| CPC G06F 21/335 (2013.01) [G06F 21/32 (2013.01); G06F 21/604 (2013.01); H04L 63/0227 (2013.01); H04L 63/107 (2013.01); H04L 67/141 (2013.01); G06F 2221/2105 (2013.01)] | 20 Claims |
|
1. A non-transitory computer readable medium including instructions that, when executed by at least one processor, cause the at least one processor to perform operations for passwordless authentication of a user, the operations comprising:
receiving a request from a computing device to access an access service;
determining whether the request matches a set of protected access services, the determining comprising:
based on a determination at a portal that the request does not match, redirecting the request; or
based on a determination at the portal that the request does match, sending a unique session identifier for the user and a request for authentication of the user;
authenticating the user through a verification of an identity of the computing device and a current physical presence of the user, comprising:
prompting a physical verification of the user, the physical verification being based on one or more unique physical characteristics of the user, and
receiving, by a security server for validation based on the physical verification, the unique session identifier; and
conditional on a successful result of the physical verification of the user and a successful validation of the unique session identifier, establishing a secure tunnel connection between the computing device and the access service.
|