authentication != authorisation.
From which it follows:
Two-factor authentication != two-factor authorisation.
The patent does not cover authentication, on my reading.