-
公开(公告)号:US11973750B2
公开(公告)日:2024-04-30
申请号:US17992900
申请日:2022-11-22
申请人: HYPR Corp.
发明人: Bojan Simic , Roman Kadinsky , Robert Panebianco
IPC分类号: H04L29/06 , G06F16/901 , G06F21/62 , H04L9/08 , H04L9/40 , H04L67/1097
CPC分类号: H04L63/0815 , G06F16/9014 , G06F21/6227 , H04L9/0825 , H04L67/1097
摘要: Provided is a process that establishes user identities within a decentralized data store, like a blockchain. A user's mobile device may establish credential values within a trusted execution environment of the mobile device. Representations of those credentials may be generated on the mobile device and transmitted for storage in association with an identity of the user established on the blockchain. Similarly, one or more key-pairs may be generated or otherwise used by the mobile device for signatures and signature verification. Private keys may remain resident on the device (or known and input by the user) while corresponding public keys may be stored in associated with the user identity on the blockchain. A private key is used to sign representations of credentials and other values as a proof of knowledge of the private key and credential values for authentication of the user to the user identity on the blockchain.
-
公开(公告)号:US20240039707A1
公开(公告)日:2024-02-01
申请号:US18310880
申请日:2023-05-02
申请人: HYPR Corp.
发明人: Michael McDonald
IPC分类号: H04L9/08 , H04W12/0433 , H04W12/08
CPC分类号: H04L9/0825 , H04W12/0433 , H04W12/08
摘要: Provided is a process for authentication of a user on a mobile device. The user of the mobile device may authenticate with the mobile device, and credentials may be conveyed to a server via a relying device. The mobile device may directly communicate credentials to the relying device. In some examples, the user of the mobile device may authenticate using the mobile device without inputting credentials on the relying device. Credentials conveyed to the server by the relying device and authenticated by the server may permit user access to the relying device or access to an online resource from the relying device.
-
公开(公告)号:US20230413050A1
公开(公告)日:2023-12-21
申请号:US18304281
申请日:2023-04-20
申请人: HYPR Corp.
发明人: George Avetisov , Roman Kadinsky , Bojan Simic
IPC分类号: H04W12/06 , H04L9/40 , G06F21/45 , H04W12/08 , H04W12/069
CPC分类号: H04W12/068 , H04L63/083 , H04L63/0884 , G06F21/45 , H04L63/20 , H04L63/062 , H04W12/08 , H04L63/18 , H04W12/069 , G06F2221/2149
摘要: Provided is a process for mobile-initiated authentications to web services. Credential values of the user are established within a trusted execution environment of the mobile device and representations are transmitted to a server. The user of the mobile device may authenticate with the mobile device to the server, which may convey access to a web-based service from a relying device. The server may pass credentials corresponding to the web-service received from the mobile device and verified to permit user access to the web-service to the relying device. The relying device presents credentials to the web-service to login, authenticate, or otherwise obtain user-level permission for the user on the relying device. The user of the mobile device may authenticate with the mobile device to the server, and may initiate the authentication process from the mobile device, without inputting credentials corresponding to the web-service on the relying device.
-
公开(公告)号:US11539685B2
公开(公告)日:2022-12-27
申请号:US17338394
申请日:2021-06-03
申请人: HYPR Corp.
发明人: Bojan Simic , Roman Kadinsky , Robert Panebianco
IPC分类号: H04L29/06 , H04L9/40 , G06F21/62 , H04L67/1097 , G06F16/901 , H04L9/08
摘要: Provided is a process that establishes user identities within a decentralized data store, like a blockchain. A user's mobile device may establish credential values within a trusted execution environment of the mobile device. Representations of those credentials may be generated on the mobile device and transmitted for storage in association with an identity of the user established on the blockchain. Similarly, one or more key-pairs may be generated or otherwise used by the mobile device for signatures and signature verification. Private keys may remain resident on the device (or known and input by the user) while corresponding public keys may be stored in associated with the user identity on the blockchain. A private key is used to sign representations of credentials and other values as a proof of knowledge of the private key and credential values for authentication of the user to the user identity on the blockchain.
-
公开(公告)号:US11057366B2
公开(公告)日:2021-07-06
申请号:US16373561
申请日:2019-04-02
申请人: HYPR Corp.
IPC分类号: H04L29/06 , G06F21/62 , H04L29/08 , G06F16/901 , H04L9/08
摘要: Provided is a process that establishes user identities within a decentralized data store, like a blockchain. A user's mobile device may establish credential values within a trusted execution environment of the mobile device. Representations of those credentials may be generated on the mobile device and transmitted for storage in association with an identity of the user established on the blockchain. Similarly, one or more key-pairs may be generated or otherwise used by the mobile device for signatures and signature verification. Private keys may remain resident on the device (or known and input by the user) while corresponding public keys may be stored in association with the user identity on the blockchain. A private key is used to sign representations of credentials and other values as a proof of knowledge of the private key and credential values for authentication of the user to the user identity on the blockchain.
-
公开(公告)号:US20210185531A1
公开(公告)日:2021-06-17
申请号:US17158898
申请日:2021-01-26
申请人: HYPR Corp.
发明人: George Avetisov , Roman Kadinsky , Bojan Simic
IPC分类号: H04W12/06 , H04L29/06 , G06F21/45 , H04W12/08 , H04W12/069
摘要: Provided is a process for mobile-initiated authentications to web services. Credential values of the user are established within a trusted execution environment of the mobile device and representations are transmitted to a server. The user of the mobile device may authenticate with the mobile device to the server, which may convey access to a web-based service from a relying device. The server may pass credentials corresponding to the web-service received from the mobile device and verified to permit user access to the web-service to the relying device. The relying device presents credentials to the web-service to login, authenticate, or otherwise obtain user-level permission for the user on the relying device. The user of the mobile device may authenticate with the mobile device to the server, and may initiate the authentication process from the mobile device, without inputting credentials corresponding to the web-service on the relying device.
-
公开(公告)号:US20200280855A1
公开(公告)日:2020-09-03
申请号:US15931461
申请日:2020-05-13
申请人: HYPR Corp.
发明人: George Avetisov , Roman Kadinsky , Bojan Simic
摘要: Provided is a process that establishes representations and permits users to login to a relying device to which a mobile device has registered. Credential values of the user are established within a trusted execution environment of the mobile device and representations of those credentials are transmitted to a server. The user of the mobile device may authenticate with the mobile device to the server, which may permit user access to the relying device via secure session. The user of the mobile device may authenticate with the mobile device to the server, which may permit user access by causing the mobile device to obtain a value by which the relying device may be accessed. The user of the mobile device may authenticate with the mobile device based on a policy received from the server to obtain a value by which the relying device may be accessed.
-
公开(公告)号:US10764752B1
公开(公告)日:2020-09-01
申请号:US15931461
申请日:2020-05-13
申请人: HYPR Corp.
发明人: George Avetisov , Roman Kadinsky , Bojan Simic
摘要: Provided is a process that establishes representations and permits users to login to a relying device to which a mobile device has registered. Credential values of the user are established within a trusted execution environment of the mobile device and representations of those credentials are transmitted to a server. The user of the mobile device may authenticate with the mobile device to the server, which may permit user access to the relying device via secure session. The user of the mobile device may authenticate with the mobile device to the server, which may permit user access by causing the mobile device to obtain a value by which the relying device may be accessed. The user of the mobile device may authenticate with the mobile device based on a policy received from the server to obtain a value by which the relying device may be accessed.
-
公开(公告)号:US11963006B2
公开(公告)日:2024-04-16
申请号:US17880585
申请日:2022-08-03
申请人: HYPR Corp.
发明人: George Avetisov , Roman Kadinsky , Bojan Simic
IPC分类号: H04W12/06 , G06F21/45 , H04L9/40 , H04W12/069 , H04W12/08
CPC分类号: H04W12/068 , G06F21/45 , H04L63/062 , H04L63/083 , H04L63/0884 , H04L63/18 , H04L63/20 , H04W12/069 , H04W12/08 , G06F2221/2149
摘要: Provided is a process that establishes representations and permits users to login to a relying device to which a mobile device has registered. Credential values of the user are established within a trusted execution environment of the mobile device and representations of those credentials are transmitted to a server. The user of the mobile device may authenticate with the mobile device to the server, which may permit user access to the relying device via secure session. The user of the mobile device may authenticate with the mobile device to the server, which may permit user access by causing the mobile device to obtain a value by which the relying device may be accessed. The user of the mobile device may authenticate with the mobile device based on a policy received from the server to obtain a value by which the relying device may be accessed.
-
30.发明授权公开(公告)号:US11647023B2
公开(公告)日:2023-05-09
申请号:US17501925
申请日:2021-10-14
申请人: HYPR Corp.
发明人: George Avetisov , Bojan Simic , Roman Kadinsky
CPC分类号: H04L63/0884 , G06F21/45 , H04L9/088 , H04L63/18
摘要: Provided is a process that affords out-of-band authentication for confirmation of physical access or when a device utilized for out-of-band authentication lacks connectivity to a network. An asymmetric cryptographic key-pair is established, a first device obtaining a key operable to decrypt data. A remote server obtaining a key operable to encrypt data and associating that key with an identifier of an identity or account associated with a user. An access attempt from the second device is received in association with the identifier of the identity associated with the user. A notification including data encrypted by the encryption key is generated by the remote server and transmitted to the second device. The first device obtains the notification data from the second device and decrypts the data to determine a notification response which is returned to the remote server for verification to permit or deny the access attempt of the second device.
-
-
-
-
-
-
-
-
-
搜索结果
40 条记录 (耗时 0.023 秒)
