CPC H04L 63/0884 (2013.01) [H04L 9/0866 (2013.01); H04L 9/0894 (2013.01); H04L 63/0861 (2013.01); H04L 63/102 (2013.01); H04L 63/20 (2013.01); H04L 2463/082 (2013.01)] | 20 Claims |
1. A method for using a sponsor device as a proxy for multi-factor authentication of a first user account for a first user to access an online resource when a primary multi-factor authentication mechanism is unavailable to the first user account, the method comprising:
associating the sponsor device with a sponsor policy that defines when use of the sponsor device is permitted, wherein the sponsor device is within a multi-factor authentication chain of trust associated with the first user account;
determining that a primary device used for verifying an identity of the first user during the primary multi-factor authentication mechanism is unavailable, wherein the primary device and the sponsor device are used for accessing the online resource are operated by different users;
after determining that the primary device is unavailable, requesting verification of the identity of the first user from the sponsor device;
receiving, from the sponsor device and via one or more inputs made on the sponsor device by a user that is different from the first user, a verification of the identity of the first user;
sending a registration request to a device via which the first user account is accessed;
receiving device credentials from the device;
onboarding the device based on the device credentials; and
granting access to a service to the first user account based on the sponsor policy and upon onboarding the device.
|