公开(公告)号：US12081538B2

公开(公告)日：2024-09-03

申请号：US17855648

申请日：2022-06-30

Applicant: Intel Corporation

Inventor： Omer Ben-Shalom ,  Oren Galler ,  Alex Nayshtut

IPC: H04L9/40

CPC classification number: H04L63/083 ,  H04L63/0428 ,  H04L63/18 ,  H04L2463/082

Abstract: The disclosure generally relates to method, system and apparatus for multifactor authentication exchange using out of band communication to authenticate a user while defending against the man in the middle attack. In an exemplary method, the disclosed principles provide a multifactor authentication (MFA) exchange, which includes: receiving an authentication request through in-band communication from a first device associated with a user to authenticate the user, the authentication request including a first authentication factor to identify the user; generating a second authentication factor, the second authentication factor further comprising an authorization token; generating an encryption key to encrypt the authorization token and a redirect Uniform Resource Locator (URL) address; and communicating the second authentication factor, the encryption key and the redirect URL address to a second device associated with the user.

公开(公告)号：US20240007456A1

公开(公告)日：2024-01-04

申请号：US17855648

申请日：2022-06-30

Applicant: Intel Corporation

Inventor： Omer Ben-Shalom ,  Oren Galler ,  Alex Nayshtut

IPC: H04L9/40

CPC classification number: H04L63/083 ,  H04L63/0428 ,  H04L2463/082

Abstract: The disclosure generally relates to method, system and apparatus for multifactor authentication exchange using out of band communication to authenticate a user while defending against the man in the middle attack. In an exemplary method, the disclosed principles provide a multifactor authentication (MFA) exchange, which includes: receiving an authentication request through in-band communication from a first device associated with a user to authenticate the user, the authentication request including a first authentication factor to identify the user; generating a second authentication factor, the second authentication factor further comprising an authorization token; generating an encryption key to encrypt the authorization token and a redirect Uniform Resource Locator (URL) address; and communicating the second authentication factor, the encryption key and the redirect URL address to a second device associated with the user.