Patents by Inventor James Shang Kai Chou
James Shang Kai Chou has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11270173Abstract: According to examples, an apparatus may include a processor that may receive a request from a first device for an authentication token for access to a service, determine whether the first device is authorized to receive the authentication token for access to the service, and based on a determination that the first device is authorized to receive the authentication token for access to the service, generate a machine-readable code including the authentication token that a second device is to use for access to the service by the second device. The processor may also send the generated machine-readable code to the first device. The first device may display the machine-readable code and the second device may use a captured image of the machine-readable code to establish an authenticated session to the service on the second device.Type: GrantFiled: April 3, 2020Date of Patent: March 8, 2022Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Rachel Anne Brown Teller, Kristina K. Hotz, Tarek B. Kamel, Neelam Anuradha Reddy, Peter M. Tsang, James Shang Kai Chou
-
Publication number: 20210312251Abstract: According to examples, an apparatus may include a processor that may receive a request from a first device for an authentication token for access to a service, determine whether the first device is authorized to receive the authentication token for access to the service, and based on a determination that the first device is authorized to receive the authentication token for access to the service, generate a machine-readable code including the authentication token that a second device is to use for access to the service by the second device. The processor may also send the generated machine-readable code to the first device. The first device may display the machine-readable code and the second device may use a captured image of the machine-readable code to establish an authenticated session to the service on the second device.Type: ApplicationFiled: April 3, 2020Publication date: October 7, 2021Applicant: Microsoft Technology Licensing, LLCInventors: Rachel Anne Brown TELLER, Kristina K. HOTZ, Tarek B. KAMEL, Neelam Anuradha REDDY, Peter M. TSANG, James Shang Kai CHOU
-
Patent number: 10693873Abstract: Authenticating a secure session between a first user entity and an identity provider using a second user entity. The method includes receiving a request for a session from an entity that purports to be the first user entity. The method further includes sending authentication context from the request, and wherein the authentication context for the request arrives at the second user entity. The method further includes receiving an indication that the authentication context has been verified. As a result, the method further includes authenticating a secure session between a first user entity and an identity provider or approving a secure transaction.Type: GrantFiled: July 20, 2018Date of Patent: June 23, 2020Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Tarek B. Kamel, Adrian Frei, James Shang Kai Chou
-
Publication number: 20190182245Abstract: Authenticating a secure session between a first user entity and an identity provider using a second user entity. The method includes receiving a request for a session from an entity that purports to be the first user entity. The method further includes sending authentication context from the request, and wherein the authentication context for the request arrives at the second user entity. The method further includes receiving an indication that the authentication context has been verified. As a result, the method further includes authenticating a secure session between a first user entity and an identity provider or approving a secure transaction.Type: ApplicationFiled: July 20, 2018Publication date: June 13, 2019Inventors: Tarek B. Kamel, Adrian Frei, James Shang Kai Chou
-
Patent number: 10050963Abstract: Authenticating a secure session between a first user entity and an identity provider using a second user entity. The method includes receiving a request for a session from an entity that purports to be the first user entity. The method further includes sending authentication context from the request, and wherein the authentication context for the request arrives at the second user entity. The method further includes receiving an indication that the authentication context has been verified. As a result, the method further includes authenticating a secure session between a first user entity and an identity provider or approving a secure transaction.Type: GrantFiled: March 29, 2016Date of Patent: August 14, 2018Assignee: Microsoft Technology Licensing, LLCInventors: Tarek B. Kamel, Adrian Frei, James Shang Kai Chou
-
Patent number: 9787654Abstract: Authenticating issues involving the re-authenticating of a first device that was previously authenticated are resolved by use of a second device which receives a notification of the failed authentication. The second device sends a response to the notification which is operable to facilitate re-authentication of the primary device and without requiring the user to provide credentials at the first device prior to obtaining the re-authentication at the primary device and/or without requiring the primary device to obtain a code to be entered into the secondary device and/or prior to the primary device being notified of a failure condition associated with the primary device.Type: GrantFiled: October 29, 2015Date of Patent: October 10, 2017Assignee: Microsoft Technology Licensing, LLCInventors: Benjamin R. Vincent, Adrian Frei, James Shang Kai Chou
-
Publication number: 20170289150Abstract: Authenticating a secure session between a first user entity and an identity provider using a second user entity. The method receiving a request for a session from an entity that purports to be the first user entity. The method further includes sending authentication context from the request, and wherein the authentication context for the request arrives at the second user entity. The method further includes receiving an indication that the authentication context has been verified. As a result, the method further includes authenticating a secure session between a first user entity and an identity provider or approving a secure transaction.Type: ApplicationFiled: March 29, 2016Publication date: October 5, 2017Inventors: Tarek B. Kamel, Adrian Frei, James Shang Kai Chou
-
Patent number: 9706401Abstract: User-authentication-based approval of a first device via communication with a second device over a channel (e.g., an insecure channel) is described. The first device receives a session ID and first user-observable information, or an identifier thereof, from an identity provider, presents the first user-observable information to a user, and sends the session ID to the second device. The second device sends the session ID to the identity provider to obtain therefrom second user-observable information, or an identifier thereof, and a security challenge. The second user-observable information bears a user-discernable relationship to the first user-observable information and is presented to the user by the second device. The second device is capable of generating a response to the security challenge for transmission to the identity provider based at least on input received from the user, the response to the security challenge being indicative of the suitability of the first device for approval.Type: GrantFiled: November 25, 2014Date of Patent: July 11, 2017Assignee: Microsoft Technology Licensing, LLCInventors: Benjamin R. Vincent, Tarek B. Kamel, Sparky Toews, Dejan Subotic, Peter E. Zenzerovich, James Shang Kai Chou
-
Publication number: 20170126640Abstract: Authenticating issues involving the re-authenticating of a first device that was previously authenticated are resolved by use of a second device which receives a notification of the failed authentication. The second device sends a response to the notification which is operable to facilitate re-authentication of the primary device and without requiring the user to provide credentials at the first device prior to obtaining the re-authentication at the primary device and/or without requiring the primary device to obtain a code to be entered into the secondary device and/or prior to the primary device being notified of a failure condition associated with the primary device.Type: ApplicationFiled: October 29, 2015Publication date: May 4, 2017Inventors: Benjamin R. Vincent, Adrian Frei, James Shang Kai Chou
-
Publication number: 20160150406Abstract: User-authentication-based approval of a first device via communication with a second device over a channel (e.g., an insecure channel) is described. The first device receives a session ID and first user-observable information, or an identifier thereof, from an identity provider, presents the first user-observable information to a user, and sends the session ID to the second device. The second device sends the session ID to the identity provider to obtain therefrom second user-observable information, or an identifier thereof, and a security challenge. The second user-observable information bears a user-discernable relationship to the first user-observable information and is presented to the user by the second device. The second device is capable of generating a response to the security challenge for transmission to the identity provider based at least on input received from the user, the response to the security challenge being indicative of the suitability of the first device for approval.Type: ApplicationFiled: November 25, 2014Publication date: May 26, 2016Inventors: Benjamin R. Vincent, Tarek B. Kamel, Sparky Toews, Dejan Subotic, Peter E. Zenzerovich, James Shang Kai Chou