 | 2018-02-07 | Хуавей Текнолоджиз Ко., Лтд. | Method for user and terminal authentication |
US9898642B2 (en) | 2013-09-09 | 2018-02-20 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US9950795B2 (en) | 2016-06-10 | 2018-04-24 | Panasonic Avionics Corporation | Methods and systems for pairing a personal electronic device on a transportation vehicle |
US9990487B1 (en) | 2017-05-05 | 2018-06-05 | Mastercard Technologies Canada ULC | Systems and methods for distinguishing among human users and software robots |
US10003971B2 (en) | 2016-06-29 | 2018-06-19 | Xerox Corporation | Compartmentalized multi-factor authentication for mobile devices |
US10007776B1 (en) | 2017-05-05 | 2018-06-26 | Mastercard Technologies Canada ULC | Systems and methods for distinguishing among human users and software robots |
US20180285550A1 (en) * | 2017-04-03 | 2018-10-04 | Cleveland State University | Shoulder-surfing resistant authentication methods and systems |
US10127373B1 (en) | 2017-05-05 | 2018-11-13 | Mastercard Technologies Canada ULC | Systems and methods for distinguishing among human users and software robots |
US10142835B2 (en) | 2011-09-29 | 2018-11-27 | Apple Inc. | Authentication with secondary approver |
US10162956B1 (en) * | 2018-07-23 | 2018-12-25 | Capital One Services, Llc | System and apparatus for secure password recovery and identity verification |
US10169565B2 (en) * | 2014-03-27 | 2019-01-01 | Yahya Zia | Method of dynamically adapting a secure graphical password sequence |
US10198963B2 (en) | 2015-06-18 | 2019-02-05 | Googale (2009) Ltd. | Secure computerized system, method and computer program product for children and/or pre-literate/illiterate users |
US10218708B1 (en) * | 2018-06-21 | 2019-02-26 | Capital One Services, Llc | Systems for providing electronic items having customizable locking mechanism |
USRE47518E1 (en) | 2005-03-08 | 2019-07-16 | Microsoft Technology Licensing, Llc | Image or pictographic based computer login systems and methods |
US10362609B2 (en) | 2016-08-10 | 2019-07-23 | Panasonic Avionics Corporation | Methods and systems for automatically pairing a personal electronic device on a transportation vehicle |
US10366222B2 (en) * | 2016-12-02 | 2019-07-30 | International Business Machines Corporation | Managing passwords using steganography |
US10395128B2 (en) | 2017-09-09 | 2019-08-27 | Apple Inc. | Implementation of biometric authentication |
US10417410B2 (en) * | 2017-03-27 | 2019-09-17 | International Business Machines Corporation | Access control to protected resource based on images at changing locations identifiable by their type |
US10438205B2 (en) | 2014-05-29 | 2019-10-08 | Apple Inc. | User interface for payments |
US10447838B2 (en) | 2014-04-03 | 2019-10-15 | Location Labs, Inc. | Telephone fraud management system and method |
US10482225B1 (en) | 2015-07-14 | 2019-11-19 | Melih Abdulhayoglu | Method of authorization dialog organizing |
US10484384B2 (en) | 2011-09-29 | 2019-11-19 | Apple Inc. | Indirect authentication |
WO2019236530A1 (en) * | 2018-06-04 | 2019-12-12 | Petho Jonatan | Secure user authentication system and methods |
US10523648B2 (en) | 2017-04-03 | 2019-12-31 | Microsoft Technology Licensing, Llc | Password state machine for accessing protected resources |
US10521579B2 (en) | 2017-09-09 | 2019-12-31 | Apple Inc. | Implementation of biometric authentication |
US20200065467A1 (en) * | 2018-08-23 | 2020-02-27 | International Business Machines Corporation | Captcha generation based on environment-specific vocabulary |
US10659452B2 (en) * | 2016-01-29 | 2020-05-19 | Dalian Magic Image Technology Co., Ltd. | Dynamic graphical password-based network registration method and system |
US20200202342A1 (en) * | 2018-12-19 | 2020-06-25 | Mastercard International Incorporated | Systems and methods for identifying errors in transaction messages |
CN111432365A (en) * | 2020-03-19 | 2020-07-17 | 武汉谦屹达管理咨询有限公司 | Financial big data processing method and system applying 5G network and block chain |
US10754814B1 (en) * | 2011-12-22 | 2020-08-25 | Amazon Technologies, Inc. | Methods and systems for image-based authentication |
US10791121B1 (en) * | 2006-08-09 | 2020-09-29 | Ravenwhite Security, Inc. | Performing authentication |
US10839065B2 (en) | 2008-04-01 | 2020-11-17 | Mastercard Technologies Canada ULC | Systems and methods for assessing security risk |
US10853029B2 (en) | 2015-06-18 | 2020-12-01 | Googale (2009) Ltd. | Computerized system including rules for a rendering system accessible to non-literate users via a touch screen |
US10860096B2 (en) | 2018-09-28 | 2020-12-08 | Apple Inc. | Device control using gaze information |
US10885177B2 (en) | 2018-11-15 | 2021-01-05 | Hcl Technologies Limited | System and method for authentication of a user logging into an IT enabled application |
US10885176B2 (en) | 2018-06-11 | 2021-01-05 | International Business Machines Corporation | Image based passphrase for authentication |
CN112491648A (en) * | 2020-11-17 | 2021-03-12 | 重庆美沣秦安汽车驱动系统有限公司 | Automobile communication data conversion method based on CAN communication matrix and storage medium |
US10949524B2 (en) * | 2018-10-31 | 2021-03-16 | Rsa Security Llc | User authentication using scene composed of selected objects |
US10997284B2 (en) | 2008-04-01 | 2021-05-04 | Mastercard Technologies Canada ULC | Systems and methods for assessing security risk |
US11005971B2 (en) | 2018-08-02 | 2021-05-11 | Paul Swengler | System and method for user device authentication or identity validation without passwords or matching tokens |
US20210176248A1 (en) * | 2019-12-06 | 2021-06-10 | Tissot Sa | Method for securely connecting a watch to a remote server |
CN112966238A (en) * | 2021-03-09 | 2021-06-15 | 西安邮电大学 | Identity authentication method based on Chinese characters |
US11075899B2 (en) | 2006-08-09 | 2021-07-27 | Ravenwhite Security, Inc. | Cloud authentication |
US11100349B2 (en) | 2018-09-28 | 2021-08-24 | Apple Inc. | Audio assisted enrollment |
US20210264002A1 (en) * | 2019-07-25 | 2021-08-26 | Seaton Gras | System and method for verifying unique user identification |
US11163955B2 (en) | 2016-06-03 | 2021-11-02 | Bottomline Technologies, Inc. | Identifying non-exactly matching text |
US11170085B2 (en) | 2018-06-03 | 2021-11-09 | Apple Inc. | Implementation of biometric authentication |
US11182468B1 (en) * | 2021-05-18 | 2021-11-23 | Capital One Services, Llc | Methods and systems for facilitating secure authentication of user based on known data |
US11209961B2 (en) | 2012-05-18 | 2021-12-28 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US11210431B2 (en) * | 2019-06-07 | 2021-12-28 | Dell Products L.P. | Securely entering sensitive information using a touch screen device |
US11238053B2 (en) | 2019-06-28 | 2022-02-01 | Bottomline Technologies, Inc. | Two step algorithm for non-exact matching of large datasets |
US11269841B1 (en) | 2019-10-17 | 2022-03-08 | Bottomline Technologies, Inc. | Method and apparatus for non-exact matching of addresses |
US11416713B1 (en) | 2019-03-18 | 2022-08-16 | Bottomline Technologies, Inc. | Distributed predictive analytics data set |
US11451528B2 (en) * | 2014-06-26 | 2022-09-20 | Amazon Technologies, Inc. | Two factor authentication with authentication objects |
US11449870B2 (en) | 2020-08-05 | 2022-09-20 | Bottomline Technologies Ltd. | Fraud detection rule optimization |
US11496490B2 (en) | 2015-12-04 | 2022-11-08 | Bottomline Technologies, Inc. | Notification of a security breach on a mobile device |
US11544798B1 (en) | 2021-08-27 | 2023-01-03 | Bottomline Technologies, Inc. | Interactive animated user interface of a step-wise visual path of circles across a line for invoice management |
US20230020997A1 (en) * | 2021-03-04 | 2023-01-19 | Regwez, Inc. | Systems and methods for using media objects to create high entropy passwords |
US11676373B2 (en) | 2008-01-03 | 2023-06-13 | Apple Inc. | Personal computing device control using face detection and recognition |
US11694276B1 (en) | 2021-08-27 | 2023-07-04 | Bottomline Technologies, Inc. | Process for automatically matching datasets |
US11762989B2 (en) | 2015-06-05 | 2023-09-19 | Bottomline Technologies Inc. | Securing electronic data by automatically destroying misdirected transmissions |
Families Citing this family (63)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100986850B1 (en) | 2008-05-29 | 2010-10-08 | 주식회사 네오플 | Method and apparatus for input password in using game |
US20110321125A1 (en) * | 2009-02-10 | 2011-12-29 | Satoshi Kyohgoku | Authentication device, authentication method and program for causing computer to execute the same |
JP5375352B2 (en) * | 2009-06-15 | 2013-12-25 | コニカミノルタ株式会社 | Information processing apparatus, information processing apparatus control method, and information processing apparatus control program |
KR101039909B1 (en) | 2010-04-19 | 2011-06-09 | 인하대학교 산학협력단 | User authentication system and method for immunizing from hacking |
EP2386972A1 (en) * | 2010-05-11 | 2011-11-16 | Thomson Licensing | A method and a device for generating a secret value |
CN101853350B (en) * | 2010-05-19 | 2012-01-11 | 北京幻想时代网络科技有限公司 | Dynamic Turing verification method and device |
JP5480122B2 (en) * | 2010-12-20 | 2014-04-23 | 株式会社シー・エス・イー | Content presentation type authentication system |
GB2486706B (en) * | 2010-12-21 | 2017-05-24 | Sharp Kk | Handset |
US20120194440A1 (en) * | 2011-01-31 | 2012-08-02 | Research In Motion Limited | Electronic device and method of controlling same |
CN102739620A (en) * | 2011-04-14 | 2012-10-17 | 鸿富锦精密工业(深圳)有限公司 | Verification system and verification method |
GB201106943D0 (en) | 2011-04-27 | 2011-06-01 | Burkill Vance | Improvements in or relating to password generation, recall and protection |
US8738908B2 (en) * | 2011-05-10 | 2014-05-27 | Softlayer Technologies, Inc. | System and method for web-based security authentication |
TWI460606B (en) * | 2011-07-15 | 2014-11-11 | Ind Tech Res Inst | Authentication methods and systems of applying captcha |
BR112014014106A2 (en) | 2011-12-13 | 2017-06-13 | Koninklijke Philips Nv | system, and method |
US20130182576A1 (en) * | 2012-01-13 | 2013-07-18 | Qualcomm Incorporated | Context-aware mobile computing for automatic environment detection and re-establishment |
JP5539415B2 (en) * | 2012-01-19 | 2014-07-02 | シャープ株式会社 | Information processing apparatus and program |
US9648490B2 (en) | 2012-03-01 | 2017-05-09 | Qualcomm Incorporated | Context-aware mobile computing for automatic environment detection and re-establishment |
KR101523629B1 (en) * | 2012-03-30 | 2015-05-29 | (주)네오위즈게임즈 | Apparatus and method for login authentication, and storage media storing the same |
EP2849082B1 (en) | 2012-05-04 | 2017-12-27 | Rowem Inc | Icon password setting apparatus and icon password setting method using keyword of icon |
JP5994390B2 (en) * | 2012-05-24 | 2016-09-21 | 株式会社バッファロー | Authentication method and wireless connection device |
CN103457908B (en) * | 2012-05-29 | 2016-06-29 | 香港游戏橘子数位科技股份有限公司 | Verification method in conjunction with character Yu pattern |
KR101381583B1 (en) | 2012-06-27 | 2014-04-07 | 고려대학교 산학협력단 | Graphical-password Authentication Method |
US8813219B2 (en) * | 2012-08-23 | 2014-08-19 | Alejandro V Natividad | Method for producing dynamic data structures for authentication and/or password identification |
CN102957701A (en) * | 2012-11-05 | 2013-03-06 | 深圳市共进电子股份有限公司 | Method and system for verifying telnet server brute force attack prevention |
US9172692B2 (en) * | 2013-03-14 | 2015-10-27 | William M. Langley | Systems and methods for securely transferring authentication information between a user and an electronic resource |
US9813411B2 (en) * | 2013-04-05 | 2017-11-07 | Antique Books, Inc. | Method and system of providing a picture password proof of knowledge as a web service |
JP6044435B2 (en) * | 2013-04-19 | 2016-12-14 | ソニー株式会社 | Information processing apparatus, information processing method, and computer program |
US9025834B2 (en) * | 2013-05-29 | 2015-05-05 | Sap Se | Input validation, user and data authentication on potentially compromised mobile devices |
JP5761288B2 (en) * | 2013-09-25 | 2015-08-12 | コニカミノルタ株式会社 | Information processing apparatus, information processing apparatus control method, and information processing apparatus control program |
CN104660549B (en) * | 2013-11-19 | 2017-12-15 | 深圳市腾讯计算机系统有限公司 | Auth method and device |
JP6068328B2 (en) * | 2013-12-27 | 2017-01-25 | 株式会社ソニー・インタラクティブエンタテインメント | Information processing apparatus and information processing method |
CN103701614B (en) * | 2014-01-15 | 2018-08-10 | 网易宝有限公司 | A kind of auth method and device |
US9323435B2 (en) | 2014-04-22 | 2016-04-26 | Robert H. Thibadeau, SR. | Method and system of providing a picture password for relatively smaller displays |
CN105100005B (en) * | 2014-05-07 | 2020-06-30 | 腾讯科技(深圳)有限公司 | Identity verification method and device |
EP3149985A1 (en) | 2014-06-02 | 2017-04-05 | Antique Books Inc. | Advanced proof of knowledge authentication |
EP3149645B1 (en) | 2014-06-02 | 2018-05-16 | Antique Books Inc. | Device for entering graphical password on small displays with cursor offset |
US9497186B2 (en) | 2014-08-11 | 2016-11-15 | Antique Books, Inc. | Methods and systems for securing proofs of knowledge for privacy |
KR101625747B1 (en) | 2014-09-30 | 2016-05-31 | 한국정보통신주식회사 | An appratus for authenticating by multiple selection and a method thereof |
US9460279B2 (en) | 2014-11-12 | 2016-10-04 | International Business Machines Corporation | Variable image presentation for authenticating a user |
KR101480892B1 (en) * | 2014-11-13 | 2015-01-13 | 아이벡스랩 주식회사 | Method for Determining Certifying Pattern and Method Using the Same |
CN105743937B (en) | 2014-12-08 | 2021-02-19 | 创新先进技术有限公司 | Method for displaying access content and server |
CN104468123A (en) * | 2014-12-12 | 2015-03-25 | 浪潮(北京)电子信息产业有限公司 | Identity authentication method and device |
KR101607300B1 (en) | 2015-01-05 | 2016-03-30 | 경일대학교산학협력단 | Apparatus for authenticating password using character image, method thereof and computer recordable medium storing the method |
EP3048773B1 (en) * | 2015-01-22 | 2019-12-11 | Tata Consultancy Services Limited | System and method for image based location specific password construction and authentication |
CN105991612A (en) * | 2015-03-03 | 2016-10-05 | 阿里巴巴集团控股有限公司 | User identity authentication method and device |
WO2016191376A1 (en) | 2015-05-22 | 2016-12-01 | Antique Books, Inc. | Initial provisioning through shared proofs of knowledge and crowdsourced identification |
CN106489155A (en) * | 2015-06-26 | 2017-03-08 | 华为技术有限公司 | Double factor authentication method, device and equipment |
US9288204B1 (en) | 2015-08-28 | 2016-03-15 | UniVaultage LLC | Apparatus and method for cryptographic operations using enhanced knowledge factor credentials |
WO2017084337A1 (en) * | 2015-11-16 | 2017-05-26 | 腾讯科技(深圳)有限公司 | Identity verification method, apparatus and system |
US10630675B2 (en) | 2016-04-14 | 2020-04-21 | Microsoft Technology Licensing, Llc | Generating web service picture passwords with user-specific cypher keys |
EP3273377B1 (en) * | 2016-07-21 | 2018-09-12 | Deutsche Telekom AG | System for dynamic image captcha |
CN107784220A (en) * | 2016-08-30 | 2018-03-09 | 厦门雅迅网络股份有限公司 | A kind of pattern authentication method and system |
CN107369016B (en) * | 2017-06-14 | 2021-02-02 | 维沃移动通信有限公司 | Payment method and device |
JP2019067025A (en) * | 2017-09-29 | 2019-04-25 | 京セラドキュメントソリューションズ株式会社 | Image forming apparatus |
US10972498B2 (en) | 2018-10-08 | 2021-04-06 | International Business Machines Corporation | Dynamic protection from detected to brute force attack |
CN110457886B (en) * | 2019-08-15 | 2023-05-26 | 福州京东方光电科技有限公司 | Display screen unlocking method and display assembly |
KR102155869B1 (en) * | 2019-09-09 | 2020-09-14 | 주식회사 크라우드웍스 | Method for collecting data based on crowd sourcing using bot distinguishing test |
CN110851814B (en) * | 2019-10-29 | 2023-04-25 | 南京航空航天大学 | Verification method for user login based on image |
US10880331B2 (en) * | 2019-11-15 | 2020-12-29 | Cheman Shaik | Defeating solution to phishing attacks through counter challenge authentication |
CN111669369A (en) * | 2020-05-08 | 2020-09-15 | 武汉文华众创空间管理有限公司 | User identity authentication system and method for cloud storage data |
KR102320400B1 (en) * | 2020-07-07 | 2021-11-01 | 김태훈 | Customer assignment system that assigns customers based on the organization's attendance rate |
CN112839026B (en) * | 2020-11-30 | 2022-07-26 | 中冶华天南京工程技术有限公司 | Behavior verification code generation and verification method based on random grid and random watermark outline |
RU2754240C1 (en) * | 2020-12-16 | 2021-08-30 | ОБЩЕСТВО С ОГРАНИЧЕННОЙ ОТВЕТСТВЕННОСТЬЮ "КуРэйт" (ООО "КуРэйт") | Method and system for confirming transactions using a randomly generated graphical key |
Citations (34)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5276314A (en) * | 1992-04-03 | 1994-01-04 | International Business Machines Corporation | Identity verification system resistant to compromise by observation of its use |
US5428349A (en) * | 1992-10-01 | 1995-06-27 | Baker; Daniel G. | Nondisclosing password entry system |
US5465084A (en) * | 1990-03-27 | 1995-11-07 | Cottrell; Stephen R. | Method to provide security for a computer and a device therefor |
US5559961A (en) * | 1994-04-04 | 1996-09-24 | Lucent Technologies Inc. | Graphical password |
US5608387A (en) * | 1991-11-30 | 1997-03-04 | Davies; John H. E. | Personal identification devices and access control systems |
US5664099A (en) * | 1995-12-28 | 1997-09-02 | Lotus Development Corporation | Method and apparatus for establishing a protected channel between a user and a computer system |
US5821933A (en) * | 1995-09-14 | 1998-10-13 | International Business Machines Corporation | Visual access to restricted functions represented on a graphical user interface |
US5928364A (en) * | 1995-11-30 | 1999-07-27 | Casio Computer Co., Ltd. | Secret data storage device, secret data reading method, and control program storing medium |
US5948061A (en) * | 1996-10-29 | 1999-09-07 | Double Click, Inc. | Method of delivery, targeting, and measuring advertising over networks |
US6209104B1 (en) * | 1996-12-10 | 2001-03-27 | Reza Jalili | Secure data entry and visual authentication system and method |
US20020083347A1 (en) * | 2000-12-25 | 2002-06-27 | Akira Taguchi | Password generation and verification system and method therefor |
US20020188872A1 (en) * | 2001-06-06 | 2002-12-12 | Willeby Tandy G. | Secure key entry using a graphical user inerface |
US20030191947A1 (en) * | 2003-04-30 | 2003-10-09 | Microsoft Corporation | System and method of inkblot authentication |
US20030210127A1 (en) * | 2002-05-10 | 2003-11-13 | James Anderson | System and method for user authentication |
US6686931B1 (en) * | 1997-06-13 | 2004-02-03 | Motorola, Inc. | Graphical password methodology for a microprocessor device accepting non-alphanumeric user input |
US6718471B1 (en) * | 1998-03-31 | 2004-04-06 | Fujitsu Limited | Electronic information management system, ic card, terminal apparatus and electronic information management method, and recording medium on which is recorded an electronic information management program |
US6720860B1 (en) * | 2000-06-30 | 2004-04-13 | International Business Machines Corporation | Password protection using spatial and temporal variation in a high-resolution touch sensitive display |
US20040172564A1 (en) * | 2001-07-27 | 2004-09-02 | Federova Yulia Vladimirovna | Method and device for entering a computer database password |
US20040230843A1 (en) * | 2003-08-20 | 2004-11-18 | Wayne Jansen | System and method for authenticating users using image selection |
US20040260955A1 (en) * | 2003-06-19 | 2004-12-23 | Nokia Corporation | Method and system for producing a graphical password, and a terminal device |
US20050071686A1 (en) * | 2003-09-29 | 2005-03-31 | Amit Bagga | Method and apparatus for generating and reinforcing user passwords |
US6950949B1 (en) * | 1999-10-08 | 2005-09-27 | Entrust Limited | Method and apparatus for password entry using dynamic interface legitimacy information |
US20050268101A1 (en) * | 2003-05-09 | 2005-12-01 | Gasparini Louis A | System and method for authenticating at least a portion of an e-mail message |
US20050268100A1 (en) * | 2002-05-10 | 2005-12-01 | Gasparini Louis A | System and method for authenticating entities to users |
US6981016B1 (en) * | 1999-06-11 | 2005-12-27 | Visage Development Limited | Distributed client/server computer network |
US20060020815A1 (en) * | 2004-07-07 | 2006-01-26 | Bharosa Inc. | Online data encryption and decryption |
US20060174339A1 (en) * | 2005-01-29 | 2006-08-03 | Hai Tao | An arrangement and method of graphical password authentication |
US7093282B2 (en) * | 2001-08-09 | 2006-08-15 | Hillhouse Robert D | Method for supporting dynamic password |
US20060206918A1 (en) * | 2005-03-01 | 2006-09-14 | Mclean Ivan H | System and method for using a visual password scheme |
US20060206919A1 (en) * | 2005-03-10 | 2006-09-14 | Axalto Sa | System and method of secure login on insecure systems |
US20060230435A1 (en) * | 2003-08-27 | 2006-10-12 | Hitoshi Kokumai | Mutual authentication system between user and system |
US7219368B2 (en) * | 1999-02-11 | 2007-05-15 | Rsa Security Inc. | Robust visual passwords |
US20070130618A1 (en) * | 2005-09-28 | 2007-06-07 | Chen Chuan P | Human-factors authentication |
US20070198846A1 (en) * | 2006-02-20 | 2007-08-23 | Fujitsu Limited | Password input device, password input method, recording medium, and electronic apparatus |
Family Cites Families (68)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6788800B1 (en) | 2000-07-25 | 2004-09-07 | Digimarc Corporation | Authenticating objects using embedded data |
KR100306277B1 (en) | 1998-05-29 | 2001-11-02 | 윤종용 | Method for registering and confirming a password in character recognition portable phone |
US7130831B2 (en) | 1999-02-08 | 2006-10-31 | Copyright Clearance Center, Inc. | Limited-use browser and security system |
US6102406A (en) | 1999-06-07 | 2000-08-15 | Steven A. Miles | Internet-based advertising scheme employing scavenger hunt metaphor |
JP2001092785A (en) | 1999-09-20 | 2001-04-06 | Sanyo Electric Co Ltd | Password authentication device and password authenticating method |
US20050076357A1 (en) | 1999-10-28 | 2005-04-07 | Fenne Adam Michael | Dynamic insertion of targeted sponsored video messages into Internet multimedia broadcasts |
US6230199B1 (en) | 1999-10-29 | 2001-05-08 | Mcafee.Com, Inc. | Active marketing based on client computer configurations |
US6687836B1 (en) | 1999-11-26 | 2004-02-03 | Hewlett-Packard Development Company, L.P. | Method and apparatus which enable a computer user to verify whether they have correctly input their password into a computer |
US20020019768A1 (en) | 1999-12-30 | 2002-02-14 | Fredrickson James W. | Method and system for managing advertisements |
KR100435493B1 (en) | 2000-01-04 | 2004-06-09 | 주식회사 눈앤누브시스템 | A system and the method for recording connections to internet advertisement |
KR100479173B1 (en) | 2000-02-08 | 2005-03-25 | 최추환 | The advertisement technical method and system using file structure or file to hold in check delete and edit in internet, computer and computer application device |
US20010037314A1 (en) | 2000-03-30 | 2001-11-01 | Ishikawa Mark M. | System, method and apparatus for authenticating the distribution of data |
US20010037468A1 (en) | 2000-04-11 | 2001-11-01 | Gaddis M. Norton | Method and apparatus for creating unique image passwords |
US6792466B1 (en) | 2000-05-09 | 2004-09-14 | Sun Microsystems, Inc. | Trusted construction of message endpoints in a distributed computing environment |
US6862594B1 (en) | 2000-05-09 | 2005-03-01 | Sun Microsystems, Inc. | Method and apparatus to discover services using flexible search criteria |
CA2416532A1 (en) | 2000-07-25 | 2002-01-31 | Digimarc Corporation | Authentication watermarks for printed objects and related applications |
KR20020026636A (en) * | 2000-10-02 | 2002-04-12 | 이창용 | Login method of computer or computer network |
FR2819323B1 (en) | 2001-01-05 | 2003-04-25 | Schlumberger Systems & Service | METHOD FOR ACCESSING A SECURE SYSTEM |
US20020094868A1 (en) | 2001-01-16 | 2002-07-18 | Alma Tuck | Methods for interactive internet advertising, apparatuses and systems including same |
US7254249B2 (en) | 2001-03-05 | 2007-08-07 | Digimarc Corporation | Embedding location data in video |
GB0119629D0 (en) | 2001-08-10 | 2001-10-03 | Cryptomathic As | Data certification method and apparatus |
US7590859B2 (en) | 2001-08-24 | 2009-09-15 | Secure Computing Corporation | System and method for accomplishing two-factor user authentication using the internet |
US20030177248A1 (en) | 2001-09-05 | 2003-09-18 | International Business Machines Corporation | Apparatus and method for providing access rights information on computer accessible content |
US20040030934A1 (en) | 2001-10-19 | 2004-02-12 | Fumio Mizoguchi | User selectable authentication interface and universal password oracle |
US6993650B2 (en) | 2001-10-31 | 2006-01-31 | International Business Machines Corporation | Authentications integrated into a boot code image |
US20030093699A1 (en) | 2001-11-15 | 2003-05-15 | International Business Machines Corporation | Graphical passwords for use in a data processing network |
US20030177366A1 (en) * | 2002-03-18 | 2003-09-18 | Sun Microsystem, Inc., A Delaware Corporation | Method and apparatus for dynamic personal identification number management |
WO2003079204A1 (en) | 2002-03-19 | 2003-09-25 | Fujitsu Limited | Password input unit, password inputting method and program for executing that method on computer |
US7243239B2 (en) | 2002-06-28 | 2007-07-10 | Microsoft Corporation | Click passwords |
KR20020077838A (en) | 2002-08-09 | 2002-10-14 | 박승배 | Password system solving the controversial point of the password-exposure by the observation of other people |
JP4218299B2 (en) * | 2002-10-11 | 2009-02-04 | ソニー株式会社 | Information management system |
KR20040047155A (en) * | 2002-11-29 | 2004-06-05 | 주식회사 인터아츠 | System for certifying graphic avarta and interrupting internet harmful site dynamic avarta |
KR100543699B1 (en) * | 2003-01-21 | 2006-01-20 | 삼성전자주식회사 | Method and Apparatus for user authentication |
US20040250138A1 (en) | 2003-04-18 | 2004-12-09 | Jonathan Schneider | Graphical event-based password system |
US8751801B2 (en) | 2003-05-09 | 2014-06-10 | Emc Corporation | System and method for authenticating users using two or more factors |
US7337466B2 (en) | 2003-07-08 | 2008-02-26 | Intel Corporation | Information hiding through time synchronization |
JP4306390B2 (en) | 2003-09-29 | 2009-07-29 | 日本電気株式会社 | Password authentication apparatus, method and program |
EP1524629A1 (en) * | 2003-10-17 | 2005-04-20 | Swisscom Mobile AG | Authorisation control mechanism and device |
US7630513B2 (en) | 2004-04-26 | 2009-12-08 | Graphic Security Systems Corporation | System and method for network-based object authentication |
US20060020812A1 (en) | 2004-04-27 | 2006-01-26 | Shira Steinberg | System and method of using human friendly representations of mathematical function results and transaction analysis to prevent fraud |
US7454623B2 (en) | 2004-06-16 | 2008-11-18 | Blame Canada Holdings Inc | Distributed hierarchical identity management system authentication mechanisms |
US9245266B2 (en) | 2004-06-16 | 2016-01-26 | Callahan Cellular L.L.C. | Auditable privacy policies in a distributed hierarchical identity management system |
US7487213B2 (en) | 2004-09-07 | 2009-02-03 | Iconix, Inc. | Techniques for authenticating email |
US7422115B2 (en) | 2004-09-07 | 2008-09-09 | Iconix, Inc. | Techniques for to defeat phishing |
US7413085B2 (en) | 2004-09-07 | 2008-08-19 | Iconix, Inc. | Techniques for displaying emails listed in an email inbox |
US7747537B2 (en) | 2004-10-14 | 2010-06-29 | International Business Machines Corporation | System and method for providing a secure intellectual property marketplace |
US7021534B1 (en) | 2004-11-08 | 2006-04-04 | Han Kiliccote | Method and apparatus for providing secure document distribution |
US20060165005A1 (en) | 2004-11-15 | 2006-07-27 | Microsoft Corporation | Business method for pay-as-you-go computer and dynamic differential pricing |
WO2006064241A2 (en) | 2004-12-16 | 2006-06-22 | Mark Dwight Bedworth | User validation using images |
JP4327105B2 (en) | 2005-01-25 | 2009-09-09 | 株式会社ソニー・コンピュータエンタテインメント | Drawing method, image generation apparatus, and electronic information device |
US20060183551A1 (en) | 2005-02-15 | 2006-08-17 | Shroeder Prudent | Method for online advertising and gamming |
US7953983B2 (en) | 2005-03-08 | 2011-05-31 | Microsoft Corporation | Image or pictographic based computer login systems and methods |
US20070033102A1 (en) | 2005-03-29 | 2007-02-08 | Microsoft Corporation | Securely providing advertising subsidized computer usage |
US7743256B2 (en) | 2005-05-02 | 2010-06-22 | Vince Yang | Method for verifying authorized access |
US7599525B2 (en) | 2005-08-17 | 2009-10-06 | Industrial Technology Research Institute | Image password lock system by tracing position information of the organism or article feature |
US7577994B1 (en) | 2005-08-25 | 2009-08-18 | Symantec Corporation | Detecting local graphic password deciphering attacks |
JP4422088B2 (en) | 2005-09-27 | 2010-02-24 | Necネクサソリューションズ株式会社 | Image array type authentication system |
US20070174429A1 (en) * | 2006-01-24 | 2007-07-26 | Citrix Systems, Inc. | Methods and servers for establishing a connection between a client system and a virtual machine hosting a requested computing environment |
US7552467B2 (en) | 2006-04-24 | 2009-06-23 | Jeffrey Dean Lindsay | Security systems for protecting an asset |
US20070277224A1 (en) | 2006-05-24 | 2007-11-29 | Osborn Steven L | Methods and Systems for Graphical Image Authentication |
US20080052245A1 (en) | 2006-08-23 | 2008-02-28 | Richard Love | Advanced multi-factor authentication methods |
KR101130201B1 (en) | 2006-11-27 | 2012-03-30 | 엘지전자 주식회사 | Log-in method using a image-code, and terminal thereof |
US8601589B2 (en) | 2007-03-05 | 2013-12-03 | Microsoft Corporation | Simplified electronic messaging system |
US20080235788A1 (en) | 2007-03-23 | 2008-09-25 | University Of Ottawa | Haptic-based graphical password |
US9032298B2 (en) | 2007-05-31 | 2015-05-12 | Aditall Llc. | Website application system for online video producers and advertisers |
US8281147B2 (en) | 2007-06-21 | 2012-10-02 | Microsoft Corporation | Image based shared secret proxy for secure password entry |
US20090038006A1 (en) | 2007-08-02 | 2009-02-05 | Traenkenschuh John L | User authentication with image password |
US20090037339A1 (en) | 2007-08-02 | 2009-02-05 | Ncr Corporation | Methods of authenticating a bank customer desiring to conduct an electronic check deposit transaction |
-
2007
- 2007-02-21 US US11/677,562 patent/US20070277224A1/en not_active Abandoned
- 2007-06-20 JP JP2007162472A patent/JP2008204424A/en active Pending
- 2007-06-22 KR KR1020070061768A patent/KR100812411B1/en active IP Right Grant
-
2008
- 2008-02-21 AU AU2008218262A patent/AU2008218262B2/en not_active Ceased
- 2008-02-21 EP EP08730403A patent/EP2126773A1/en not_active Withdrawn
- 2008-02-21 WO PCT/US2008/054592 patent/WO2008103834A1/en active Application Filing
- 2008-02-21 CA CA002679153A patent/CA2679153A1/en not_active Abandoned
- 2008-02-21 CN CN200880012958A patent/CN101663672A/en active Pending
-
2010
- 2010-12-23 US US12/977,559 patent/US8850519B2/en active Active
Patent Citations (35)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5465084A (en) * | 1990-03-27 | 1995-11-07 | Cottrell; Stephen R. | Method to provide security for a computer and a device therefor |
US5608387A (en) * | 1991-11-30 | 1997-03-04 | Davies; John H. E. | Personal identification devices and access control systems |
US5276314A (en) * | 1992-04-03 | 1994-01-04 | International Business Machines Corporation | Identity verification system resistant to compromise by observation of its use |
US5428349A (en) * | 1992-10-01 | 1995-06-27 | Baker; Daniel G. | Nondisclosing password entry system |
US5559961A (en) * | 1994-04-04 | 1996-09-24 | Lucent Technologies Inc. | Graphical password |
US5821933A (en) * | 1995-09-14 | 1998-10-13 | International Business Machines Corporation | Visual access to restricted functions represented on a graphical user interface |
US5928364A (en) * | 1995-11-30 | 1999-07-27 | Casio Computer Co., Ltd. | Secret data storage device, secret data reading method, and control program storing medium |
US5664099A (en) * | 1995-12-28 | 1997-09-02 | Lotus Development Corporation | Method and apparatus for establishing a protected channel between a user and a computer system |
US5948061A (en) * | 1996-10-29 | 1999-09-07 | Double Click, Inc. | Method of delivery, targeting, and measuring advertising over networks |
US6209104B1 (en) * | 1996-12-10 | 2001-03-27 | Reza Jalili | Secure data entry and visual authentication system and method |
US6686931B1 (en) * | 1997-06-13 | 2004-02-03 | Motorola, Inc. | Graphical password methodology for a microprocessor device accepting non-alphanumeric user input |
US6718471B1 (en) * | 1998-03-31 | 2004-04-06 | Fujitsu Limited | Electronic information management system, ic card, terminal apparatus and electronic information management method, and recording medium on which is recorded an electronic information management program |
US7219368B2 (en) * | 1999-02-11 | 2007-05-15 | Rsa Security Inc. | Robust visual passwords |
US6981016B1 (en) * | 1999-06-11 | 2005-12-27 | Visage Development Limited | Distributed client/server computer network |
US6950949B1 (en) * | 1999-10-08 | 2005-09-27 | Entrust Limited | Method and apparatus for password entry using dynamic interface legitimacy information |
US6720860B1 (en) * | 2000-06-30 | 2004-04-13 | International Business Machines Corporation | Password protection using spatial and temporal variation in a high-resolution touch sensitive display |
US20020083347A1 (en) * | 2000-12-25 | 2002-06-27 | Akira Taguchi | Password generation and verification system and method therefor |
US20020188872A1 (en) * | 2001-06-06 | 2002-12-12 | Willeby Tandy G. | Secure key entry using a graphical user inerface |
US20040172564A1 (en) * | 2001-07-27 | 2004-09-02 | Federova Yulia Vladimirovna | Method and device for entering a computer database password |
US7093282B2 (en) * | 2001-08-09 | 2006-08-15 | Hillhouse Robert D | Method for supporting dynamic password |
US6980081B2 (en) * | 2002-05-10 | 2005-12-27 | Hewlett-Packard Development Company, L.P. | System and method for user authentication |
US20030210127A1 (en) * | 2002-05-10 | 2003-11-13 | James Anderson | System and method for user authentication |
US20050268100A1 (en) * | 2002-05-10 | 2005-12-01 | Gasparini Louis A | System and method for authenticating entities to users |
US20030191947A1 (en) * | 2003-04-30 | 2003-10-09 | Microsoft Corporation | System and method of inkblot authentication |
US20050268101A1 (en) * | 2003-05-09 | 2005-12-01 | Gasparini Louis A | System and method for authenticating at least a portion of an e-mail message |
US20040260955A1 (en) * | 2003-06-19 | 2004-12-23 | Nokia Corporation | Method and system for producing a graphical password, and a terminal device |
US20040230843A1 (en) * | 2003-08-20 | 2004-11-18 | Wayne Jansen | System and method for authenticating users using image selection |
US20060230435A1 (en) * | 2003-08-27 | 2006-10-12 | Hitoshi Kokumai | Mutual authentication system between user and system |
US20050071686A1 (en) * | 2003-09-29 | 2005-03-31 | Amit Bagga | Method and apparatus for generating and reinforcing user passwords |
US20060020815A1 (en) * | 2004-07-07 | 2006-01-26 | Bharosa Inc. | Online data encryption and decryption |
US20060174339A1 (en) * | 2005-01-29 | 2006-08-03 | Hai Tao | An arrangement and method of graphical password authentication |
US20060206918A1 (en) * | 2005-03-01 | 2006-09-14 | Mclean Ivan H | System and method for using a visual password scheme |
US20060206919A1 (en) * | 2005-03-10 | 2006-09-14 | Axalto Sa | System and method of secure login on insecure systems |
US20070130618A1 (en) * | 2005-09-28 | 2007-06-07 | Chen Chuan P | Human-factors authentication |
US20070198846A1 (en) * | 2006-02-20 | 2007-08-23 | Fujitsu Limited | Password input device, password input method, recording medium, and electronic apparatus |
Cited By (420)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9342674B2 (en) | 2003-05-30 | 2016-05-17 | Apple Inc. | Man-machine interface for controlling access to electronic devices |
US20080295165A1 (en) * | 2004-03-31 | 2008-11-27 | Merlinnovations & Consulting Gmbh | Method for Safely Logging Onto a Technical System |
US20060206918A1 (en) * | 2005-03-01 | 2006-09-14 | Mclean Ivan H | System and method for using a visual password scheme |
US9037993B2 (en) | 2005-03-01 | 2015-05-19 | Qualcomm Incorporated | System and method for using a visual password scheme |
US8145912B2 (en) * | 2005-03-01 | 2012-03-27 | Qualcomm Incorporated | System and method for using a visual password scheme |
USRE47518E1 (en) | 2005-03-08 | 2019-07-16 | Microsoft Technology Licensing, Llc | Image or pictographic based computer login systems and methods |
US8448226B2 (en) * | 2005-05-13 | 2013-05-21 | Sarangan Narasimhan | Coordinate based computer authentication system and methods |
US20080184363A1 (en) * | 2005-05-13 | 2008-07-31 | Sarangan Narasimhan | Coordinate Based Computer Authentication System and Methods |
US20140059673A1 (en) * | 2005-06-16 | 2014-02-27 | Sensible Vision, Inc. | System and Method for Disabling Secure Access to an Electronic Device Using Detection of a Unique Motion |
US9594894B2 (en) * | 2005-06-16 | 2017-03-14 | Sensible Vision, Inc. | System and method for enabling a camera used with an electronic device using detection of a unique motion |
US8812861B2 (en) | 2006-05-24 | 2014-08-19 | Confident Technologies, Inc. | Graphical image authentication and security system |
US20080244700A1 (en) * | 2006-05-24 | 2008-10-02 | Osborn Steven L | Methods and systems for graphical image authentication |
US8117458B2 (en) | 2006-05-24 | 2012-02-14 | Vidoop Llc | Methods and systems for graphical image authentication |
US8850519B2 (en) | 2006-05-24 | 2014-09-30 | Confident Technologies, Inc. | Methods and systems for graphical image authentication |
US9189603B2 (en) | 2006-05-24 | 2015-11-17 | Confident Technologies, Inc. | Kill switch security method and system |
US11075899B2 (en) | 2006-08-09 | 2021-07-27 | Ravenwhite Security, Inc. | Cloud authentication |
US11277413B1 (en) | 2006-08-09 | 2022-03-15 | Ravenwhite Security, Inc. | Performing authentication |
US10791121B1 (en) * | 2006-08-09 | 2020-09-29 | Ravenwhite Security, Inc. | Performing authentication |
US20150254661A1 (en) * | 2006-10-25 | 2015-09-10 | Payfont Limited | Secure authentication and payment system |
US9530129B2 (en) * | 2006-10-25 | 2016-12-27 | Payfont Limited | Secure authentication and payment system |
US20080148366A1 (en) * | 2006-12-16 | 2008-06-19 | Mark Frederick Wahl | System and method for authentication in a social network service |
WO2008092263A1 (en) * | 2007-01-31 | 2008-08-07 | Binary Monkeys, Inc. | Method and apparatus for network authentication of human interaction and user identity |
US20110029436A1 (en) * | 2007-02-05 | 2011-02-03 | Vidoop, Llc | Methods And Systems For Delivering Sponsored Out-Of-Band Passwords |
US20110047605A1 (en) * | 2007-02-06 | 2011-02-24 | Vidoop, Llc | System And Method For Authenticating A User To A Computer System |
US8677247B2 (en) | 2007-02-23 | 2014-03-18 | Cellco Partnership | Method for distinguishing a live actor from an automation |
US8601589B2 (en) * | 2007-03-05 | 2013-12-03 | Microsoft Corporation | Simplified electronic messaging system |
US20100250937A1 (en) * | 2007-03-05 | 2010-09-30 | Vidoop, Llc | Method And System For Securely Caching Authentication Elements |
US20080222710A1 (en) * | 2007-03-05 | 2008-09-11 | Microsoft Corporation | Simplified electronic messaging system |
US8745501B2 (en) | 2007-03-20 | 2014-06-03 | At&T Knowledge Ventures, Lp | System and method of displaying a multimedia timeline |
US20080235591A1 (en) * | 2007-03-20 | 2008-09-25 | At&T Knowledge Ventures, Lp | System and method of displaying a multimedia timeline |
US20080235590A1 (en) * | 2007-03-20 | 2008-09-25 | At&T Knowledge Ventures, Lp | System and method of accessing a multimedia timeline |
US20100037313A1 (en) * | 2007-04-10 | 2010-02-11 | Thomas Joseph Tomeny | Identification and Authentication using Public Templates and Private Patterns |
US20080301786A1 (en) * | 2007-06-01 | 2008-12-04 | Shaun Cuttill | Times 2 security system |
US8413220B1 (en) * | 2007-07-30 | 2013-04-02 | Intuit Inc. | System and method for user authentication |
US8151343B1 (en) | 2007-07-30 | 2012-04-03 | Intuit Inc. | Method and system for providing authentication credentials |
US20100257354A1 (en) * | 2007-09-07 | 2010-10-07 | Dis-Ent, Llc | Software based multi-channel polymorphic data obfuscation |
US8495358B2 (en) * | 2007-09-07 | 2013-07-23 | Dis-Ent, Llc | Software based multi-channel polymorphic data obfuscation |
US20100043062A1 (en) * | 2007-09-17 | 2010-02-18 | Samuel Wayne Alexander | Methods and Systems for Management of Image-Based Password Accounts |
US9495531B2 (en) | 2007-09-24 | 2016-11-15 | Apple Inc. | Embedded authentication systems in an electronic device |
US9953152B2 (en) | 2007-09-24 | 2018-04-24 | Apple Inc. | Embedded authentication systems in an electronic device |
US20140380465A1 (en) * | 2007-09-24 | 2014-12-25 | Apple Inc. | Embedded authentication systems in an electronic device |
US9134896B2 (en) | 2007-09-24 | 2015-09-15 | Apple Inc. | Embedded authentication systems in an electronic device |
US9329771B2 (en) | 2007-09-24 | 2016-05-03 | Apple Inc | Embedded authentication systems in an electronic device |
US9250795B2 (en) | 2007-09-24 | 2016-02-02 | Apple Inc. | Embedded authentication systems in an electronic device |
US9274647B2 (en) | 2007-09-24 | 2016-03-01 | Apple Inc. | Embedded authentication systems in an electronic device |
US9128601B2 (en) | 2007-09-24 | 2015-09-08 | Apple Inc. | Embedded authentication systems in an electronic device |
US10956550B2 (en) | 2007-09-24 | 2021-03-23 | Apple Inc. | Embedded authentication systems in an electronic device |
US11468155B2 (en) | 2007-09-24 | 2022-10-11 | Apple Inc. | Embedded authentication systems in an electronic device |
US9304624B2 (en) * | 2007-09-24 | 2016-04-05 | Apple Inc. | Embedded authentication systems in an electronic device |
US9519771B2 (en) | 2007-09-24 | 2016-12-13 | Apple Inc. | Embedded authentication systems in an electronic device |
US10275585B2 (en) | 2007-09-24 | 2019-04-30 | Apple Inc. | Embedded authentication systems in an electronic device |
US8296659B1 (en) * | 2007-10-19 | 2012-10-23 | Cellco Partnership | Method for distinguishing a live actor from an automation |
US20090113294A1 (en) * | 2007-10-30 | 2009-04-30 | Yahoo! Inc. | Progressive captcha |
US20090119177A1 (en) * | 2007-11-05 | 2009-05-07 | John Thomas K | Outdoor and out of home advertising method and system |
US20090150986A1 (en) * | 2007-12-05 | 2009-06-11 | International Business Machines Corporation | User Authorization Using An Automated Turing Test |
US9203833B2 (en) * | 2007-12-05 | 2015-12-01 | International Business Machines Corporation | User authorization using an automated Turing Test |
US8234695B2 (en) * | 2007-12-21 | 2012-07-31 | International Business Machines Corporation | Network security management for ambiguous user names |
US20090165106A1 (en) * | 2007-12-21 | 2009-06-25 | International Business Machines Corporation | Network Security Management for Ambiguous User Names |
US9197634B2 (en) | 2007-12-28 | 2015-11-24 | Paypal, Inc. | Server and/or client device authentication |
US8424057B2 (en) * | 2007-12-28 | 2013-04-16 | Ebay, Inc. | Mobile anti-phishing |
US20090172775A1 (en) * | 2007-12-28 | 2009-07-02 | Upendra Mardikar | Mobile anti-phishing |
US8656459B2 (en) | 2007-12-28 | 2014-02-18 | Ebay Inc. | Mobile anti-phishing |
US11240231B2 (en) | 2007-12-28 | 2022-02-01 | Paypal, Inc. | Server and/or client device authentication |
US9860244B2 (en) | 2007-12-28 | 2018-01-02 | Paypal, Inc. | Server and/or client device authentication |
US10313335B2 (en) | 2007-12-28 | 2019-06-04 | Paypal, Inc. | Server and/or client device authentication |
US20100024004A1 (en) * | 2007-12-31 | 2010-01-28 | International Business Machines Corporation | Method and system for securing access to an unsecure network utilizing a transparent identification member |
US8646040B2 (en) | 2007-12-31 | 2014-02-04 | International Business Machines Corporation | Method and system for securing access to an unsecure network utilizing a transparent identification member |
US11676373B2 (en) | 2008-01-03 | 2023-06-13 | Apple Inc. | Personal computing device control using face detection and recognition |
US20100011419A1 (en) * | 2008-01-14 | 2010-01-14 | Rsupport Co., Ltd. | Authentication method using icon password |
US8336086B2 (en) * | 2008-01-14 | 2012-12-18 | Rsupport Co., Ltd. | Authentication method using icon password |
US20090210937A1 (en) * | 2008-02-15 | 2009-08-20 | Alexander Kraft | Captcha advertising |
US20090240578A1 (en) * | 2008-03-18 | 2009-09-24 | Christopher James Lee | Methods and systems for graphical security authentication and advertising |
WO2009121437A1 (en) * | 2008-03-31 | 2009-10-08 | Albert Josef Zeier | Dynamic authentication method |
US11036847B2 (en) | 2008-04-01 | 2021-06-15 | Mastercard Technologies Canada ULC | Systems and methods for assessing security risk |
US10997284B2 (en) | 2008-04-01 | 2021-05-04 | Mastercard Technologies Canada ULC | Systems and methods for assessing security risk |
US10839065B2 (en) | 2008-04-01 | 2020-11-17 | Mastercard Technologies Canada ULC | Systems and methods for assessing security risk |
US8875250B2 (en) | 2008-05-06 | 2014-10-28 | International Business Machines Corporation | Method and system for authenticating an end user |
US8201227B2 (en) | 2008-05-06 | 2012-06-12 | International Business Machines Corporation | System and method for authenticating an end user |
US20090282464A1 (en) * | 2008-05-06 | 2009-11-12 | International Business Machines Corporation | System and method for authenticating an end user |
US9350722B2 (en) | 2008-05-06 | 2016-05-24 | International Business Machines Corporation | Authentication of an end user |
US8392975B1 (en) * | 2008-05-29 | 2013-03-05 | Google Inc. | Method and system for image-based user authentication |
EP2304545A1 (en) * | 2008-06-12 | 2011-04-06 | ADS Captcha Ltd | A time-resolved&user-spatially-activated feedback entrance and method thereof |
EP2304545A4 (en) * | 2008-06-12 | 2012-07-11 | Ads Captcha Ltd | A time-resolved&user-spatially-activated feedback entrance and method thereof |
US20090313694A1 (en) * | 2008-06-16 | 2009-12-17 | Mates John W | Generating a challenge response image including a recognizable image |
US8132255B2 (en) * | 2008-06-16 | 2012-03-06 | Intel Corporation | Generating a challenge response image including a recognizable image |
US8640227B2 (en) * | 2008-06-23 | 2014-01-28 | EchoStar Technologies, L.L.C. | Apparatus and methods for dynamic pictorial image authentication |
US20090320124A1 (en) * | 2008-06-23 | 2009-12-24 | Echostar Technologies Llc | Apparatus and methods for dynamic pictorial image authentication |
US9288196B2 (en) | 2008-06-24 | 2016-03-15 | Gary Stephen Shuster | Identity verification via selection of sensible output from recorded digital data |
US20090328175A1 (en) * | 2008-06-24 | 2009-12-31 | Gary Stephen Shuster | Identity verification via selection of sensible output from recorded digital data |
US8726355B2 (en) | 2008-06-24 | 2014-05-13 | Gary Stephen Shuster | Identity verification via selection of sensible output from recorded digital data |
US20090328163A1 (en) * | 2008-06-28 | 2009-12-31 | Yahoo! Inc. | System and method using streaming captcha for online verification |
WO2010011731A3 (en) * | 2008-07-22 | 2010-04-01 | Next Access Technologies, Llc | Methods and systems for secure key entry via communication networks |
WO2010011731A2 (en) * | 2008-07-22 | 2010-01-28 | Next Access Technologies, Llc | Methods and systems for secure key entry via communication networks |
US20100024022A1 (en) * | 2008-07-22 | 2010-01-28 | Wells David L | Methods and systems for secure key entry via communication networks |
US20130347066A1 (en) * | 2008-07-22 | 2013-12-26 | Next Access Technologies, Llc | Methods and systems for secure key entry via communication networks |
US8528045B2 (en) * | 2008-07-22 | 2013-09-03 | Next Access Technologies, Llc | Methods and systems for secure key entry via communication networks |
US9118673B2 (en) * | 2008-07-22 | 2015-08-25 | Next Access Technologies, Llc | Methods and systems for secure key entry via communication networks |
US8582957B2 (en) | 2008-09-22 | 2013-11-12 | EchoStar Technologies, L.L.C. | Methods and apparatus for visually displaying recording timer information |
US8572651B2 (en) | 2008-09-22 | 2013-10-29 | EchoStar Technologies, L.L.C. | Methods and apparatus for presenting supplemental information in an electronic programming guide |
US20100083310A1 (en) * | 2008-09-30 | 2010-04-01 | Echostar Technologies Llc | Methods and apparatus for providing multiple channel recall on a television receiver |
US9357262B2 (en) | 2008-09-30 | 2016-05-31 | Echostar Technologies L.L.C. | Systems and methods for graphical control of picture-in-picture windows |
US8411210B2 (en) | 2008-09-30 | 2013-04-02 | Echostar Technologies L.L.C. | Systems and methods for configuration of a remote control device |
US8397262B2 (en) | 2008-09-30 | 2013-03-12 | Echostar Technologies L.L.C. | Systems and methods for graphical control of user interface features in a television receiver |
US20100079682A1 (en) * | 2008-09-30 | 2010-04-01 | Echostar Technologies Llc | Systems and methods for automatic configuration of a remote control device |
US8098337B2 (en) | 2008-09-30 | 2012-01-17 | Echostar Technologies L.L.C. | Systems and methods for automatic configuration of a remote control device |
US20100079680A1 (en) * | 2008-09-30 | 2010-04-01 | Echostar Technologies Llc | Systems and methods for configuration of a remote control device |
US8473979B2 (en) | 2008-09-30 | 2013-06-25 | Echostar Technologies L.L.C. | Systems and methods for graphical adjustment of an electronic program guide |
US8763045B2 (en) | 2008-09-30 | 2014-06-24 | Echostar Technologies L.L.C. | Systems and methods for providing customer service features via a graphical user interface in a television receiver |
US8937687B2 (en) | 2008-09-30 | 2015-01-20 | Echostar Technologies L.L.C. | Systems and methods for graphical control of symbol-based features in a television receiver |
US8793735B2 (en) | 2008-09-30 | 2014-07-29 | EchoStar Technologies, L.L.C. | Methods and apparatus for providing multiple channel recall on a television receiver |
US20100095371A1 (en) * | 2008-10-14 | 2010-04-15 | Mark Rubin | Visual authentication systems and methods |
EP2182457A1 (en) * | 2008-10-31 | 2010-05-05 | Gemalto SA | Dynamic PIN verification for insecure environment |
WO2010049257A1 (en) * | 2008-10-31 | 2010-05-06 | Gemalto Sa | Dynamic pin verification for insecure environment |
US9100614B2 (en) | 2008-10-31 | 2015-08-04 | Echostar Technologies L.L.C. | Graphical interface navigation based on image element proximity |
US8595804B2 (en) * | 2008-11-06 | 2013-11-26 | At&T Intellectual Property I, L.P. | System and method for device security with a plurality of authentication modes |
US20100115607A1 (en) * | 2008-11-06 | 2010-05-06 | At&T Intellectual Property I, L.P. | System and method for device security with a plurality of authentication modes |
US7659869B1 (en) | 2008-11-21 | 2010-02-09 | Inernational Business Machines Corporation | System and method for authenticating an end user |
US9471760B2 (en) | 2008-11-28 | 2016-10-18 | International Business Machines Corporation | Authentication of an end user |
US8355993B2 (en) | 2008-11-28 | 2013-01-15 | International Business Machines Corporation | Authentication of an end user |
US8655788B2 (en) | 2008-11-28 | 2014-02-18 | International Business Machines Corporation | Authentication of an end user |
US8645281B2 (en) | 2008-11-28 | 2014-02-04 | International Business Machines Corporation | Process for authenticating an end user |
US8843418B2 (en) | 2008-11-28 | 2014-09-23 | International Business Machines Corporation | Authentication of an end user |
US8260718B2 (en) | 2008-11-28 | 2012-09-04 | International Business Machines Corporation | System and method for authenticating an end user |
US20100138657A1 (en) * | 2008-11-28 | 2010-06-03 | International Business Machines Corporation | System and method for authenticating an end user |
US8260717B2 (en) | 2008-11-28 | 2012-09-04 | International Business Machines Corporation | System and method for authenticating an end user |
US20100138912A1 (en) * | 2008-11-28 | 2010-06-03 | International Business Machines Corporation | System and method for authenticating an end user |
US8621578B1 (en) * | 2008-12-10 | 2013-12-31 | Confident Technologies, Inc. | Methods and systems for protecting website forms from automated access |
US20100162357A1 (en) * | 2008-12-19 | 2010-06-24 | Microsoft Corporation | Image-based human interactive proofs |
US9538355B2 (en) | 2008-12-29 | 2017-01-03 | Google Technology Holdings LLC | Method of targeted discovery of devices in a network |
US9148423B2 (en) | 2008-12-29 | 2015-09-29 | Google Technology Holdings LLC | Personal identification number (PIN) generation between two devices in a network |
US20100164693A1 (en) * | 2008-12-29 | 2010-07-01 | General Instrument Corporation | Method of targeted discovery of devices in a network |
US9794083B2 (en) | 2008-12-29 | 2017-10-17 | Google Technology Holdings LLC | Method of targeted discovery of devices in a network |
US20100169399A1 (en) * | 2008-12-29 | 2010-07-01 | General Instrument Corporation | Personal identification number (pin) generation between two devices in a network |
WO2010083016A1 (en) * | 2009-01-13 | 2010-07-22 | Nic, Inc. | System and method for authenticating a user a graphical password |
US20100180336A1 (en) * | 2009-01-13 | 2010-07-15 | Nolan Jones | System and Method for Authenticating a User Using a Graphical Password |
US8347103B2 (en) * | 2009-01-13 | 2013-01-01 | Nic, Inc. | System and method for authenticating a user using a graphical password |
US9946891B2 (en) | 2009-06-17 | 2018-04-17 | Microsoft Technology Licensing, Llc | Image-based unlock functionality on a computing device |
US20100325654A1 (en) * | 2009-06-17 | 2010-12-23 | General Instrument Corporation | Communicating a device descriptor between two devices when registering onto a network |
US8904172B2 (en) * | 2009-06-17 | 2014-12-02 | Motorola Mobility Llc | Communicating a device descriptor between two devices when registering onto a network |
US8458485B2 (en) | 2009-06-17 | 2013-06-04 | Microsoft Corporation | Image-based unlock functionality on a computing device |
US20100325721A1 (en) * | 2009-06-17 | 2010-12-23 | Microsoft Corporation | Image-based unlock functionality on a computing device |
US9355239B2 (en) | 2009-06-17 | 2016-05-31 | Microsoft Technology Licensing, Llc | Image-based unlock functionality on a computing device |
US20100322485A1 (en) * | 2009-06-18 | 2010-12-23 | Research In Motion Limited | Graphical authentication |
US10325086B2 (en) * | 2009-06-18 | 2019-06-18 | Blackberry Limited | Computing device with graphical authentication interface |
US9064104B2 (en) | 2009-06-18 | 2015-06-23 | Blackberry Limited | Graphical authentication |
US20120167199A1 (en) * | 2009-06-18 | 2012-06-28 | Research In Motion Limited | Computing device with graphical authentication interface |
US10176315B2 (en) | 2009-06-18 | 2019-01-08 | Blackberry Limited | Graphical authentication |
US20110023112A1 (en) * | 2009-07-23 | 2011-01-27 | Konica Minolta Holdings, Inc. | Authentication Method, Authentication Device and Computer-Readable Medium Storing Instructions for Authentication Processing Capable of Ensuring Security and Usability |
US8683577B2 (en) * | 2009-07-23 | 2014-03-25 | Konica Minolta Holdings, Inc. | Authentication method, authentication device and computer-readable medium storing instructions for authentication processing capable of ensuring security and usability |
US20110081640A1 (en) * | 2009-10-07 | 2011-04-07 | Hsia-Yen Tseng | Systems and Methods for Protecting Websites from Automated Processes Using Visually-Based Children's Cognitive Tests |
JP2013507699A (en) * | 2009-10-16 | 2013-03-04 | アーマーログ リミテッド | System and method for improving user account access security |
AU2010306408B2 (en) * | 2009-10-16 | 2015-08-20 | Armorlog International Pty Ltd | System and method for improving security of user account access |
EP2489149A1 (en) * | 2009-10-16 | 2012-08-22 | Armorlog Ltd | System and method for improving security of user account access |
US9390249B2 (en) | 2009-10-16 | 2016-07-12 | Armorlog Ltd | System and method for improving security of user account access |
EP2489149A4 (en) * | 2009-10-16 | 2013-12-11 | Armorlog Ltd | System and method for improving security of user account access |
US20110145899A1 (en) * | 2009-12-10 | 2011-06-16 | Verisign, Inc. | Single Action Authentication via Mobile Devices |
EP2514135A4 (en) * | 2009-12-14 | 2015-02-18 | Telcordia Tech Inc | Systems and methods for authenticating a server by combining image recognition with codes |
EP2514135A1 (en) * | 2009-12-14 | 2012-10-24 | Telcordia Technologies, Inc. | Systems and methods for authenticating a server by combining image recognition with codes |
US20110191820A1 (en) * | 2010-01-29 | 2011-08-04 | Christopher Liam Ivey | System and Method for Restricting Access to a Computer System to Live Persons by Means of Semantic Association of Images |
US8707453B2 (en) * | 2010-01-29 | 2014-04-22 | Christopher Liam Ivey | System and method for restricting access to a computer system to live persons by means of semantic association of images |
US20110191838A1 (en) * | 2010-02-02 | 2011-08-04 | Kazu Yanagihara | Authentication Using Transient Event Data |
US8973154B2 (en) * | 2010-02-02 | 2015-03-03 | Kazu Yanagihara | Authentication using transient event data |
EP2548112A4 (en) * | 2010-03-16 | 2015-08-26 | Telcordia Tech Inc | System and methods for authenticating a receiver in an on-demand sender-receiver transaction |
WO2011115765A1 (en) | 2010-03-16 | 2011-09-22 | Telcordia Technologies, Inc. | System and methods for authenticating a receiver in an on-demand sender-receiver transaction |
US20130023241A1 (en) * | 2010-03-26 | 2013-01-24 | Igrove, Inc. | Authentication method and system using portable terminal |
WO2011124267A1 (en) * | 2010-04-09 | 2011-10-13 | Jasbir Singh | Authentication system and method thereof |
US20110277024A1 (en) * | 2010-05-07 | 2011-11-10 | Research In Motion Limited | Locally stored phishing countermeasure |
US8984604B2 (en) * | 2010-05-07 | 2015-03-17 | Blackberry Limited | Locally stored phishing countermeasure |
US8788834B1 (en) * | 2010-05-25 | 2014-07-22 | Symantec Corporation | Systems and methods for altering the state of a computing device via a contacting sequence |
CN102281137A (en) * | 2010-06-12 | 2011-12-14 | 杭州驭强科技有限公司 | Dynamic password authentication method of mutual-authentication challenge response mechanism |
CN102347929A (en) * | 2010-07-28 | 2012-02-08 | 阿里巴巴集团控股有限公司 | Verification method of user identity and apparatus thereof |
US20120030118A1 (en) * | 2010-07-29 | 2012-02-02 | Bank Of America Corporation | Remote capture of multiple deposit items using a grid |
US9064248B2 (en) * | 2010-07-29 | 2015-06-23 | Bank Of America Corporation | Remote capture of multiple deposit items using a grid |
US20120047584A1 (en) * | 2010-08-19 | 2012-02-23 | Hon Hai Precision Industry Co., Ltd. | User request approval system using advertisments and method |
US8667560B2 (en) * | 2010-08-31 | 2014-03-04 | At&T Intellectual Property I, L.P. | Authenticating a user with picture messaging |
US20120054833A1 (en) * | 2010-08-31 | 2012-03-01 | At&T Intellectual Property I, L.P. | Authenticating a User with Picture Messaging |
US8756672B1 (en) | 2010-10-25 | 2014-06-17 | Wms Gaming, Inc. | Authentication using multi-layered graphical passwords |
GB2485156B (en) * | 2010-11-02 | 2016-06-01 | Ian Hawkes Michael | Method and apparatus for securing network communications |
US20130232549A1 (en) * | 2010-11-02 | 2013-09-05 | Michael Ian Hawkes | Method and apparatus for securing network communications |
WO2012059756A1 (en) * | 2010-11-02 | 2012-05-10 | Michael Ian Hawkes | Method and Apparatus for Securing Network Communications |
US8788657B2 (en) | 2010-12-09 | 2014-07-22 | Wavemarket, Inc. | Communication monitoring system and method enabling designating a peer |
US20120151045A1 (en) * | 2010-12-09 | 2012-06-14 | Wavemarket, Inc. | System and method for improved detection and monitoring of online accounts |
US9571590B2 (en) | 2010-12-09 | 2017-02-14 | Location Labs, Inc. | System and method for improved detection and monitoring of online accounts |
US9460299B2 (en) | 2010-12-09 | 2016-10-04 | Location Labs, Inc. | System and method for monitoring and reporting peer communications |
US9268956B2 (en) * | 2010-12-09 | 2016-02-23 | Location Labs, Inc. | Online-monitoring agent, system, and method for improved detection and monitoring of online accounts |
US10621328B2 (en) | 2010-12-16 | 2020-04-14 | Blackberry Limited | Password entry using 3D image with spatial alignment |
US8631487B2 (en) | 2010-12-16 | 2014-01-14 | Research In Motion Limited | Simple algebraic and multi-layer passwords |
US8769641B2 (en) | 2010-12-16 | 2014-07-01 | Blackberry Limited | Multi-layer multi-point or pathway-based passwords |
US8931083B2 (en) | 2010-12-16 | 2015-01-06 | Blackberry Limited | Multi-layer multi-point or randomized passwords |
US8650635B2 (en) | 2010-12-16 | 2014-02-11 | Blackberry Limited | Pressure sensitive multi-layer passwords |
US8661530B2 (en) | 2010-12-16 | 2014-02-25 | Blackberry Limited | Multi-layer orientation-changing password |
US8650624B2 (en) | 2010-12-16 | 2014-02-11 | Blackberry Limited | Obscuring visual login |
US9135426B2 (en) | 2010-12-16 | 2015-09-15 | Blackberry Limited | Password entry using moving images |
US20120159608A1 (en) * | 2010-12-16 | 2012-06-21 | Research In Motion Limited | Password entry using 3d image with spatial alignment |
US8635676B2 (en) | 2010-12-16 | 2014-01-21 | Blackberry Limited | Visual or touchscreen password entry |
US8745694B2 (en) | 2010-12-16 | 2014-06-03 | Research In Motion Limited | Adjusting the position of an endpoint reference for increasing security during device log-on |
US9258123B2 (en) | 2010-12-16 | 2016-02-09 | Blackberry Limited | Multi-layered color-sensitive passwords |
US8863271B2 (en) * | 2010-12-16 | 2014-10-14 | Blackberry Limited | Password entry using 3D image with spatial alignment |
US9634995B2 (en) | 2010-12-22 | 2017-04-25 | Mat Patents Ltd. | System and method for routing-based internet security |
US9762547B2 (en) | 2010-12-22 | 2017-09-12 | May Patents Ltd. | System and method for routing-based internet security |
US11876785B2 (en) | 2010-12-22 | 2024-01-16 | May Patents Ltd. | System and method for routing-based internet security |
US11303612B2 (en) | 2010-12-22 | 2022-04-12 | May Patents Ltd. | System and method for routing-based internet security |
US10652214B2 (en) | 2010-12-22 | 2020-05-12 | May Patents Ltd. | System and method for routing-based internet security |
WO2012085908A2 (en) | 2010-12-22 | 2012-06-28 | May Patents Ltd. | System and method for routing-based internet security |
US9177157B2 (en) | 2010-12-22 | 2015-11-03 | May Patents Ltd. | System and method for routing-based internet security |
TWI426764B (en) * | 2011-01-31 | 2014-02-11 | Gamania Digital Entertainment Co Ltd | Randomly generate methods for verifying graphics and questionnaires |
US8655027B1 (en) | 2011-03-25 | 2014-02-18 | The United States of America, as represented by the Director, National Security Agency | Method of image-based user authentication |
US9122862B2 (en) * | 2011-04-13 | 2015-09-01 | Lenovo (Singapore) Pte. Ltd. | Password input method using visual object |
US20120266236A1 (en) * | 2011-04-13 | 2012-10-18 | Lenovo (Singapore) Pte. Ltd. | Password input method using visual object |
US8769668B2 (en) | 2011-05-09 | 2014-07-01 | Blackberry Limited | Touchscreen password entry |
EP2546774A1 (en) * | 2011-05-24 | 2013-01-16 | Shoji Kodama | Authentication system and method |
EP2546774A4 (en) * | 2011-05-24 | 2013-12-04 | Shoji Kodama | Authentication system and method |
US8819796B2 (en) * | 2011-05-24 | 2014-08-26 | Shoji Kodama | Authentication system and method |
US8910253B2 (en) | 2011-05-24 | 2014-12-09 | Microsoft Corporation | Picture gesture authentication |
US8650636B2 (en) | 2011-05-24 | 2014-02-11 | Microsoft Corporation | Picture gesture authentication |
CN103180860A (en) * | 2011-05-24 | 2013-06-26 | 儿玉昇司 | Authentication system and method |
US20120324570A1 (en) * | 2011-06-17 | 2012-12-20 | Kenichi Taniuchi | Information processor, information processing method, and computer program product |
US8561171B2 (en) * | 2011-06-17 | 2013-10-15 | Kabushiki Kaisha Toshiba | Information processor, information processing method, and computer program product |
US9667609B2 (en) * | 2011-07-07 | 2017-05-30 | Bottomline Technologies (De) Inc. | Application security system and method |
US9537848B2 (en) | 2011-07-07 | 2017-01-03 | Bottomline Technologies, Inc. | Application security system and method |
US20130145443A1 (en) * | 2011-07-07 | 2013-06-06 | Bottomline Technologies (De) Inc. | Application security system and method |
US8776213B2 (en) * | 2011-07-07 | 2014-07-08 | Bottomline Technologies (De), Inc. | Mobile application security system and method |
US20130014248A1 (en) * | 2011-07-07 | 2013-01-10 | Bottomline Technologies (De), Inc. | Mobile application security system and method |
US8978975B2 (en) * | 2011-07-18 | 2015-03-17 | Accullink, Inc. | Systems and methods for authenticating near field communcation financial transactions |
US8910274B2 (en) | 2011-07-28 | 2014-12-09 | Xerox Corporation | Multi-factor authentication using digital images of barcodes |
US8566918B2 (en) | 2011-08-15 | 2013-10-22 | Bank Of America Corporation | Method and apparatus for token-based container chaining |
WO2013025581A1 (en) * | 2011-08-15 | 2013-02-21 | Bank Of America Corporation | Apparatus and method for token-based access control |
US9069943B2 (en) | 2011-08-15 | 2015-06-30 | Bank Of America Corporation | Method and apparatus for token-based tamper detection |
US8752123B2 (en) | 2011-08-15 | 2014-06-10 | Bank Of America Corporation | Apparatus and method for performing data tokenization |
US8474056B2 (en) | 2011-08-15 | 2013-06-25 | Bank Of America Corporation | Method and apparatus for token-based virtual machine recycling |
CN102360505A (en) * | 2011-08-16 | 2012-02-22 | 北京新媒传信科技有限公司 | Graphical verification code generation method |
US20130077786A1 (en) * | 2011-09-27 | 2013-03-28 | Oki Data Corporation | Image processing apparatus |
US9210296B2 (en) * | 2011-09-27 | 2015-12-08 | Oki Data Corporation | Image processing apparatus |
US11755712B2 (en) | 2011-09-29 | 2023-09-12 | Apple Inc. | Authentication with secondary approver |
US10516997B2 (en) | 2011-09-29 | 2019-12-24 | Apple Inc. | Authentication with secondary approver |
US10142835B2 (en) | 2011-09-29 | 2018-11-27 | Apple Inc. | Authentication with secondary approver |
US10484384B2 (en) | 2011-09-29 | 2019-11-19 | Apple Inc. | Indirect authentication |
US10419933B2 (en) | 2011-09-29 | 2019-09-17 | Apple Inc. | Authentication with secondary approver |
US11200309B2 (en) | 2011-09-29 | 2021-12-14 | Apple Inc. | Authentication with secondary approver |
US9223948B2 (en) | 2011-11-01 | 2015-12-29 | Blackberry Limited | Combined passcode and activity launch modifier |
US8959619B2 (en) | 2011-12-21 | 2015-02-17 | Fleet One, Llc. | Graphical image password authentication method |
US10754814B1 (en) * | 2011-12-22 | 2020-08-25 | Amazon Technologies, Inc. | Methods and systems for image-based authentication |
US8650627B2 (en) | 2011-12-28 | 2014-02-11 | Tata Consultancy Services Ltd. | Computer implemented system and method for providing challenge-response solutions to authenticate a user |
US9519769B2 (en) * | 2012-01-09 | 2016-12-13 | Sensible Vision, Inc. | System and method for disabling secure access to an electronic device using detection of a predetermined device orientation |
US20140123275A1 (en) * | 2012-01-09 | 2014-05-01 | Sensible Vision, Inc. | System and method for disabling secure access to an electronic device using detection of a predetermined device orientation |
US9183597B2 (en) | 2012-02-16 | 2015-11-10 | Location Labs, Inc. | Mobile user classification system and method |
US20130251212A1 (en) * | 2012-03-23 | 2013-09-26 | Ebay, Inc. | Hardening Security Images |
US9129102B2 (en) * | 2012-03-23 | 2015-09-08 | Paypal, Inc. | Hardening security images |
US20150347869A1 (en) * | 2012-03-23 | 2015-12-03 | Paypal, Inc. | Hardening security images |
US11068576B2 (en) | 2012-03-23 | 2021-07-20 | Paypal, Inc. | Hardening security images |
US10565361B2 (en) * | 2012-03-23 | 2020-02-18 | Paypal, Inc. | Hardening security images |
US9792423B2 (en) * | 2012-03-23 | 2017-10-17 | Paypal, Inc. | Hardening security images |
US20180101674A1 (en) * | 2012-03-23 | 2018-04-12 | Paypal, Inc. | Hardening security images |
US20130276100A1 (en) * | 2012-04-17 | 2013-10-17 | Soongsil University Research Consortium Techno-Park | Method and apparatus for authenticating password |
US8661532B2 (en) * | 2012-04-17 | 2014-02-25 | Soongsil University Research Consortium Techno-Park | Method and apparatus for authenticating password |
GB2495567B (en) * | 2012-04-19 | 2013-09-18 | Wonga Technology Ltd | Method and system for user authentication |
GB2495567A (en) * | 2012-04-19 | 2013-04-17 | Wonga Technology Ltd | User authentication using images of a geographical area |
US11209961B2 (en) | 2012-05-18 | 2021-12-28 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US8881251B1 (en) * | 2012-05-30 | 2014-11-04 | RememberIN, Inc. | Electronic authentication using pictures and images |
US20130340057A1 (en) * | 2012-06-13 | 2013-12-19 | Rawllin International Inc. | Image Facilitated Password Generation User Authentication And Password Recovery |
US9596234B2 (en) | 2012-06-19 | 2017-03-14 | Paychief, Llc | Methods and systems for providing bidirectional authentication |
US20130340071A1 (en) * | 2012-06-19 | 2013-12-19 | Paychief Llc | Methods and systems for providing bidirectional authentication |
US9053312B2 (en) * | 2012-06-19 | 2015-06-09 | Paychief, Llc | Methods and systems for providing bidirectional authentication |
US9342611B2 (en) | 2012-06-22 | 2016-05-17 | Paychief Llc | Systems and methods for transferring personal data using a symbology |
US9633192B2 (en) | 2012-06-22 | 2017-04-25 | Paychief Llc | Systems and methods for providing a one-time authorization |
US9887992B1 (en) | 2012-07-11 | 2018-02-06 | Microstrategy Incorporated | Sight codes for website authentication |
US9264415B1 (en) | 2012-07-11 | 2016-02-16 | Microstrategy Incorporated | User credentials |
US9807074B1 (en) | 2012-07-11 | 2017-10-31 | Microstrategy Incorporated | User credentials |
US9027099B1 (en) | 2012-07-11 | 2015-05-05 | Microstrategy Incorporated | User credentials |
US9742781B1 (en) | 2012-07-11 | 2017-08-22 | Microstrategy Incorporated | Generation and validation of user credentials |
US9269358B1 (en) | 2012-07-11 | 2016-02-23 | Microstrategy Incorporated | User credentials |
US9979723B1 (en) | 2012-07-11 | 2018-05-22 | Microstrategy Incorporated | User credentials |
US9860246B1 (en) | 2012-07-11 | 2018-01-02 | Microstrategy Incorporated | Generation and validation of user credentials having multiple representations |
CN102867025A (en) * | 2012-08-23 | 2013-01-09 | 百度在线网络技术(北京)有限公司 | Method and device for acquiring picture marking data |
US8910260B2 (en) * | 2012-09-21 | 2014-12-09 | International Business Machines Corporation | System and method for real time secure image based key generation using partial polygons assembled into a master composite image |
US8904508B2 (en) | 2012-09-21 | 2014-12-02 | International Business Machines Corporation | System and method for real time secure image based key generation using partial polygons assembled into a master composite image |
US20150212681A1 (en) * | 2012-10-10 | 2015-07-30 | Olympus Corporation | Head-mounted display, unlocking system, and method for controlling unlocking system |
US9886569B1 (en) | 2012-10-26 | 2018-02-06 | Microstrategy Incorporated | Credential tracking |
US9640001B1 (en) | 2012-11-30 | 2017-05-02 | Microstrategy Incorporated | Time-varying representations of user credentials |
US10084775B1 (en) | 2012-11-30 | 2018-09-25 | Microstrategy Incorporated | Time-varying representations of user credentials |
US9219720B1 (en) | 2012-12-06 | 2015-12-22 | Intuit Inc. | Method and system for authenticating a user using media objects |
WO2014099603A1 (en) * | 2012-12-21 | 2014-06-26 | Abbott Laboratories | Methods and apparatus for authenticating user login |
US9311472B2 (en) * | 2012-12-21 | 2016-04-12 | Abbott Laboratories | Methods and apparatus for authenticating user login |
US10887771B2 (en) | 2013-03-11 | 2021-01-05 | Time Warner Cable Enterprises Llc | Access control, establishing trust in a wireless network |
US20140259103A1 (en) * | 2013-03-11 | 2014-09-11 | Don Gunasekara | Access control, establishing trust in a wireless network |
US10104554B2 (en) * | 2013-03-11 | 2018-10-16 | Time Warner Cable Enterprises Llc | Access control, establishing trust in a wireless network |
US9154303B1 (en) | 2013-03-14 | 2015-10-06 | Microstrategy Incorporated | Third-party authorization of user credentials |
US10027680B1 (en) | 2013-03-14 | 2018-07-17 | Microstrategy Incorporated | Third-party authorization of user credentials |
US9438685B2 (en) | 2013-03-15 | 2016-09-06 | Location Labs, Inc. | System and method for display of user relationships corresponding to network-enabled communications |
CN103200011A (en) * | 2013-04-26 | 2013-07-10 | 福建伊时代信息科技股份有限公司 | Password authentication method and device |
US10120989B2 (en) * | 2013-06-04 | 2018-11-06 | NOWWW.US Pty. Ltd. | Login process for mobile phones, tablets and other types of touch screen devices or computers |
US20140359726A1 (en) * | 2013-06-04 | 2014-12-04 | Mark Rodney Anson | Login Process for Mobile Phones, Tablets and Other Types of Touch Screen Devices or Computers |
GB2517136A (en) * | 2013-07-05 | 2015-02-18 | Logincident Ltd | Authentication System and Method |
US20160154980A1 (en) * | 2013-07-12 | 2016-06-02 | ADUCID s.r.o | Method of secret information entering into electronic digital devices |
US10192075B2 (en) * | 2013-07-12 | 2019-01-29 | Aducid S.R.O. | Method of secret information entering into electronic digital devices |
US11494046B2 (en) | 2013-09-09 | 2022-11-08 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on unlock inputs |
US20150074795A1 (en) * | 2013-09-09 | 2015-03-12 | Young Man Hwang | One-time password generation apparatus and method using virtual input means |
US10803281B2 (en) | 2013-09-09 | 2020-10-13 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US10262182B2 (en) | 2013-09-09 | 2019-04-16 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on unlock inputs |
US9898642B2 (en) | 2013-09-09 | 2018-02-20 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US10372963B2 (en) | 2013-09-09 | 2019-08-06 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US11287942B2 (en) | 2013-09-09 | 2022-03-29 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces |
US10410035B2 (en) | 2013-09-09 | 2019-09-10 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US10055634B2 (en) | 2013-09-09 | 2018-08-21 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
US11768575B2 (en) | 2013-09-09 | 2023-09-26 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on unlock inputs |
US20150101041A1 (en) * | 2013-10-03 | 2015-04-09 | Samsung Electronics Co., Ltd. | Method and apparatus for user authentication |
RU2644117C2 (en) * | 2013-10-25 | 2018-02-07 | Хуавей Текнолоджиз Ко., Лтд. | Method for user and terminal authentication |
US10068105B2 (en) | 2013-10-25 | 2018-09-04 | Huawei Technologies Co., Ltd. | User authentication method and terminal |
US20150220723A1 (en) * | 2014-02-06 | 2015-08-06 | International Business Machines Corporation | User authentication using temporal knowledge of dynamic images |
US10102365B2 (en) * | 2014-02-06 | 2018-10-16 | International Business Machines Corporation | User authentication using temporal knowledge of dynamic images |
US10127372B2 (en) | 2014-02-14 | 2018-11-13 | Samsung Electronics Co., Ltd. | Electronic device, method for authenticating user, and computer readable recording medium |
WO2015122716A1 (en) * | 2014-02-14 | 2015-08-20 | Samsung Electronics Co., Ltd. | Electronic device, method for authenticating user, and computer readable recording medium |
US10963555B2 (en) | 2014-02-14 | 2021-03-30 | Samsung Electronics Co., Ltd. | Electronic device, method for authenticating user, and computer readable recording medium |
US10169565B2 (en) * | 2014-03-27 | 2019-01-01 | Yahya Zia | Method of dynamically adapting a secure graphical password sequence |
US9813409B2 (en) * | 2014-03-27 | 2017-11-07 | Yahya Zia | Method of dynamically adapting a graphical password sequence by executing computer-executable instructions stored on a non-transitory computer-readable medium |
US20150281215A1 (en) * | 2014-03-27 | 2015-10-01 | Yahya Zia | Method of Dynamically Adapting a Graphical Password Sequence by Executing Computer-Executable Instructions Stored On a Non-Transitory Computer-Readable Medium |
US10447838B2 (en) | 2014-04-03 | 2019-10-15 | Location Labs, Inc. | Telephone fraud management system and method |
US9853815B2 (en) * | 2014-04-24 | 2017-12-26 | Lee Zheng | Password verifying device and method |
US20150312040A1 (en) * | 2014-04-24 | 2015-10-29 | Smart Electronic Industrial (Dong Guan) Co., Ltd. | Password verifying device and method |
US11836725B2 (en) | 2014-05-29 | 2023-12-05 | Apple Inc. | User interface for payments |
US10902424B2 (en) | 2014-05-29 | 2021-01-26 | Apple Inc. | User interface for payments |
US10748153B2 (en) | 2014-05-29 | 2020-08-18 | Apple Inc. | User interface for payments |
US10438205B2 (en) | 2014-05-29 | 2019-10-08 | Apple Inc. | User interface for payments |
US10977651B2 (en) | 2014-05-29 | 2021-04-13 | Apple Inc. | User interface for payments |
US10796309B2 (en) | 2014-05-29 | 2020-10-06 | Apple Inc. | User interface for payments |
US10404694B2 (en) | 2014-06-03 | 2019-09-03 | Nxp B.V. | Mobile device, method of authenticating a user, computer program, article of manufacture, display |
EP2953048A1 (en) * | 2014-06-03 | 2015-12-09 | Nxp B.V. | Mobile device, method of authenticating a user and computer program |
US11451528B2 (en) * | 2014-06-26 | 2022-09-20 | Amazon Technologies, Inc. | Two factor authentication with authentication objects |
US20160044025A1 (en) * | 2014-08-07 | 2016-02-11 | Puneet Goyal | System and method for security enhancement |
US9361447B1 (en) | 2014-09-04 | 2016-06-07 | Emc Corporation | Authentication based on user-selected image overlay effects |
US20160183088A1 (en) * | 2014-12-20 | 2016-06-23 | Ziv Yekutieli | Smartphone Memory Diagnostics |
CN104601332A (en) * | 2015-01-26 | 2015-05-06 | 上海众人科技有限公司 | Enhancement type dynamic two-dimensional code authentication system and authentication method thereof |
GB2538379A (en) * | 2015-04-17 | 2016-11-16 | Outbound Services Pty Ltd | Method of authentication |
US11762989B2 (en) | 2015-06-05 | 2023-09-19 | Bottomline Technologies Inc. | Securing electronic data by automatically destroying misdirected transmissions |
US10198963B2 (en) | 2015-06-18 | 2019-02-05 | Googale (2009) Ltd. | Secure computerized system, method and computer program product for children and/or pre-literate/illiterate users |
US10853029B2 (en) | 2015-06-18 | 2020-12-01 | Googale (2009) Ltd. | Computerized system including rules for a rendering system accessible to non-literate users via a touch screen |
US9871798B2 (en) | 2015-06-18 | 2018-01-16 | Googale (2009) Ltd. | Computerized system facilitating secured electronic communication between and with children |
US10726118B2 (en) | 2015-06-18 | 2020-07-28 | Googale (2009) Ltd. | Secured computerized system for children and/or pre-literate/illiterate users |
WO2016203474A1 (en) * | 2015-06-18 | 2016-12-22 | Googale (2009) Ltd | Secured computerized system for children and/or pre- literate/ illiterate users |
US10482225B1 (en) | 2015-07-14 | 2019-11-19 | Melih Abdulhayoglu | Method of authorization dialog organizing |
WO2017037275A1 (en) | 2015-09-04 | 2017-03-09 | Worldline | Method for authorising an action by interactive and intuitive authentication of a user and associated device |
US11496490B2 (en) | 2015-12-04 | 2022-11-08 | Bottomline Technologies, Inc. | Notification of a security breach on a mobile device |
US9977892B2 (en) * | 2015-12-08 | 2018-05-22 | Google Llc | Dynamically updating CAPTCHA challenges |
US20170161490A1 (en) * | 2015-12-08 | 2017-06-08 | Google Inc. | Dynamically Updating CAPTCHA Challenges |
US10216923B2 (en) | 2015-12-08 | 2019-02-26 | Google Llc | Dynamically updating CAPTCHA challenges |
US10659452B2 (en) * | 2016-01-29 | 2020-05-19 | Dalian Magic Image Technology Co., Ltd. | Dynamic graphical password-based network registration method and system |
CN107341384A (en) * | 2016-04-28 | 2017-11-10 | 苏宁云商集团股份有限公司 | A kind of service verification method and system |
US11206309B2 (en) | 2016-05-19 | 2021-12-21 | Apple Inc. | User interface for remote authorization |
US10749967B2 (en) | 2016-05-19 | 2020-08-18 | Apple Inc. | User interface for remote authorization |
US10334054B2 (en) | 2016-05-19 | 2019-06-25 | Apple Inc. | User interface for a device requesting remote authorization |
US9847999B2 (en) | 2016-05-19 | 2017-12-19 | Apple Inc. | User interface for a device requesting remote authorization |
JP2017211907A (en) * | 2016-05-27 | 2017-11-30 | 株式会社フォトロン | Information processing device |
US11163955B2 (en) | 2016-06-03 | 2021-11-02 | Bottomline Technologies, Inc. | Identifying non-exactly matching text |
US9950795B2 (en) | 2016-06-10 | 2018-04-24 | Panasonic Avionics Corporation | Methods and systems for pairing a personal electronic device on a transportation vehicle |
US10003971B2 (en) | 2016-06-29 | 2018-06-19 | Xerox Corporation | Compartmentalized multi-factor authentication for mobile devices |
US10362609B2 (en) | 2016-08-10 | 2019-07-23 | Panasonic Avionics Corporation | Methods and systems for automatically pairing a personal electronic device on a transportation vehicle |
CN106407788A (en) * | 2016-08-31 | 2017-02-15 | 深圳天珑无线科技有限公司 | Unlocking method, unlocking apparatus, and terminal |
US10366222B2 (en) * | 2016-12-02 | 2019-07-30 | International Business Machines Corporation | Managing passwords using steganography |
US10769265B2 (en) * | 2016-12-02 | 2020-09-08 | International Business Machines Corporation | Managing passwords using steganography |
US10417410B2 (en) * | 2017-03-27 | 2019-09-17 | International Business Machines Corporation | Access control to protected resource based on images at changing locations identifiable by their type |
US20180285550A1 (en) * | 2017-04-03 | 2018-10-04 | Cleveland State University | Shoulder-surfing resistant authentication methods and systems |
US10523648B2 (en) | 2017-04-03 | 2019-12-31 | Microsoft Technology Licensing, Llc | Password state machine for accessing protected resources |
US10956552B2 (en) * | 2017-04-03 | 2021-03-23 | Cleveland State University | Shoulder-surfing resistant authentication methods and systems |
US11019048B2 (en) | 2017-04-03 | 2021-05-25 | Microsoft Technology Licensing, Llc | Password state machine for accessing protected resources |
CN106911722A (en) * | 2017-04-25 | 2017-06-30 | 北京帕斯沃得科技有限公司 | A kind of intelligent cipher signature identity differentiates mutual authentication method and system |
US9990487B1 (en) | 2017-05-05 | 2018-06-05 | Mastercard Technologies Canada ULC | Systems and methods for distinguishing among human users and software robots |
US10127373B1 (en) | 2017-05-05 | 2018-11-13 | Mastercard Technologies Canada ULC | Systems and methods for distinguishing among human users and software robots |
US10007776B1 (en) | 2017-05-05 | 2018-06-26 | Mastercard Technologies Canada ULC | Systems and methods for distinguishing among human users and software robots |
US10872256B2 (en) | 2017-09-09 | 2020-12-22 | Apple Inc. | Implementation of biometric authentication |
US11393258B2 (en) | 2017-09-09 | 2022-07-19 | Apple Inc. | Implementation of biometric authentication |
US10783227B2 (en) | 2017-09-09 | 2020-09-22 | Apple Inc. | Implementation of biometric authentication |
US11386189B2 (en) | 2017-09-09 | 2022-07-12 | Apple Inc. | Implementation of biometric authentication |
US10395128B2 (en) | 2017-09-09 | 2019-08-27 | Apple Inc. | Implementation of biometric authentication |
US11765163B2 (en) | 2017-09-09 | 2023-09-19 | Apple Inc. | Implementation of biometric authentication |
US10521579B2 (en) | 2017-09-09 | 2019-12-31 | Apple Inc. | Implementation of biometric authentication |
US10410076B2 (en) | 2017-09-09 | 2019-09-10 | Apple Inc. | Implementation of biometric authentication |
US11928200B2 (en) | 2018-06-03 | 2024-03-12 | Apple Inc. | Implementation of biometric authentication |
US11170085B2 (en) | 2018-06-03 | 2021-11-09 | Apple Inc. | Implementation of biometric authentication |
WO2019236530A1 (en) * | 2018-06-04 | 2019-12-12 | Petho Jonatan | Secure user authentication system and methods |
US10885176B2 (en) | 2018-06-11 | 2021-01-05 | International Business Machines Corporation | Image based passphrase for authentication |
US11392682B2 (en) | 2018-06-11 | 2022-07-19 | International Business Machines Corporation | Image based passphrase for authentication |
US10218708B1 (en) * | 2018-06-21 | 2019-02-26 | Capital One Services, Llc | Systems for providing electronic items having customizable locking mechanism |
US10476881B1 (en) * | 2018-06-21 | 2019-11-12 | Capital One Services, Llc | Systems for providing electronic items having customizable locking mechanism |
US10476880B1 (en) * | 2018-06-21 | 2019-11-12 | Capital One Services, Llc | Systems for providing electronic items having customizable locking mechanism |
US11115422B2 (en) | 2018-06-21 | 2021-09-07 | Capital One Services, Llc | Systems for providing electronic items having customizable locking mechanism |
US11057390B2 (en) | 2018-06-21 | 2021-07-06 | Capital One Services, Llc | Systems for providing electronic items having customizable locking mechanism |
US11640454B2 (en) * | 2018-07-23 | 2023-05-02 | Capital One Services, Llc | System and apparatus for secure password recovery and identity verification |
US20210019389A1 (en) * | 2018-07-23 | 2021-01-21 | Capital One Services, Llc | System and apparatus for secure password recovery and identity verification |
US10162956B1 (en) * | 2018-07-23 | 2018-12-25 | Capital One Services, Llc | System and apparatus for secure password recovery and identity verification |
US10831875B2 (en) | 2018-07-23 | 2020-11-10 | Capital One Services, Llc | System and apparatus for secure password recovery and identity verification |
US11005971B2 (en) | 2018-08-02 | 2021-05-11 | Paul Swengler | System and method for user device authentication or identity validation without passwords or matching tokens |
US10891365B2 (en) * | 2018-08-23 | 2021-01-12 | International Business Machines Corporation | CAPTCHA generation based on environment-specific vocabulary |
US20200065467A1 (en) * | 2018-08-23 | 2020-02-27 | International Business Machines Corporation | Captcha generation based on environment-specific vocabulary |
US11100349B2 (en) | 2018-09-28 | 2021-08-24 | Apple Inc. | Audio assisted enrollment |
US11619991B2 (en) | 2018-09-28 | 2023-04-04 | Apple Inc. | Device control using gaze information |
US11809784B2 (en) | 2018-09-28 | 2023-11-07 | Apple Inc. | Audio assisted enrollment |
US10860096B2 (en) | 2018-09-28 | 2020-12-08 | Apple Inc. | Device control using gaze information |
US10949524B2 (en) * | 2018-10-31 | 2021-03-16 | Rsa Security Llc | User authentication using scene composed of selected objects |
US10885177B2 (en) | 2018-11-15 | 2021-01-05 | Hcl Technologies Limited | System and method for authentication of a user logging into an IT enabled application |
US11599878B2 (en) * | 2018-12-19 | 2023-03-07 | Mastercard International Incorporated | Systems and methods for identifying errors in transaction messages |
US20200202342A1 (en) * | 2018-12-19 | 2020-06-25 | Mastercard International Incorporated | Systems and methods for identifying errors in transaction messages |
US11609971B2 (en) | 2019-03-18 | 2023-03-21 | Bottomline Technologies, Inc. | Machine learning engine using a distributed predictive analytics data set |
US11416713B1 (en) | 2019-03-18 | 2022-08-16 | Bottomline Technologies, Inc. | Distributed predictive analytics data set |
US11853400B2 (en) | 2019-03-18 | 2023-12-26 | Bottomline Technologies, Inc. | Distributed machine learning engine |
US11210431B2 (en) * | 2019-06-07 | 2021-12-28 | Dell Products L.P. | Securely entering sensitive information using a touch screen device |
US11238053B2 (en) | 2019-06-28 | 2022-02-01 | Bottomline Technologies, Inc. | Two step algorithm for non-exact matching of large datasets |
US11921830B2 (en) * | 2019-07-25 | 2024-03-05 | Seaton Gras | System and method for verifying unique user identification |
US20210264002A1 (en) * | 2019-07-25 | 2021-08-26 | Seaton Gras | System and method for verifying unique user identification |
US11269841B1 (en) | 2019-10-17 | 2022-03-08 | Bottomline Technologies, Inc. | Method and apparatus for non-exact matching of addresses |
US20210176248A1 (en) * | 2019-12-06 | 2021-06-10 | Tissot Sa | Method for securely connecting a watch to a remote server |
CN111432365A (en) * | 2020-03-19 | 2020-07-17 | 武汉谦屹达管理咨询有限公司 | Financial big data processing method and system applying 5G network and block chain |
US11449870B2 (en) | 2020-08-05 | 2022-09-20 | Bottomline Technologies Ltd. | Fraud detection rule optimization |
CN112491648A (en) * | 2020-11-17 | 2021-03-12 | 重庆美沣秦安汽车驱动系统有限公司 | Automobile communication data conversion method based on CAN communication matrix and storage medium |
US20230020997A1 (en) * | 2021-03-04 | 2023-01-19 | Regwez, Inc. | Systems and methods for using media objects to create high entropy passwords |
CN112966238A (en) * | 2021-03-09 | 2021-06-15 | 西安邮电大学 | Identity authentication method based on Chinese characters |
US11182468B1 (en) * | 2021-05-18 | 2021-11-23 | Capital One Services, Llc | Methods and systems for facilitating secure authentication of user based on known data |
US11755708B2 (en) * | 2021-05-18 | 2023-09-12 | Capital One Services, Llc | Methods and systems for facilitating secure authentication of user based on known data |
US20220374508A1 (en) * | 2021-05-18 | 2022-11-24 | Capital One Services, Llc | Methods and systems for facilitating secure authentication of user based on known data |
US11694276B1 (en) | 2021-08-27 | 2023-07-04 | Bottomline Technologies, Inc. | Process for automatically matching datasets |
US11544798B1 (en) | 2021-08-27 | 2023-01-03 | Bottomline Technologies, Inc. | Interactive animated user interface of a step-wise visual path of circles across a line for invoice management |
Also Published As
Publication number | Publication date |
---|---|
CA2679153A1 (en) | 2008-08-28 |
WO2008103834A1 (en) | 2008-08-28 |
AU2008218262B2 (en) | 2010-12-23 |
AU2008218262A1 (en) | 2008-08-28 |
KR100812411B1 (en) | 2008-03-10 |
US20120011564A1 (en) | 2012-01-12 |
US8850519B2 (en) | 2014-09-30 |
CN101663672A (en) | 2010-03-03 |
JP2008204424A (en) | 2008-09-04 |
EP2126773A1 (en) | 2009-12-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8850519B2 (en) | Methods and systems for graphical image authentication | |
US8117458B2 (en) | Methods and systems for graphical image authentication | |
US8812861B2 (en) | Graphical image authentication and security system | |
US8732477B2 (en) | Graphical image authentication and security system | |
US8997177B2 (en) | Graphical encryption and display of codes and text | |
US7073067B2 (en) | Authentication system and method based upon random partial digitized path recognition | |
US8041954B2 (en) | Method and system for providing a secure login solution using one-time passwords | |
US8621578B1 (en) | Methods and systems for protecting website forms from automated access | |
US20090276839A1 (en) | Identity collection, verification and security access control system | |
US20100043062A1 (en) | Methods and Systems for Management of Image-Based Password Accounts | |
US20080209223A1 (en) | Transactional visual challenge image for user verification | |
US20040225880A1 (en) | Strong authentication systems built on combinations of "what user knows" authentication factors | |
US9189603B2 (en) | Kill switch security method and system | |
US20070271465A1 (en) | Method of Authentication by Challenge-Response and Picturized-Text Recognition | |
JP2008537210A (en) | Secured data communication method | |
CA2579826C (en) | Authentication system and method based upon random partial digitized path recognition | |
Rani et al. | A Novel Session Password Security Technique using Textual Color and Images | |
KS | Securing Internet Banking with a Two-Shares Visual Cryptography Secret Image | |
IES85150Y1 (en) | Securing access authorisation |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AS | Assignment |
Owner name: VIDOOP LLC, OKLAHOMA Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:OSBORN, STEVEN L.;DAVIS, NICHOLAS A.;SONTAG, JAMES L.;AND OTHERS;REEL/FRAME:019092/0990 Effective date: 20070227 |
|
STCB | Information on status: application discontinuation |
Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION |