US20180199195A1 - Automatic authentication of a mobile device using stored authentication credentials - Google Patents
Automatic authentication of a mobile device using stored authentication credentials Download PDFInfo
- Publication number
- US20180199195A1 US20180199195A1 US15/864,713 US201815864713A US2018199195A1 US 20180199195 A1 US20180199195 A1 US 20180199195A1 US 201815864713 A US201815864713 A US 201815864713A US 2018199195 A1 US2018199195 A1 US 2018199195A1
- Authority
- US
- United States
- Prior art keywords
- user device
- access point
- user
- device identifier
- remote server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/02—Banking, e.g. interest calculation or account maintenance
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/10—Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0807—Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0861—Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/068—Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Accounting & Taxation (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Development Economics (AREA)
- Theoretical Computer Science (AREA)
- General Business, Economics & Management (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Economics (AREA)
- Power Engineering (AREA)
- Technology Law (AREA)
- Marketing (AREA)
- Health & Medical Sciences (AREA)
- Biomedical Technology (AREA)
- General Health & Medical Sciences (AREA)
- Telephonic Communication Services (AREA)
- Information Transfer Between Computers (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- User Interface Of Digital Computer (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Systems and methods are disclosed which may allow a user having a mobile device to automatically authenticate to a server using a device identifier associated with the mobile device. An access point may be configured to send the device identifier as well as additional identifying information to the server so that the device identifier can be accurately matched to the mobile device. Then, when the mobile device submits a credential during authentication, the device identifier and the credential may be matched such that the next time the server receives the device identifier from the access point, the mobile device may be automatically authenticated.
Description
- The present application is a Continuation of U.S. patent application Ser. No. 15/586,099, filed on May 3, 2017, attorney docket number 70481.974US03, which in turn is a Continuation of U.S. patent application Ser. No. 14/930,450 filed on Nov. 2, 2015, attorney docket number 70481.974US02, now abandoned, which is a Continuation of U.S. patent application Ser. No. 14/039,124 filed on Sep. 27, 2013, attorney docket number 70481.974, now U.S. Pat. No. 9,178,889 issued on Nov. 3, 2015, the contents of which are hereby incorporated by reference in their entirety for all purposes.
- Embodiments disclosed herein are related to systems and methods for authentication using a device identifier. In particular, embodiments disclosed herein may match a device identifier with an authentication credential such that the device identifier may be used for authentication.
- Due to the increase in use of mobile devices and the improved networking and online capabilities of these mobile devices, merchants having physical, “brick and mortar” stores may also have an online presence to tap into the segment of the population using these connected mobile devices. The online presence may include online inventories, online ordering, online payment, and online-manageable loyalty programs. In addition, merchants may also want customers to be online using making use of the online presence while the customers are in their stores. As a result, merchants may provide and maintain access points in the stores and/or work with communications providers to ensure that cellular data networks adequately provide coverage in their stores.
- In theory, the online presence provided by the merchant may be an added value for the merchant, increase customer satisfaction, and lead to increased repeat business for the merchant. However, the customers may have to perform the tedious process of authenticating or “logging in” every time that they visit the merchant. And, if the user does not log in on every visit, then neither the customers nor the merchants are fully benefitting from the online presence provided by the merchant.
-
FIG. 1 is a block diagram of a networked system, consistent with some embodiments. -
FIG. 2 is a diagram illustrating a computing system, consistent with some embodiments. -
FIG. 3 is a diagram illustrating a flow of authenticating using a device identifier, consistent with some embodiments. -
FIG. 4 is a diagram illustrating a flow of authenticating using a device identifier, consistent with some embodiments. -
FIG. 5 is a flowchart illustrating a method for authenticating using a device identifier, consistent with some embodiments. -
FIG. 6 is a flowchart illustrating a method for authenticating using a device identifier, consistent with some embodiments. - In the drawings, elements having the same designation have the same or similar functions.
- In the following description specific details are set forth describing certain embodiments. It will be apparent, however, to one skilled in the art that the disclosed embodiments may be practiced without some or all of these specific details. The specific embodiments presented are meant to be illustrative, but not limiting. One skilled in the art may realize other material that, although not specifically described herein, is within the scope and spirit of this disclosure.
- Consistent with some embodiments, a system is provided. The system includes a network interface component configured to receive a request to authenticate including a credential, send packets, and receive information including a device identifier of a device that received or retransmitted the sent packets. The system also includes one or more processors configured to generate the packets, and pair the received credential to the received device identifier. The system also includes a memory storing the paired device identifier and credential.
- Consistent with some embodiments, there is also provided a method. The method includes steps of receiving a request to authenticate to the server, the request to authenticate including a credential, sending in response to the request to authenticate, packets, receiving information including a device identifier of a device that received or retransmitted the sent packets, and pairing the received credential to the device identifier.
- Consistent with some embodiments, there is further provided a method. The method includes steps of receiving a request to authenticate to the server, the request to authenticate including a credential, sending in response to the request to authenticate, executable instructions, receiving a device identifier from a device executing the executable instructions, and pairing the received credential to the device identifier when the device that sent the device identifier matches the device that sent the request to authenticate.
- Embodiments consistent with this disclosure may allow a server to match a device identifier of a device with an authentication credential such that the device may be able to be automatically authenticated to the server upon subsequent receipts of the device identifier.
- These and other embodiments will be described in further detail below with respect to the following figures.
-
FIG. 1 is a block diagram of anetworked system 100, consistent with some embodiments.System 100 includes aclient computing device 102 and aremote server 104 in communication over anetwork 106.Remote server 104 may be a payment processing service provider server that may be maintained by a payment processing service provider, such as PayPal, Inc. of San Jose, Calif.Remote server 104 may be maintained by other service providers in different embodiments.Remote server 104 may also be maintained by an entity with which sensitive credentials and information may be exchanged withclient computing device 102.Remote server 104 may be more generally a web site, an online content manager, a service provider, such as a bank, or other entity who provides content to a user requiring user authentication or login. - Network 106, in one embodiment, may be implemented as a single network or a combination of multiple networks. For example, in various embodiments,
network 106 may include the Internet and/or one or more intranets, landline networks, wireless networks, and/or other appropriate types of communication networks. In another example, the network may comprise a wireless telecommunications network (e.g., cellular phone network) adapted to communicate with other communication networks, such as the Internet. -
Client computing device 102, in one embodiment, may be implemented using any appropriate combination of hardware and/or software configured for wired and/or wireless communication overnetwork 106. For example,client computing device 102 may be implemented as a wireless telephone (e.g., smart phone), tablet, personal digital assistant (PDA), notebook computer, personal computer, a connected set-top box (STB) such as provided by cable or satellite content providers, or a video game system console, a head-mounted display (HMD) or other wearable computing device, including a wearable computing device having an eyeglass projection screen, and/or various other generally known types of computing devices. - In some embodiments,
client computing device 102 may be connected tonetwork 106 via anaccess point 108.Access point 108 may be a wireless access point (WAP) that may facilitate wireless communications byclient computing device 102 overnetwork 106 according to one or more versions of the Institute of Electrical and Electronic Engineers (IEEE) 802.11 standard.Access point 108 may also be a wired router or bridge facilitating wireless communications overnetwork 106 according to the IEEE 802.3 Ethernet standard. In some embodiments,access point 108 may be a mobile communications tower that facilitates wireless communications byclient computing device 102 overnetwork 106 according to a wireless networking standard such as CDMA or GSM 2G, 3G, 4G, HSDPA+, LTE, and other cellular data standards. The mobile communications tower may be a cellular base station, including lower power and smaller cellular base stations, such as a femtocell, picocell, or microcell. In some embodiments,client computing device 102 may be required to authenticate to accesspoint 108 to connect tonetwork 106. Moreover,access point 108 may be associated withremote server 104 such thataccess point 108 may be provided by an entity having an account withremote server 104 andaccess point 108 may be capable of providing information toremote server 104 overnetwork 106. In some embodiments,access point 108 may be capable of receiving instructions and rules fromremote server 104 for analyzing patterns of traffic sent byclient computing device 102. -
Client computing device 102 may include any appropriate combination of hardware and/or software having one or more processors and capable of reading instructions stored on a tangible non-transitory machine-readable medium for execution by the one or more processors. Consistent with some embodiments,client computing device 102 includes a machine-readable medium, such as a memory (not shown) that includes instructions for execution by one or more processors (not shown) for causingclient computing device 102 to perform specific tasks. In some embodiments, the instructions may be executed by the one or more processors in response to interaction byuser 110. For example, such instructions may includebrowser application 112 such as a mobile browser application, which may be used to provide a user interface to permituser 110 to browse information available overnetwork 106, including information hosted byremote server 104. For example,browser application 112 may be implemented as a web browser to view information available overnetwork 106.Browser application 112 may include a graphical user interface (GUI) that is configured to allowuser 110 to interface and communicate withremote server 104 or other servers managed by content providers or merchants vianetwork 106. For example,user 110 may be able to access websites to find and purchase items, as well as access user account information or web content. -
Client computing device 102 may also include apayment application 114 that may allowuser 110 to enter into and perform transactions overnetwork 106, including authorizing payments to be processed by a payment service processing provider, such as may be provided by PayPal, Inc. of San Jose, Calif. and implemented byremote server 104. In some embodiments,user 110 may be a merchant or a customer, purchaser, or buyer.Client computing device 102 may includeother applications 116 as may be desired in one or more embodiments to provide additional features available touser 110, including accessing a user account withremote server 104. For example,applications 116 may include interfaces and communication protocols that allow the user to receive and transmit information throughnetwork 106 and toremote server 104 and other online sites.Applications 116 may also include security applications for implementing client-side security features, programmatic client applications for interfacing with appropriate APIs overnetwork 106 or various other types of generally known programs and/or applications.Applications 116 may include mobile applications downloaded and resident onclient computing device 102 that enablesuser 110 to access content through the applications. -
Remote server 104, according to some embodiments, may be maintained by an online payment provider, which may provide processing for online financial and payment transactions on behalf ofuser 110.Remote server 104 may also be maintained by a merchant and provide access to a merchants goods and services (collectively referred to as “items”) that are for purchase and may provide a payment service processing for the purchased items.Remote server 104 may include atleast authentication application 118, which may be configured to interact withclient computing device 102 connected to network andremote server 104 viaaccess point 108 to authenticateclient computing device 102 toremote server 104. In some embodiments, authenticatingclient computing device 102 toremote server 104 may allow applications executing onclient computing device 102, such asbrowser application 112 and/orpayment application 114, to access features provided byremote server 104. Such features may include viewing items for purchase, selecting items for purchase, and paying for selected items, with an online payment provider such as PayPal, Inc. of San Jose, Calif., processing the payment. -
Remote server 104 may also include anaccount database 120 that includesaccount information 122 for users having an account onremote server 104, such asuser 110. In some embodiments,authentication application 118 may authenticateclient computing device 102 to remote server based on information inaccount information 122 ofaccount database 120.Remote server 104 may includeother applications 124 and may also be in communication with one or moreexternal databases 126, that may provide additional information that may be used byremote server 104. In some embodiments,databases 126 may be databases maintained by third parties, and may include third party account information ofuser 110. - Although discussion has been made of applications and applications on
client computing device 102 andremote server 104, the applications may also be, in some embodiments, modules. Module, as used herein, may refer to a software module that performs a function when executed by one or more processors or Application Specific Integrated Circuit (ASIC) or other circuit having memory and at least one processor for executing instructions to perform a function, such as the functions described as being performed by the applications. -
FIG. 2 is a diagramillustrating computing system 200, which may correspond to either ofclient computing device 102 orremote server 104, consistent with some embodiments.Computing system 200 may be a mobile device such as a smartphone, a tablet computer, a personal computer, laptop computer, netbook, or tablet computer, set-top box, video game console, head-mounted display (HMD) or other wearable computing device as would be consistent withclient computing device 102. Further,computing system 200 may also be a server or one server amongst a plurality of servers, as would be consistent withremote server 104. As shown inFIG. 2 ,computing system 200 includes a network interface component (NIC) 202 configured for communication with a network such asnetwork 108 shown inFIG. 1 . Consistent with some embodiments,NIC 202 includes a wireless communication component, such as a wireless broadband component, a wireless satellite component, or various other types of wireless communication components including radio frequency (RF), microwave frequency (MWF), and/or infrared (IR) components configured for communication withnetwork 108. Consistent with other embodiments,NIC 202 may be configured to interface with a coaxial cable, a fiber optic cable, a digital subscriber line (DSL) modem, a public switched telephone network (PSTN) modem, an Ethernet device, and/or various other types of wired and/or wireless network communication devices adapted for communication withnetwork 108. - Consistent with some embodiments,
computing system 200 includes asystem bus 204 for interconnecting various components withincomputing system 200 and communication information between the various components. Such components include a processing component 206, which may be one or more processors, micro-controllers, graphics processing units (GPUs) or digital signal processors (DSPs), asystem memory component 208, which may correspond to random access memory (RAM), aninternal memory component 210, which may correspond to read-only memory (ROM), and an external orstatic memory 212, which may correspond to optical, magnetic, or solid-state memories. Consistent with some embodiments,computing system 200 further includes a display component 214 for displaying information to auser 120 ofcomputing system 200. Display component 214 may be a liquid crystal display (LCD) screen, an organic light emitting diode (OLED) screen (including active matrix AMOLED screens), an LED screen, a plasma display, or a cathode ray tube (CRT) display.Computing system 200 may also include aninput component 216, allowing for auser 120 ofcomputing system 200 to input information tocomputing system 200. Such information could include payment information such as an amount required to complete a transaction, account information, authentication information such as a credential, or identification information. Aninput component 216 may include, for example, a keyboard or key pad, whether physical or virtual.Computing system 200 may further include anavigation control component 218, configured to allow a user to navigate along display component 214. Consistent with some embodiments,navigation control component 218 may be a mouse, a trackball, or other such device. Moreover, ifdevice 200 includes a touch screen, display component 214,input component 216, andnavigation control 218 may be a single integrated component, such as a capacitive sensor-based touch screen. -
Computing system 200 may perform specific operations by processing component 206 executing one or more sequences of instructions contained insystem memory component 208,internal memory component 210, and/or external orstatic memory 212. In other embodiments, hard-wired circuitry may be used in place of or in combination with software instructions to implement the present disclosure. Logic may be encoded in a computer readable medium, which may refer to any medium that participates in providing instructions to processing component 206 for execution. Such a medium may take many forms, including but not limited to, non-volatile media and volatile media. The medium may correspond to any ofsystem memory 208,internal memory 210 and/or external orstatic memory 212. Consistent with some embodiments, the computer readable medium is tangible and non-transitory. In various implementations, non-volatile media include optical or magnetic disks and volatile media includes dynamic memory. Some common forms of computer readable media include, for example, floppy disk, flexible disk, hard disk, magnetic tape, any other magnetic medium, CD-ROM, any other optical medium, punch cards, paper tape, any other physical medium with patterns of holes, RAM, PROM, EPROM, FLASH-EPROM, any other memory chip or cartridge or any other medium from which a computer is adapted to read. - In various embodiments of the present disclosure, execution of instruction sequences to practice the present disclosure may be performed by
computing system 200. In various other embodiments of the present disclosure, a plurality ofcomputing systems 200 coupled by acommunication link 220 to network 108 (e.g., such as a LAN, WLAN, PTSN, and/or various other wired or wireless networks, including telecommunications, mobile, and cellular phone networks) may perform instruction sequences to practice the present disclosure in coordination with one another.Computing system 200 may transmit and receive messages, data and one or more data packets, information and instructions, including one or more programs (i.e., application code) throughcommunication link 220 andnetwork interface component 202.Communication link 220 may be wireless through a wireless data protocol such as Wi-Fi™, 3G, 4G, HDSPA, LTE, RF, NFC, or through a wired connection.Network interface component 202 may include an antenna, either separate or integrated, to enable transmission and reception viacommunication link 220. Received program code may be executed by processing component 206 as received and/or stored inmemory -
Computing system 200 may also includesensor components 222.Sensor components 222 may include any sensory device that captures information related to the surroundings ofcomputing system 200.Sensor components 222 may include camera and imaging components, accelerometers, GPS devices, motion capture devices, and biometric sensors, and other devices that are capable of providing information aboutcomputing system 200,user 120, or their surroundings. In some embodiments,sensor components 222 including an accelerometer may be used to detect a motion ofcomputing system 200 made by a user that may be indicative of a user recognition of a displayed character or digit of a credential.Sensor components 222 may include a microphone configured to detect a voice ofuser 120 and translate the detected voice into an electrical signal that may be interpreted by processing component as corresponding to text or characters. - In some embodiments,
access point 108 may be similar tocomputing system 200 and include similar components tocomputing system 200. For example,access point 108 may include one or more memories 208-212, a processing component 206 including one or more processors, anetwork interface component 202, and asystem bus 204 for interconnecting these components. In general,access point 108 may have components configured to connect a device, such asclient computing device 102 tonetwork 106. In some embodiments,access point 108 may be capable of receiving instructions fromremote server 104 that, when executed by one or more processors ofremote server 104, may allowaccess point 108 to facilitate the analysis of information received from one or moreclient computing devices 102, including analyzing patterns of received network traffic. - A merchant having a physical, brick and mortar store as well as an online presence, including but not limited to, an online inventory, online ordering, online payment, and online-manageable loyalty programs, may wish to provide these online features to a customer when the customer is in the physical store. For example, a merchant may allow
user 110 havingclient computing device 102 to enter their store, find an item for purchase, and allow user to pay for the item usingclient computing device 102, and then show proof of payment to the merchant beforeuser 110 can exit the store with the item. To allow this, the merchant may require that user authenticate toremote server 104 and/or check in to perform these actions. As another example,user 110 may be part of a loyalty program of the store, and may be provided with coupons or offers whenuser 110 authenticates toremote server 104 when in the store and/or checks in to the store, with such coupons or offers being provided toclient computing device 102 for scanning by the merchant. - In theory, the online presence provided by the merchant may be an added value for the merchant, increase customer satisfaction, and lead to increased repeat business for the merchant. However, the customer, such as
user 110 may have to perform the tedious process of authenticating to check in withremote server 104 every time that they visit the merchant. Moreover, ifuser 110 does not authenticate toremote server 104 to check in on every visit, then neitheruser 110 nor the merchant are fully benefitting from the online presence. - Computing devices, such as
client computing device 102 may typically send out a broadcast packet when looking foraccess point 108 to connect tonetwork 106. The broadcast packet may be a simple packet that includes a to address which may typically be an “all” message in the form of 0xFF:FF:FF:FF:FF:FF, and a from address that includes a device identifier associated withclient computing device 102. In some embodiments, the device identifier may be a media access control (MAC) address ofclient computing device 102 for connecting to network 106 via an access point that provides an 802.11 or 802.3 connection. In some embodiments, the device identifier may be an International Mobile Station Equipment Identity (IMEI) number ofclient computing device 102 for connecting to network 106 via an access point that provides a CDMA or GSM data connection. In general, the device identifier, whether IMEI or MAC is unique for the device. Consequently,client computing device 102 may be recognizable by the device identifier that is provided to accesspoint 108. - When
client computing device 102 is connected to network 106 and authenticates toremote server 104,client computing device 102 may have to provide a credential toremote server 104 for authentication. In some embodiments, the credential may one or more passwords, codes, personal identification numbers (PINs), user names, biometric identifiers, and the like. Since the device identifier is unique to the device, tying the device identifier to a credential used to authenticate withremote server 104 could provide a way to automatically authenticateclient computing device 102 toremote server 104 whenaccess point 108 associated withremote server 104 receives the device identifier. However, the credential has to first be tied to the device identifier which may not necessarily be provided toremote server 104 in all instances. Accordingly, authenticating using a device identifier may require matching the device identifier to the credential on a first attempt, and then using the device identifier for future authentication. -
FIG. 3 is a diagram illustrating a flow of authenticating using a device identifier, consistent with some embodiments. As shown inFIG. 3 ,client computing device 102 may send out one or more broadcast packets that include a device identifier ofclient computing device 102 whenclient computing device 102 is attempting to connect tonetwork 106.Access point 108 may receive any number of these broadcast packets and device identifiers asclient computing devices 102 pass within range ofaccess point 108.Access point 108 may be configured to provide these device identifiers and the traffic associated with the device identifiers toremote server 104. In some embodiments,access point 108 may be capable of receiving rules fromremote server 104 that specify the type of information to send toremoter server 104, such as types of packets and device identifiers.Client computing device 102 may then send a request to authenticate withremote server 104 to, for example, access features provided byremote server 104, such as those discussed previously. The request may include a credential used for authenticating withremote server 104 to, for example, check in to the merchant or location. In some embodiments, a merchant may have a notification, sign, placard, alert, e-mail message, and the like, that informsuser 110 of the benefits of authenticating withremote server 104 when visiting the merchant's store.User 110 may also be provided with information regarding benefits and advantages of tying a credential used for authenticating withremote server 104 with the device identifier ofclient computing device 102. - To match the device identifier with the credential,
remote server 104 may need to match the device sending the device identifier with the device sending the request for authentication. Consequently,remote server 104 may send a stream of packets toclient computing device 102. In some embodiments, the stream of packets may have a predetermined length and a predetermined timing. For example, the stream of packets may include packets having increasing lengths, such as 1 byte, 2 bytes, 3 bytes, 5 bytes etc. Moreover, the stream of packets may have a predetermined separation between each packet to create a packet timing. The separation may be variable between each packet. In general, the stream of packets may have a predetermined timing and length such that the reception and/or retransmission of these packets may be easily identifiable. - For example, since
client computing device 102 may be connected toremote server 104 overnetwork 106 viaaccess point 108, the packet stream may be passed toclient computing device 102 viaaccess point 108.Access point 108, which may know the device identifier ofclient computing device 102 sinceclient computing device 102 is connected to network 106 viaaccess point 108 may monitor the network traffic associated with the packet stream to determine the device identifier receiving and/or retransmitting the packet stream.Access point 108 may then send the device identifier associated with the packet stream toremote server 104. In some embodiments,access point 108 may be configured to send a device identifier and network traffic associated with the device identifier toremote server 104 based on rules received byremoter server 104. For example, the rules may specify thataccess point 108 is to send packet sizes for any device identifier that sends or receives more than 10 packets in 5 seconds, which may be consistent with the stream of packets sent byremote server 104. Based on information provided toremote server 104 byaccess point 108,remote server 104 may identify a device identifier that is sending or receiving the stream of packets, and then authenticate the device associated with the device identifier, and match the credential with the device identifier. The matched device identifier and authentication credential may then be stored inaccount information 122 ofaccount database 120. Consequently, the next timeclient computing device 102 connects to network 106 viaaccess point 108,access point 108 will send the device identifier from the received broadcast packet toremote server 104, andremote server 104 may automatically authenticateclient computing device 102 using the authentication credential matched to the device identifier which may be used, in some embodiments, to checkuser 110 into a merchant or location associated withaccess point 108. -
FIG. 4 is a diagram illustrating a flow of authenticating using a device identifier, consistent with some embodiments. As shown inFIG. 3 ,client computing device 102 may send out one or more broadcast packets that include a device identifier ofclient computing device 102 whenclient computing device 102 is attempting to connect tonetwork 106.Access point 108 may receive any number of these broadcast packets and device identifiers asclient computing devices 102 pass within range ofaccess point 108.Access point 108 may provide these device identifiers among other information toremote server 104 based on rules provided to accesspoint 108 fromremote server 104.Client computing device 102 may then send a request to authenticate withremote server 104 to, for example, check in to a location or merchant associated withaccess point 108 and/or to access features provided byremote server 104, such as those discussed previously. The request may include a credential used for authenticating withremote server 104. In some embodiments, a merchant may have a notification, sign, placard, alert, e-mail message, and the like, that informsuser 110 of the benefits of authenticating withremote server 104 when visiting the merchant's store.User 110 may also be provided with information regarding benefits and advantages of tying a credential used for authenticating withremote server 104 with the device identifier ofclient computing device 102. - To match the device identifier with the credential,
remote server 104 may need to match the device sending the device identifier with the device sending the request for authentication. Consequently,remote server 104 may send an executable that, when executed by processing component ofclient computing device 102, sends the device identifier ofclient computing device 102 toremote server 104.Remote server 104 may then authenticateclient computing device 102 toremote server 104 and match the credential with the device identifier. The matched device identifier and authentication credential may then be stored inaccount information 122 ofaccount database 120. Consequently, the next timeclient computing device 102 connects to network 106 viaaccess point 108,access point 108 will send the device identifier from the received broadcast packet toremote server 104, andremote server 104 may automatically authenticateclient computing device 102 using the authentication credential matched to the device identifier. -
FIG. 5 is a flowchart illustrating a method for authenticating using a device identifier, consistent with some embodiments. For the purpose of illustration,FIG. 5 may be described with reference to any ofFIGS. 1-4 . The method shown inFIG. 5 may be embodied in computer-readable instructions for execution by one or more processors such that the steps of the method may be performed byremote server 104. As shown inFIG. 5 ,remote server 104 may receive a device identifier (502). In some embodiments,client computing device 102 may send out one or more broadcast packets that include a device identifier ofclient computing device 102 whenclient computing device 102 is attempting to connect tonetwork 106.Access point 108 may receive any number of these broadcast packets and device identifiers asclient computing devices 102 pass within range ofaccess point 108.Access point 108 may provide these device identifiers amongst other information toremote server 104.Remote server 104 may then determine if the device identifier is recognized (504). For example,remote server 104 may determine if the device identifier is matched to an authentication credential stored inaccount information 122 ofaccount database 120. If the device identifier is recognized,remote server 104 may automatically authenticateclient computing device 102 toremote server 104 based on the received device identifier (506). - If the received device identifier is not recognized,
remote server 104 may receive a request to authenticate (508). In some embodiments,client computing device 102 may send a request to authenticate withremote server 104 to, for example, check in to a merchant or other location associated withaccess point 108 to access features provided byremote server 104. The received request may include a credential used for authenticating withremote server 104. In some embodiments, a merchant may have a notification, sign, placard, alert, e-mail message, and the like, that informsuser 110 of the benefits of authenticating withremote server 104 when visiting the merchant's store.User 110 may also be provided with information regarding benefits and advantages of tying a credential used for authenticating withremote server 104 with the device identifier ofclient computing device 102. - In response to receiving the request to authenticate,
remote server 104 may send a stream of packets to client computing device 102 (510). In some embodiments, the stream of packets may have a predetermined length and a predetermined timing. For example, the stream of packets may include packets having increasing lengths, such as 1 byte, 2 bytes, 3 bytes, 5 bytes etc. Moreover, the stream of packets may have a predetermined separation between each packet to create a packet timing. The separation may be variable between each packet. In general, the stream of packets may have a predetermined timing and length such that the reception and/or retransmission of these packets may be easily identifiable. -
Remote server 104 may then receive information fromaccess point 108 related to traffic patterns matching the sent packets (512). The device identifier may be received fromaccess point 108. The information may include device identifiers, specific packets, a packet stream, and the like. In some embodiments,access point 108 may be provided rules fromremote server 104 for passing information regarding observed network traffic. For example,client computing device 102 may be connected toremote server 104 overnetwork 106 viaaccess point 108 and, thus, the sent packet stream may be passed toclient computing device 102 viaaccess point 108.Access point 108, which may know the device identifier ofclient computing device 102 sinceclient computing device 102 is connected to network 106 viaaccess point 108 may monitor the network traffic associated with the packet stream to determine the device identifier receiving and/or retransmitting the packet stream, and this information may be provided toremote server 104.Remote server 104 may then authenticateclient computing device 102 toremote server 104 and match or pair the credential with the device identifier (514). The matched device identifier and authentication credential may then be stored inaccount information 122 ofaccount database 122. Consequently, the next timeclient computing device 102 connects to network 106 viaaccess point 108,remote server 104 may receive the device identifier from access point 108 (502),remote server 104 may recognize the device identifier (504) and authenticateclient computing device 102 using the paired credential (506). -
FIG. 6 is a flowchart illustrating a method for authenticating using a device identifier, consistent with some embodiments. For the purpose of illustration,FIG. 6 may be described with reference to any ofFIGS. 1-4 . The method shown inFIG. 6 may be embodied in computer-readable instructions for execution by one or more processors such that the steps of the method may be performed byremote server 104. As shown inFIG. 6 ,remote server 104 may receive a device identifier (602). In some embodiments,client computing device 102 may send out one or more broadcast packets that include a device identifier ofclient computing device 102 whenclient computing device 102 is attempting to connect tonetwork 106.Access point 108 may receive any number of these broadcast packets and device identifiers asclient computing devices 102 pass within range ofaccess point 108.Access point 108 may provide these device identifiers amongst other information toremote server 104.Remote server 104 may then determine if the device identifier is recognized (604). For example,remote server 104 may determine if the device identifier is matched to an authentication credential stored inaccount information 122 ofaccount database 120. If the device identifier is recognized,remote server 104 may automatically authenticateclient computing device 102 toremote server 104 based on the received device identifier (606). - If the received device identifier is not recognized,
remote server 104 may receive a request to authenticate (608). In some embodiments,client computing device 102 may send a request to authenticate withremote server 104 to, for example, access features provided byremote server 104. The received request may include a credential used for authenticating withremote server 104. In some embodiments, a merchant may have a notification, sign, placard, alert, e-mail message, and the like, that informsuser 110 of the benefits of authenticating withremote server 104, for example to check in at the merchant's store, when visiting the merchant's store.User 110 may also be provided with information regarding benefits and advantages of tying a credential used for authenticating withremote server 104 with the device identifier ofclient computing device 102. - In response to receiving the request to authenticate,
remote server 104 may send executable instructions to client computing device 102 (610). The executable instructions may require the permission ofclient computing device 102, provided byuser 110, to execute (612), and if permission is not granted, the method may terminate (614). If permission is granted, the executable instructions may instructclient computing device 102 to send the device identifier ofclient computing device 102 toremote server 104, which may then receive the sent device identifier (616).Remote server 104 may then authenticateclient computing device 102 toremote server 104 and match or pair the credential with the device identifier (618). The matched device identifier and authentication credential may then be stored inaccount information 122 ofaccount database 122. Consequently, the next timeclient computing device 102 connects to network 106 viaaccess point 108,remote server 104 may receive the device identifier amongst other information from access point 108 (602),remote server 104 may recognize the device identifier (604) and authenticateclient computing device 102 using the paired credential (606). - Software, in accordance with the present disclosure, such as program code and/or data, may be stored on one or more machine-readable mediums, including non-transitory machine-readable medium. It is also contemplated that software identified herein may be implemented using one or more general purpose or specific purpose computers and/or computer systems, networked and/or otherwise. Where applicable, the ordering of various steps described herein may be changed, combined into composite steps, and/or separated into sub-steps to provide features described herein.
- Consequently, embodiments as described herein may provide systems and methods for authentication using a device identifier of a computing device. In particular, embodiments as disclosed herein may allow a server to match a device identifier of a device with an authentication credential such that the device may be able to be automatically authenticated to the server upon subsequent receipts of the device identifier. The examples provided above are exemplary only and are not intended to be limiting. One skilled in the art may readily devise other systems consistent with the disclosed embodiments which are intended to be within the scope of this disclosure. As such, the application is limited only by the following claims.
Claims (21)
1. (canceled)
2. A device authentication system, comprising:
a non-transitory memory; and
one or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising:
receiving, at a first time, from a user device via an access point that has detected the user device, an initial request to authenticate that includes a credential associated with a user of the user device;
in response to receiving the initial request to authenticate, transmitting to the user device via the access point, executable instructions that cause the user device to transmit a device identifier corresponding to the user device;
receiving, via the access point, information including the device identifier corresponding to the user device;
pairing the credential associated with the user of the user device with the device identifier corresponding to the user device; and
based on the pairing of the credential associated with the user of the user device and the device identifier corresponding to the user device, automatically authenticating the user device in response to the user device being detected by the access point at a second time later than the first time.
3. The device authentication system of claim 2 , wherein the user device is detected by the access point based on a broadcast packet from the user device including the device identifier of the user device.
4. The device authentication system of claim 2 , wherein the device identifier is one of a media access control (MAC) address of the user device and an International Mobile Station Equipment Identity (IMEI) number of the user device.
5. The device authentication system of claim 2 , wherein the executable instructions cause the user device to transmit a device identifier in response to a permission being granted by the user of the user device.
6. The device authentication system of claim 2 , wherein the initial request to authenticate is received as part of a check in to a location associated with the access point.
7. The device authentication system of claim 2 , wherein the access point is one of a wireless access point according to an 802.11 standard, a mobile communications tower, a femtocell, a picocell, or a microcell.
8. The device authentication system of claim 2 , wherein pairing the credential associated with the user of the user device with the device identifier corresponding to the user device includes storing the device identifier in association with the credential associated with the user of the user device.
9. A computer-implemented method, comprising:
receiving, at a first time, from a user device via an access point that has detected the user device, an initial request to authenticate including a credential associated with a user of the user device;
in response to receiving the initial request to authenticate, transmitting to the user device via the access point, instructions that in response to execution by the user device cause the user device to transmit a device identifier corresponding to the user device;
receiving, via the access point, information including the device identifier of the user device;
pairing the credential associated with the user of the user device with the device identifier corresponding to the user device; and
based on the pairing, automatically authenticating the user device when the user device is detected by the access point at a second time later than the first time.
10. The computer-implemented method of claim 9 , wherein the user device is detected by the access point based on a broadcast packet from the user device including the device identifier of the user device.
11. The computer-implemented method of claim 9 , wherein the device identifier is one of a media access control (MAC) address of the user device or an International Mobile Station Equipment Identity (IMEI) number of the user device.
12. The computer-implemented method of claim 9 , wherein the instructions are executable to transmit a device identifier from the user device in response to a permission being granted by the user of the user device.
13. The computer-implemented method of claim 9 , wherein the initial request to authenticate is received as part of a check in to a location associated with the access point.
14. The computer-implemented method of claim 9 , wherein the access point is one of a wireless access point according to an 802.11 standard, a mobile communications tower, a femtocell, a picocell, or a microcell.
15. The computer-implemented method of claim 9 , wherein the pairing includes storing the device identifier in a non-transitory memory in association with the credential associated with the user of the user device.
16. A non-transitory machine-readable medium having stored thereon machine-readable instructions executable to cause a machine to perform operations comprising:
receiving, at a first time, from a user device via an access point that has detected the user device, a request to authenticate including that includes a device identifier corresponding to the user device;
in response to receiving the request, accessing data associated with the device identifier;
determining, based on the data, a pairing of a credential associated with a user of the user device with the device identifier, the device identifier being transmitted by the user device to the machine via the access point that had detected the user device in response to the user device executing instructions received via the access point at a second time earlier than the first time; and
based on the pairing, automatically authenticating the user device when the user device is detected by the access point at the first time.
17. The non-transitory machine-readable medium of claim 16 , wherein the user device is detected by the access point based on a broadcast packet from the user device including the device identifier of the user device.
18. The non-transitory machine-readable medium of claim 16 , wherein the device identifier is one of a media access control (MAC) address of the user device or an International Mobile Station Equipment Identity (IMEI) number of the user device.
19. The non-transitory machine-readable medium of claim 16 , wherein the instructions cause the user device to transmit the device identifier in response to a permission being granted by the user of the user device.
20. The non-transitory machine-readable medium of claim 16 , wherein the device identifier was received as part of a check in to a location associated with the access point.
21. The non-transitory machine-readable medium of claim 16 , wherein the access point is one of a wireless access point according to an 802.11 standard, a mobile communications tower, a femtocell, a picocell, or a microcell.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US15/864,713 US20180199195A1 (en) | 2013-09-27 | 2018-01-08 | Automatic authentication of a mobile device using stored authentication credentials |
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US14/039,124 US9178889B2 (en) | 2013-09-27 | 2013-09-27 | Systems and methods for pairing a credential to a device identifier |
US14/930,450 US20160057145A1 (en) | 2013-09-27 | 2015-11-02 | Systems and methods for authentication using a device identifier |
US15/586,099 US9867048B2 (en) | 2013-09-27 | 2017-05-03 | Automatic authentication of a mobile device using stored authentication credentials |
US15/864,713 US20180199195A1 (en) | 2013-09-27 | 2018-01-08 | Automatic authentication of a mobile device using stored authentication credentials |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US15/586,099 Continuation US9867048B2 (en) | 2013-09-27 | 2017-05-03 | Automatic authentication of a mobile device using stored authentication credentials |
Publications (1)
Publication Number | Publication Date |
---|---|
US20180199195A1 true US20180199195A1 (en) | 2018-07-12 |
Family
ID=52741536
Family Applications (4)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US14/039,124 Active 2033-11-16 US9178889B2 (en) | 2013-09-27 | 2013-09-27 | Systems and methods for pairing a credential to a device identifier |
US14/930,450 Abandoned US20160057145A1 (en) | 2013-09-27 | 2015-11-02 | Systems and methods for authentication using a device identifier |
US15/586,099 Active US9867048B2 (en) | 2013-09-27 | 2017-05-03 | Automatic authentication of a mobile device using stored authentication credentials |
US15/864,713 Abandoned US20180199195A1 (en) | 2013-09-27 | 2018-01-08 | Automatic authentication of a mobile device using stored authentication credentials |
Family Applications Before (3)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US14/039,124 Active 2033-11-16 US9178889B2 (en) | 2013-09-27 | 2013-09-27 | Systems and methods for pairing a credential to a device identifier |
US14/930,450 Abandoned US20160057145A1 (en) | 2013-09-27 | 2015-11-02 | Systems and methods for authentication using a device identifier |
US15/586,099 Active US9867048B2 (en) | 2013-09-27 | 2017-05-03 | Automatic authentication of a mobile device using stored authentication credentials |
Country Status (8)
Country | Link |
---|---|
US (4) | US9178889B2 (en) |
EP (1) | EP3050250B1 (en) |
JP (1) | JP6204592B2 (en) |
KR (1) | KR20160033074A (en) |
CN (1) | CN105474574A (en) |
AU (1) | AU2014328542B2 (en) |
CA (1) | CA2915892A1 (en) |
WO (1) | WO2015047652A1 (en) |
Families Citing this family (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9178889B2 (en) * | 2013-09-27 | 2015-11-03 | Paypal, Inc. | Systems and methods for pairing a credential to a device identifier |
US9813905B2 (en) * | 2013-10-14 | 2017-11-07 | U.S. Bank, National Association | DTMF token for automated out-of-band authentication |
US11017385B2 (en) * | 2015-04-28 | 2021-05-25 | Ncr Corporation | Online transactions |
WO2017007642A1 (en) * | 2015-07-06 | 2017-01-12 | Pcms Holdings, Inc. | Privacy-protecting system and method for wireless medical devices |
US10588019B2 (en) * | 2016-05-05 | 2020-03-10 | Qualcomm Incorporated | Secure signaling before performing an authentication and key agreement |
WO2018022109A1 (en) | 2016-07-29 | 2018-02-01 | Hewlett-Packard Development Company, L.P. | Workflow-authorizing computing device authentication |
WO2018093386A1 (en) * | 2016-11-21 | 2018-05-24 | Hewlett-Packard Development Company, L.P. | Presence identification |
KR102604697B1 (en) | 2016-12-20 | 2023-11-22 | 삼성전자주식회사 | Mobile device, user authentication method of mobile device and user authentication system |
CN108337677B (en) * | 2017-01-19 | 2020-10-09 | 阿里巴巴集团控股有限公司 | Network authentication method and device |
US10466963B2 (en) * | 2017-05-18 | 2019-11-05 | Aiqudo, Inc. | Connecting multiple mobile devices to a smart home assistant account |
US11290466B2 (en) * | 2017-08-16 | 2022-03-29 | Cable Television Laboratories, Inc. | Systems and methods for network access granting |
CN107786344B (en) | 2017-10-30 | 2020-05-19 | 阿里巴巴集团控股有限公司 | Method and device for realizing application and use of digital certificate |
CN108055300B (en) * | 2017-12-05 | 2019-02-15 | 珠海格力电器股份有限公司 | A kind of equipment cut-in method, apparatus and system |
CN110517046A (en) * | 2018-05-22 | 2019-11-29 | 万事达卡国际公司 | Customer certification system and method |
US10924927B2 (en) | 2019-02-28 | 2021-02-16 | At&T Intellectual Property I, L.P. | Wireless network association and authentication system |
CN111178995B (en) * | 2019-12-31 | 2023-12-01 | 航天信息股份有限公司企业服务分公司 | Method and system for processing bill based on cloud bill system |
US20220124498A1 (en) * | 2020-10-19 | 2022-04-21 | Gogo Business Aviation Llc | Network authentication using monitored traffic activity |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110243053A1 (en) * | 2010-01-29 | 2011-10-06 | Qualcomm Incorporated | Femtocell one-to-many packet delivery |
US20120017055A1 (en) * | 2009-05-26 | 2012-01-19 | Zte Corporation | Method and device for scheduling queues based on chained list |
US20140017365A1 (en) * | 2012-07-13 | 2014-01-16 | Robert Warren Taylor | Methods and systems for stabilization of a fluid using applied electrical fields |
US20140028098A1 (en) * | 2007-12-11 | 2014-01-30 | Antonio Trigiani | Battery management system for multicell batteries |
US20150006781A1 (en) * | 2013-06-28 | 2015-01-01 | Fujitsu Limited | Switch and control method |
Family Cites Families (34)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6181712B1 (en) | 1994-02-25 | 2001-01-30 | U.S. Philips Corporation | Method and device for transmitting data packets |
KR20040020639A (en) * | 2002-08-31 | 2004-03-09 | 삼성전자주식회사 | Dynamic control method of realtime multimedia data generation rate, and apparatus thereof. |
JP2005085090A (en) * | 2003-09-10 | 2005-03-31 | Konica Minolta Business Technologies Inc | Remote processor |
EP2975426A1 (en) | 2004-07-30 | 2016-01-20 | Path Intelligence Limited | Monitoring the movement of mobile communication devices |
JP2007011791A (en) * | 2005-06-30 | 2007-01-18 | Canon Inc | Authentication method and server device |
JP2007213133A (en) * | 2006-02-07 | 2007-08-23 | Fujitsu Ltd | Hardware authentication device |
WO2007097006A1 (en) * | 2006-02-24 | 2007-08-30 | Fujitsu Limited | Packet exporting control apparatus and method |
US9087183B2 (en) * | 2006-10-04 | 2015-07-21 | Rob Bartlett | Method and system of securing accounts |
US8578459B2 (en) * | 2007-01-31 | 2013-11-05 | At&T Intellectual Property I, L.P. | Methods and apparatus to control network access from a user device |
US9003488B2 (en) * | 2007-06-06 | 2015-04-07 | Datavalet Technologies | System and method for remote device recognition at public hotspots |
US8001379B2 (en) * | 2008-03-26 | 2011-08-16 | Mformation Technologies Inc. | Credential generation system and method for communications devices and device management servers |
US8869252B2 (en) * | 2008-05-19 | 2014-10-21 | Nokia Corporation | Methods, apparatuses, and computer program products for bootstrapping device and user authentication |
KR101428429B1 (en) * | 2008-09-30 | 2014-08-07 | 애플 인크. | Peer-to-peer financial transaction devices and methods |
US8121600B2 (en) * | 2008-12-30 | 2012-02-21 | Motorola Mobility, Inc. | Wide area mobile communications over femto-cells |
US8132256B2 (en) * | 2009-01-21 | 2012-03-06 | At&T Mobility Ii Llc | Home networking using LTE radio |
US20130231088A1 (en) * | 2009-03-03 | 2013-09-05 | E3, Llc | System and method for social profiling using wireless communication devices |
US9055439B2 (en) * | 2009-03-03 | 2015-06-09 | Mobilities, LLC | System and method for handset operation in a wireless communication network |
EP2416273A4 (en) * | 2009-03-30 | 2012-12-19 | Fujitsu Ltd | Access authentication method and information processor |
US8666367B2 (en) | 2009-05-01 | 2014-03-04 | Apple Inc. | Remotely locating and commanding a mobile device |
JP5334693B2 (en) * | 2009-06-04 | 2013-11-06 | アライドテレシスホールディングス株式会社 | Network management method, network management program, network system, and relay device |
US8683566B1 (en) * | 2009-09-08 | 2014-03-25 | Sprint Communications Company L.P. | Secure access and architecture for virtual private sites |
US20110197267A1 (en) * | 2010-02-05 | 2011-08-11 | Vivianne Gravel | Secure authentication system and method |
US20110209207A1 (en) * | 2010-02-25 | 2011-08-25 | Oto Technologies, Llc | System and method for generating a threat assessment |
WO2011112752A1 (en) * | 2010-03-09 | 2011-09-15 | Alejandro Diaz Arceo | Electronic transaction techniques implemented over a computer network |
US8649398B2 (en) | 2011-03-14 | 2014-02-11 | Xilinx, Inc. | Packet network interface apparatus and method |
US20130034047A1 (en) * | 2011-08-05 | 2013-02-07 | Xtreme Labs Inc. | Method and system for communicating with web services using peer-to-peer technology |
US8433288B2 (en) | 2011-09-13 | 2013-04-30 | Bank Of America Corporation | Multilevel authentication |
US9092623B2 (en) * | 2011-11-09 | 2015-07-28 | Kaprica Security, Inc. | System and method for bidirectional trust between downloaded applications and mobile devices including a secure charger and malware scanner |
US8584243B2 (en) * | 2011-11-09 | 2013-11-12 | Kaprica Security, Inc. | System and method for bidirectional trust between downloaded applications and mobile devices including a secure charger and malware scanner |
US8595841B2 (en) * | 2011-11-09 | 2013-11-26 | Kaprica Security, Inc. | System and method for bidirectional trust between downloaded applications and mobile devices including a secure charger and malware scanner |
US8726338B2 (en) * | 2012-02-02 | 2014-05-13 | Juniper Networks, Inc. | Dynamic threat protection in mobile networks |
US20130298215A1 (en) * | 2012-05-04 | 2013-11-07 | Rawllin International Inc. | Single sign-on user registration for online or client account services |
US9094817B2 (en) * | 2012-07-26 | 2015-07-28 | Hewlett-Packard Development Company, L.P. | Mobile device location authentication |
US9178889B2 (en) * | 2013-09-27 | 2015-11-03 | Paypal, Inc. | Systems and methods for pairing a credential to a device identifier |
-
2013
- 2013-09-27 US US14/039,124 patent/US9178889B2/en active Active
-
2014
- 2014-08-28 WO PCT/US2014/053269 patent/WO2015047652A1/en active Application Filing
- 2014-08-28 CN CN201480035512.XA patent/CN105474574A/en active Pending
- 2014-08-28 JP JP2016533508A patent/JP6204592B2/en active Active
- 2014-08-28 CA CA2915892A patent/CA2915892A1/en not_active Abandoned
- 2014-08-28 KR KR1020157035832A patent/KR20160033074A/en not_active Application Discontinuation
- 2014-08-28 EP EP14849565.8A patent/EP3050250B1/en active Active
- 2014-08-28 AU AU2014328542A patent/AU2014328542B2/en active Active
-
2015
- 2015-11-02 US US14/930,450 patent/US20160057145A1/en not_active Abandoned
-
2017
- 2017-05-03 US US15/586,099 patent/US9867048B2/en active Active
-
2018
- 2018-01-08 US US15/864,713 patent/US20180199195A1/en not_active Abandoned
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20140028098A1 (en) * | 2007-12-11 | 2014-01-30 | Antonio Trigiani | Battery management system for multicell batteries |
US20120017055A1 (en) * | 2009-05-26 | 2012-01-19 | Zte Corporation | Method and device for scheduling queues based on chained list |
US20110243053A1 (en) * | 2010-01-29 | 2011-10-06 | Qualcomm Incorporated | Femtocell one-to-many packet delivery |
US20140017365A1 (en) * | 2012-07-13 | 2014-01-16 | Robert Warren Taylor | Methods and systems for stabilization of a fluid using applied electrical fields |
US20150006781A1 (en) * | 2013-06-28 | 2015-01-01 | Fujitsu Limited | Switch and control method |
Also Published As
Publication number | Publication date |
---|---|
JP2016535346A (en) | 2016-11-10 |
WO2015047652A1 (en) | 2015-04-02 |
US9867048B2 (en) | 2018-01-09 |
AU2014328542B2 (en) | 2016-11-10 |
US20150095992A1 (en) | 2015-04-02 |
KR20160033074A (en) | 2016-03-25 |
US20160057145A1 (en) | 2016-02-25 |
US9178889B2 (en) | 2015-11-03 |
CA2915892A1 (en) | 2015-04-02 |
CN105474574A (en) | 2016-04-06 |
AU2014328542A1 (en) | 2016-01-21 |
EP3050250A4 (en) | 2017-04-26 |
JP6204592B2 (en) | 2017-09-27 |
EP3050250A1 (en) | 2016-08-03 |
US20170238182A1 (en) | 2017-08-17 |
EP3050250B1 (en) | 2018-08-08 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9867048B2 (en) | Automatic authentication of a mobile device using stored authentication credentials | |
AU2018202849B2 (en) | Proxied push notifications based on user interaction | |
US10681772B2 (en) | Facilitating wireless connections using a BLE beacon | |
US10719823B2 (en) | Systems and methods for wirelessly determining accepted forms of payment | |
US20150287014A1 (en) | Managing check in applications using protocol handlers | |
US10185966B2 (en) | Claiming incentives on networked televisions |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
STPP | Information on status: patent application and granting procedure in general |
Free format text: ADVISORY ACTION MAILED |
|
STCB | Information on status: application discontinuation |
Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION |