US 12,008,568 B1
Systems and methods for an authorized identification system
Michael Chang, Millbrae, CA (US); Traci Nguyen, San Francisco, CA (US); Cong Phan, San Francisco, CA (US); Marria Rhodriquez, San Francisco, CA (US); Darrell L Suen, San Ramon, CA (US); and Paul Vittimberga, Oakland, CA (US)
Assigned to Wells Fargo Bank, N.A., San Francisco, CA (US)
Filed by Wells Fargo Bank, N.A., San Francisco, CA (US)
Filed on Apr. 11, 2022, as Appl. No. 17/718,044.
Application 17/718,044 is a continuation of application No. 15/897,370, filed on Feb. 15, 2018, granted, now 11,301,847.
This patent is subject to a terminal disclaimer.
Int. Cl. G06Q 20/40 (2012.01); G06Q 20/38 (2012.01); H04L 9/08 (2006.01)
CPC G06Q 20/401 (2013.01) [G06Q 20/3829 (2013.01); H04L 9/0841 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method, comprising:
receiving, by a computing system from an aggregator computing system, an access request of an account at a financial institution, wherein the access request comprises a user identifier and encrypted authentication information, the user identifier associated with a user of the account, and wherein the aggregator computing system has previously received a first account information of the account during a prior access request, wherein the encrypted authentication information comprises user device data and a token identifier;
decrypting, by the computing system, the encrypted authentication information;
deriving, by the computing system, a device identifier of the user device data from the decrypted authentication information;
verifying, by the computing system, that the derived device identifier and the token identifier contained in the decrypted authentication information correspond to a stored authentication information associated with the user identifier;
querying, by the computing system, a mobile network operator for updated data about the derived device identifier;
receiving, by the computing system, from the mobile network operator, the updated data;
verifying, by the computing system, the updated data against the user device data;
identifying, by the computing system, the first account information provided during the prior access request;
transmitting, by the computing system to the aggregator computing system, a challenge question to the aggregator computing system, the challenge question comprising a request for the previously provided first account information;
receiving, by the computing system from the aggregator computing system, a challenge answer to the challenge question;
comparing, by the computing system, the challenge answer to the first account information;
authenticating, by the computing system, the aggregator computing system based on the challenge answer matching the first account information and based on the verification of the decrypted authentication information; and
providing, by the computing system, an authentication decision to the aggregator computing system, the authentication decision enabling the aggregator computing system to access and display information of the account to the user.