US Patent No. 10,659,461

SYSTEM, METHOD, AND RECORDING MEDIUM STORING PROGRAM FOR AUTHENTICATION


Patent No. 10,659,461
Issue Date May 19, 2020
Title System, Method, And Recording Medium Storing Program For Authentication
Inventorship Toshiki Maezawa, Tokyo (JP)
Takahiro Nishida, Tokyo (JP)
Hiroyuki Kikuchi, Tokyo (JP)
Assignee ISAO CORPORATION, Tokyo (JP)

Claim of US Patent No. 10,659,461

1. An authentication system comprising:a first terminal;
a second terminal; and
an authentication subsystem, wherein
the first terminal transmits first identification information inputted into the first terminal and a first request for push authentication to the authentication subsystem,
the authentication subsystem matches the first identification information received from the first terminal against second identification information stored in association with a unique ID of the second terminal, and if the second identification information matching the first identification information exists, transmits a push authentication operation start request to the second terminal based on the unique ID of the second terminal stored in association with the second identification information,
upon receiving the push authentication operation start request, the second terminal prompts a user, for the push authentication, to perform a predetermined operation other than inputting any of knowledge authentication information, ownership authentication information, and biometric authentication information, and when the predetermined operation is performed by the user, transmits a push authentication operation completion notification to the authentication subsystem,
before the first terminal transmits the first identification information and the first request for push authentication to the authentication subsystem,
the second terminal transmits a second request for push authentication and the unique ID of the second terminal to the authentication subsystem,
the authentication subsystem matches the unique ID of the second terminal received from the second terminal against the unique ID of the second terminal stored in association with the second identification information, and if the stored unique ID of the second terminal matching the received unique ID of the second terminal exists, stores a push authentication permission flag in association with the stored second identification information,
after the first terminal transmits the first identification information and the first request for push authentication to the authentication subsystem,
the authentication subsystem matches the first identification information received from the first terminal against the second identification information stored in association with the unique ID of the second terminal, and if the second identification information matching the first identification information exists, checks whether or not the push authentication permission flag is stored in association with the stored second identification information, and
if the push authentication permission flag is not stored in association with the stored second identification information, the authentication subsystem does not transmit the push authentication operation start request to the second terminal, or performs other authentication failure processing.