Authernative, Inc., the developer of innovative user authentication and identity management technologies, announced today that the US Patent & Trademark Office has granted the company its patent for a user authentication method and interface.
The newly issued patent number US 7,188,314 titled "System and method for user authentication interface" describes a graphical user interface supporting an interactive client-server authentication based on Random Partial Pattern Recognition algorithm.
Unlike the standard static password recognition algorithm which requires the user to enter the entire password in one authentication session, the patented Random Partial Pattern Recognition algorithm requests only a random session-specific subset of the user's credential. This technology significantly reduces the credential's entropy leakage and renders one-time authentication responses difficult to compromise. Moreover, the method's virtual keyboards and menus containing alpha-numeric characters, images or colors enable high combinatorial security and an easy cognitive way to select, remember, and enter the user's credentials. The user authentication interface also includes indicators for elapsed time and status of the authentication session. The combination of these security and usability features provide stronger protection against known attacks while delivering a simple and more engaging user experience.
This patent, together with the recently granted patents (European Patent Office, patent number EP1434408, titled "Authentication System and Method Based upon Random Partial Pattern Recognition" and US Patent & Trademark Office, patent number 7,073,067, titled "Authentication System and Method Based upon Random Partial Digitized Path Recognition") provide for a protected intellectual property and technology foundation for Authernative(TM) AuthGuard(R) authentication product - a versatile authentication platform offering different methods and levels of authentication security consolidated through one user interface.
Authentication options include the following methods: legacy password, enhanced password, patented one-time challenge - one-time response, patent-pending out-of-band, and strong mutual authentication. These authentication factors, used alone or in combination, allow for one-factor, layered, or multi-factor highly scalable authentication security, while preserving high usability, low total cost of ownership, and online self-service capabilities. Hence, the AuthGuard product enables enterprises, application & consumer service providers to select and mandate different authentication methods depending on who is logging in, where the log-in is taking place, and for what purpose.
Furthermore, organizations can offer end-users the ability to choose the most appropriate authentication method from variety of different options. This allows for personalized security and usability, making the end-user authentication process more engaging while providing tangible and feasible protection. Given such options, security motivated and conscious users could choose a higher level of authentication security.
The issued patent solidifies the company's intellectual property portfolio, strengthens its technology and product legal protection, and extends its licensing opportunities.