Browse Prior Art Database

Method and System for Enabling Multifactor Authentication for Web Based Transactions

IP.com Disclosure Number: IPCOM000202348D
Publication Date: 2010-Dec-14
Document File: 4 page(s) / 171K

Publishing Venue

The IP.com Prior Art Database

Abstract

Disclosed is a method and system for enabling multifactor authentication for web based transactions.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 51% of the total text.

Page 01 of 4

Method and System for Enabling Multifactor Authentication for Web Based Transactions

A method and system is disclosed for enabling multifactor authentication for web based transactions.

In accordance with the method disclosed herein, a random password is generated each time a user requests for a log-in. The random password is generated using a character each from field values of a predefined number of fields. The predefined number of fields may be a part of a form which captures user specific information that is mandatory for creating an account on a web-site. The user is therefore required to insert a usual log-in password along with the random password for successfully logging into the web-site. Fig. 1 illustrates one such form for capturing user specific information.

(This page contains 00 pictures or other non-text object)

Figure 1

In an exemplary instance, a user may be requested to select a predefined number of fields from the form. While selecting the predefined number of fields from the form, the user also specifies a field number for each of the fields selected by the user. For example, as shown in fig.1, the user is requested to select six fields from the form. Accordingly, the user specifies a field number for each of these six fields. The selected fields are mapped with field number specified by the user as { [1,2],[2,3],[3,1],[4,4],[7,5],[8,6]}.

In an exemplary implementation of the method, a user may be requested to select a predefined number of fields from a form while the user is filling the form for the first time for creating his/her account on the web-site. In an instance, the user may be provided with a set of specific fields from which the user is required to select a predefined

1


Page 02 of 4

number of fields.

Further, in order to pick a character from field values of each of these fields for generating a random password, the user is also requested to opt for a character position. Accordingly, a character at the specified character position is selected from field values of each of these six fields for generating a random password when the user requests for a log-in. As shown in fig. 1, the method captures [2] from DOB, [a] from First Name, [a] from Last Name, [e] from Mother's Name, [m] from Branch and [a] from Current city based on the character position and fields as specified by the user. These charact...