| CPC H04L 63/083 (2013.01) [G06Q 20/382 (2013.01); G06Q 20/40 (2013.01); G06Q 20/409 (2013.01); H04L 63/0861 (2013.01); H04L 63/102 (2013.01); H04L 63/205 (2013.01); H04W 12/06 (2013.01); H04L 2463/082 (2013.01)] | 20 Claims |
|
1. A method for variable-step authentication at a server, comprising:
receiving, from a first communication device associated with a first participant, a request for a communication session involving the first communication device in a controlled environment and a second communication device located outside of the controlled environment, wherein the second communication device is associated with a second participant;
determining a first trust level of the first participant, wherein the first trust level indicates a first number of authentication steps to be successfully verified in order for the first participant to participate in the communication session;
determining a second trust level of the second participant, wherein the second trust level indicates a second number of authentication steps to be successfully verified in order for the second participant to participate in the communication session;
transmitting, by the server to the first communication device, a first authentication procedure, wherein the first authentication procedure is generated based on the first trust level, and wherein a first authentication step of the first number of authentication steps comprises a first type of authentication step and a second authentication step of the first number of authentication steps comprises a second type of authentication step;
transmitting, by the server to the second communication device, a second authentication procedure, wherein the second authentication procedure is generated based on the second trust level; and
permitting communications over the communication session between the first communication device and the second communication device upon successful verification of responses to the first authentication procedure and the second authentication procedure.
|