Patent Issued for Safe logon (USPTO 11924191): Allstate Insurance Company
2024 MAR 25 (NewsRx) -- By a
The assignee for this patent, patent number 11924191, is
Reporters obtained the following quote from the background information supplied by the inventors: “Protecting confidential information in today’s online environment is difficult due to the increased connectivity and the increased number of user accounts accessible via web enabled computing devices. Creating mutual trust between a user and a vendor through use of a website or mobile application requires that the user trust the operating policies and data use and sharing practices of the site or application and the site trusts the user’s identity. This is challenging in the digital dimension, when the two entities may never meet and must depend on an exchange of information, third party verification services, and multi-factor authentication mechanisms.
“Current methods and systems of authenticating users may expose a user’s credentials or use arbitrary credentialing semantics which are not preferred by vendors. These existing methods and systems for exchanging information between users and vendors introduce friction into the process of using a vendor’s website or mobile application for purchases through third party verification services.
“Therefore, there is a desire for a system that implements a more convenient mechanism to identify trusted sites combined with a mechanism to reliably confirm a user’s identity that establishes and enhances mutual trust while reducing friction.”
In addition to obtaining background information on this patent, NewsRx editors also obtained the inventors’ summary information for this patent: “In light of the foregoing background, the following presents a simplified summary of the present disclosure in order to provide a basic understanding of some aspects of the invention. This summary is not an extensive overview of the invention. It is not intended to identify key or critical elements of the invention or to delineate the scope of the invention. The following summary merely presents some concepts of the invention in a simplified form as a prelude to the more detailed description provided below.
“Aspects of the disclosure address one or more of the issues mentioned above by disclosing methods, computer readable storage media, software, systems, and apparatuses to perform a trusted online transaction between a user and a vendor. A user can trust that a site using the safe logon button is a trusted site that has been verified and audited to ensure that its policies and practices meet minimum standards for privacy, data sharing, and compliance. A vendor can trust that the system has verified the identity of the user.
“In addition, the system compares a user’s privacy preference with a privacy policy of a vendor and, in some embodiments, to recommend alternative vendors having privacy policies more closely matching the user’s privacy preferences. The recommended alternative vendors may be output for display to the user along with indications of various qualities of the vendors’ privacy policies, and indications of how, or if, those qualities conform to, or lack conformance with, the user’s privacy preferences. The described cyber-security system may help a user avoid interacting with vendors having privacy policies that don’t match the user’s preferences, and may help the user find other vendors whose privacy policies more closely match their privacy preferences.
“Of course, the methods and systems of the above-referenced embodiments may also include other additional elements, steps, computer-executable instructions, or computer-readable data structures. In this regard, other embodiments are disclosed and claimed herein as well. The details of these and other embodiments of the present invention are set forth in the accompanying drawings and the description below. Other features and advantages of the invention will be apparent from the description, drawings, and claims.”
The claims supplied by the inventors are:
“1. An apparatus, comprising: one or more processors configured to: receive a login request, resulting from activation of a login button displayed on a requesting site, to perform a transaction between a user and the requesting site; access a previously stored database record associated with the requesting site, the record indicating a required specified number of authentication factors associated with the requesting site; verify an identity of the user of the transaction, including confirming that at least the required specified number of authentication factors are predefined in a verified user profile; generate an encrypted token including verification information resulting from the verification of the identity of the user; determine whether the requesting site is a trusted site; and based on both the trusted site determination and the identity verification of the user, transmit the generated token to the requesting site.
“2. The apparatus of claim 1, wherein the one or more processors are further configured to communicate with the requesting site to obtain requirements defining at least the required specified number of authentication factors.
“3. The apparatus of claim 2, wherein the verification of the identity includes verifying the presence of user credentials, predefined in the verified user profile, of at least a specified type specified as being required by the requesting site based on the requirements obtained via the communication.
“4. The apparatus of claim 3, wherein the one or more processors are further configured to prompt the user for at least one specified type of credential, required by the requesting site, responsive to at least one specified type of credential not being included in the verified user profile.
“5. The apparatus of claim 1, wherein the one or more processors are further configured to prompt the user for additional credentials, up to at least the required specified number of authentication factors, responsive to the required number of credentials included in the verified user profile being less than the required specified number of authentication factors.
“6. The apparatus of claim 5, wherein the credentials include user biometrics.
“7. The apparatus of claim 5, wherein the credentials include user personal information.
“8. The apparatus of claim 5, wherein the credentials include accumulated user reputation, accumulated through successful prior transactions.
“9. A method comprising: receiving a login request, resulting from activation of a login button displayed on a requesting site, to perform a transaction between a user and the requesting site; verifying an identity of the user of the transaction, including confirming that at least a required number of authentication factors of one or more required types are predefined in a verified user profile, the required number and required types defined by the requesting site; and generating an encrypted token including verification information resulting from the verification of the identity of the user.
“10. The method of claim 9, wherein at least one of the required number and required types are obtained via communication with the requesting site.
“11. The method of claim 9, further comprising: prompting the user for at least one type of credential, required by the requesting site, responsive to at least one type of credential not being included in the verified user profile; and prompting the user for additional credentials, up to at least the required number of authentication factors, responsive to the required number of credentials included in the verified user profile being less than the required authentication factors.
“12. The method of claim 11, wherein the credentials include at least one of user biometrics, user personal information, or accumulated user reputation, accumulated through successful prior transactions.”
For more information, see this patent: De Guia, Nicolette. Safe logon.
(Our reports deliver fact-based news of research and discoveries from around the world.)
Patent Issued for Net settlement of subrogation claims using a distributed ledger (USPTO 11922526): State Farm Mutual Automobile Insurance Company
New Risk Management Findings Has Been Reported by Investigators at Boston University (Prosocial Preferences Improve Climate Risk Management In Subsistence Farming Communities): Risk Management
Advisor News
- Tax filing season is a good time to open a Trump Account
- Why aligning wealth and protection strategies will define 2026 planning
- Finseca and IAQFP announce merger
- More than half of recent retirees regret how they saved
- Tech group seeks additional context addressing AI risks in CSF 2.0 draft profile connecting frameworks
More Advisor NewsAnnuity News
- Allianz Life Launches Fixed Index Annuity Content on Interactive Tool
- Great-West Life & Annuity Insurance Company Trademark Application for “SMART WEIGHTING” Filed: Great-West Life & Annuity Insurance Company
- Somerset Re Appoints New Chief Financial Officer and Chief Legal Officer as Firm Builds on Record-Setting Year
- Indexing the industry for IULs and annuities
- United Heritage Life Insurance Company goes live on Equisoft’s cloud-based policy administration system
More Annuity NewsHealth/Employee Benefits News
- Data from University of Michigan Provide New Insights into Managed Care (Attitudes About Administrative Burdens for Beneficiaries and Dental Care Providers in Medicaid): Managed Care
- Study Data from St. Christopher’s Hospital for Children Provide New Insights into Managed Care (Emergency Dental Care in the ACA Era: Rural-Urban Disparities and Their Association With State Medicaid Policy): Managed Care
- Researchers from University of California Discuss Findings in COVID-19 (Assessing the Use of Medical Insurance Claims and Electronic Health Records to Measure COVID-19 Vaccination During Pregnancy): Coronavirus – COVID-19
- 85,000 Pennie customers dropped health plans as tax credits shrank and costs spiked
- Lawsuit: About 1,000 Arizona kids have lost autism therapy
More Health/Employee Benefits NewsLife Insurance News