CPC G06Q 20/322 (2013.01) [G06Q 20/3829 (2013.01); G06Q 20/401 (2013.01); G06Q 20/405 (2013.01); H04L 63/08 (2013.01); H04W 12/041 (2021.01); H04W 12/06 (2013.01); H04L 63/061 (2013.01); H04L 63/168 (2013.01); H04L 63/18 (2013.01); H04W 12/04 (2013.01)] | 20 Claims |
1. A method for authenticating a user account associated with a second server system that uses services of a first server system, the method comprising:
rendering, on a user device of a user, a user interface for associating the user device with the user account at the first server system;
transmitting, by the user interface to the first server system over a first communications channel, a first electronic message causing the first server system to initiate authentication of the user account by sending a second electronic message over a second communications channel to a user mobile device, the second electronic message comprising an authentication code generated by the first server system;
transmitting, by the user interface to the first server system over the first communications channel, a third electronic message comprising: (i) the authentication code entered into the user interface causing the first server system to authenticate the authentication code by determining whether the transmitted authentication code matches the authentication code sent to the user mobile device, and (ii) a cookie causing the first server system to authenticate the cookie by matching data within the cookie with data known to the first server system; and
receiving, by the user interface from the first server system in response to a successful authentication of the authentication code and the cookie, a fourth electronic message comprising an authentication key for authentication of the user device on behalf of the user account when interacting with an application associated with the second server system.
|