Abstract: In one embodiment, a method may receive an authorization request from a first device to access a resource. The method may validate, using a localhost listener, the authorization request by verifying an origin header of the authorization request based on a plurality of Uniform Resource Locators (URLs) in a trusted domain. In response to determining the authorization request is valid, the method may obtain a credential associated with the authorization request from a second device and validate proximity of the first device and the second device. In response to determining the first device is co-located with the second device, the method may approve the authorization request.

Abstract: In one embodiment, a method includes scanning, by a first device, a code from a second device and determining, by the first device, information comprising a peer identifier and a first certificate hash using the code. The method also includes initiating, by the first device, a connection with the second device using the peer identifier and receiving, by the first device, a second certificate hash from the second device via the connection. The method further includes validating, by the first device, the second certificate hash using the first certificate hash, establishing a session with the second device, and transferring, by the first device, account information to the second device via the session.

Abstract: In one embodiment, a method, by an authentication server, includes receiving user information associated with a first authentication factor for verification from the first endpoint device. The method further includes in response to verifying the first authentication factor, transmitting a prompt to provide an authentication decision associated with a second authentication factor to the second endpoint device, wherein the second endpoint device is communicatively coupled to the first endpoint device through the communication link. The method further includes receiving the authentication decision that is initiated by the first endpoint device from the second endpoint device, wherein the first endpoint device is configured to initiate and transmit the authentication decision to the second endpoint device in response to receiving the second authentication factor from the second endpoint device.

Abstract: In one embodiment, a method, by an authentication server, includes generating a transaction identifier associated with an authentication request received from an external device. In response to verifying a first authentication factor of the authentication request, the method includes transmitting a prompt and the transaction identifier to the external device, wherein the prompt is an HTTP link associated with a browser comprising a generated cookie, the generated cookie being associated with the transaction identifier. The method includes receiving a signal comprising a transmitted transaction identifier and an instruction to process the HTTP link. The method includes instructing an application installed on the external device to open the browser in a webview in response to processing the instruction, wherein a cookie is provided. The method includes identifying the generated cookie based on verifying the transmitted transaction identifier.

Abstract: In one embodiment, a method includes receiving information associated with a plurality of devices. The information includes a manufacturer, a model name, and a current version of software for each of the plurality of devices. The method also includes generating a plurality of classifications. Each of the plurality of classifications is associated with a particular manufacturer and a particular model name. The method further includes determining a number of the plurality of devices in a first classification of the plurality of classifications, categorizing the number of the plurality of devices in the first classification into a plurality of categories by the current version of software, and determining, independent of any type of device identifier, a latest available version of software for the first classification.