公开(公告)号：US20190364034A1

公开(公告)日：2019-11-28

申请号：US15985913

申请日：2018-05-22

Applicant: salesforce.com, inc.

Inventor： Joshua David Alexander

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/08

Abstract: Techniques are disclosed relating to authenticating a second mobile device for participation in a multi-factor authentication process. In disclosed embodiments, a server generates an authentication decision, based on communicating with a first mobile device as a factor in the multi-factor authentication process. After receiving a request from the first mobile device to authorize participation of a second mobile device in the multi-factor authentication process, the server may generate a secret and transmit the secret to the first mobile device. The server may receive information from the second mobile device, based on the second mobile device capturing an image of a display by the first mobile device, where the display is based on the transmitted secret. In some embodiments, the server then verifies the content of the information using the secret and verifies that the information is received within a determined time interval from transmitting the secret. After verifying the content and the time interval, the server may authorize participation of and communicates with the second mobile device as a factor in the multi-factor authentication process.