US 12,143,817 B2
Secure mobile initiated authentications to web-services
George Avetisov, New York, NY (US); Roman Kadinsky, New York, NY (US); and Bojan Simic, New York, NY (US)
Assigned to HYPR Corp., New York, NY (US)
Filed by HYPR Corp., New York, NY (US)
Filed on Apr. 20, 2023, as Appl. No. 18/304,281.
Application 18/304,281 is a continuation of application No. 17/158,898, filed on Jan. 26, 2021, granted, now 11,659,392.
Application 17/158,898 is a continuation of application No. 17/066,280, filed on Oct. 8, 2020, granted, now 10,939,295, issued on Mar. 2, 2021.
Application 17/066,280 is a continuation in part of application No. 16/932,605, filed on Jul. 17, 2020, granted, now 11,438,764, issued on Sep. 6, 2022.
Application 16/932,605 is a continuation of application No. 15/931,461, filed on May 13, 2020, granted, now 10,764,752, issued on Sep. 1, 2020.
Application 15/931,461 is a continuation in part of application No. 16/373,561, filed on Apr. 2, 2019, granted, now 11,057,366, issued on Jul. 6, 2021.
Application 16/373,561 is a continuation in part of application No. 16/270,255, filed on Feb. 7, 2019, granted, now 10,601,828, issued on Mar. 24, 2020.
Claims priority of provisional application 62/951,945, filed on Dec. 20, 2019.
Claims priority of provisional application 62/720,609, filed on Aug. 21, 2018.
Claims priority of provisional application 62/720,590, filed on Aug. 21, 2018.
Prior Publication US 2023/0413050 A1, Dec. 21, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04W 12/06 (2021.01); G06F 21/45 (2013.01); H04L 9/40 (2022.01); H04W 12/069 (2021.01); H04W 12/08 (2021.01)
CPC H04W 12/068 (2021.01) [G06F 21/45 (2013.01); H04L 63/062 (2013.01); H04L 63/083 (2013.01); H04L 63/0884 (2013.01); H04L 63/18 (2013.01); H04L 63/20 (2013.01); H04W 12/069 (2021.01); H04W 12/08 (2013.01); G06F 2221/2149 (2013.01)] 36 Claims
OG exemplary drawing
 
1. A tangible, non-transitory, machine-readable medium storing instructions that when executed by a computer system effectuate operations comprising:
establishing, by a first computing device, a set of credentials maintained by the first computing device, the set of credentials including an authentication credential of a user of the first computing device and a private key of a public-private key pair associated with the user;
transmitting, by the first computing device, a public key of the key pair associated with the user to a server system over a secure session to register the first computing device and the public key with the server system;
receiving, by the first computing device, a user selection to register the first computing device for authenticating user access to a web-service to be accessed from a second computing device, wherein:
the second computing device is different from the first computing device, and
the server system is configured to convey one or more credentials associated with the user of the first computing device for presentation to a web-server system associated with the web-service to authenticate the second computing device to access to an account of the user with the web-service;
generating, by the first computing device, based on a registration value corresponding to the web-service, signed data using the private key, the first computing device governing use of the private key subject to authentication of the user based on the authentication credential;
transmitting, by the first computing device, the signed data to the server system to cause the server system to register the first computing device with the web-service based on authentication of the signed data using the public key and the registration value; and
transmitting, by the first computing device, authentication data generated using the private key to the server system to cause the web-server system to permit the second computing device to access the account of the user with the web-service based on the authentication data.