Terminal device authentication method, terminal device and program
US-8955063-B2 · Feb 10, 2015 · US
Automated authorization response techniques
US10225242B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10225242-B2 |
| Application number | US-201514849312-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 9, 2015 |
| Priority date | Oct 25, 2011 |
| Publication date | Mar 5, 2019 |
| Grant date | Mar 5, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. In some embodiments a mobile device receives permission requests that specify sets of one or more automation criteria. In some embodiments, the mobile device prompts a user for a response to permission requests when the criteria are not met and automatically responds to permission requests (e.g., without requiring user input) when the criteria are met. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.
First claim
Opening claim text (preview).
What is claimed is: 1. A non-transitory computer-readable medium having computer instructions stored thereon that are capable of causing a mobile device to perform operations comprising: receiving a first permission request from an authorization system as a factor in a first multi-factor authentication process initiated by another device, wherein the first permission request is a request for authorization from the mobile device to perform an action, and wherein the first permission request specifies a first set of one or more automation criteria to be considered by the mobile device in determining whether to respond to the first permission request without prompting a user for input; determining to automatically grant or deny the first permission request without prompting a user for input based on determining that the first set of one or more automation criteria specified in the first permission request are met; receiving a second permission request from the authorization system as a factor in a second multi-factor authentication process initiated by another device, wherein the second permission request is a request for authorization to perform an action, and wherein the second permission request specifies a second set of one or more automation criteria to be considered by the mobile device in determining whether to respond to the second permission request without prompting a user for input; and determining to prompt the user for input specifying whether to grant or deny the second permission request based on determining that the second set of one or more automation criteria specified in the second permission request are not met. 2. The non-transitory computer-readable medium of claim 1 , wherein the first set of one or more automation criteria includes a criterion corresponding to a location of the mobile device. 3. The non-transitory computer-readable medium of claim 2 , wherein the criterion corresponding to the location of the mobile device indicates to automatically respond to permission requests that are received when the mobile device is in a particular geographic region. 4. The non-transitory computer-readable medium of claim 1 , wherein the operations further comprise: receiving information specifying user selection of one or more automation criteria for future permission requests; and storing the information; wherein at least one of the first set of one or more automation criteria is based on the stored information. 5. The non-transitory computer-readable medium of claim 1 , wherein the first set of one or more automation criteria includes at least one criterion that corresponds to: location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, or image characteristics. 6. The non-transitory computer-readable medium of claim 1 , wherein the first permission request is initiated external to the mobile device. 7. A mobile device, comprising: at least one antenna; one or more processing elements coupled to the at least one antenna; one or more memories having program instructions stored thereon that are capable of causing the mobile device to: receive a first permission request from an authorization system as a factor in a first multi-factor authentication process initiated by another device, wherein the first permission request is a request for authorization from the mobile device to perform an action, and wherein the first permission request specifies a first set of one or more automation criteria to be considered by the mobile device in determining whether to respond to the first permission request without prompting a user for input; determine to automatically grant or deny the first permission request without prompting a user for input based on determining that the first set of one or more automation criteria specified in the first permission request are met; receive a second permission request from the authorization system as a factor in a second multi-factor authentication process initiated by another device, wherein the second permission request is a request for authorization to perform an action, and wherein the second permission request specifies a second set of one or more automation criteria to be considered by the mobile device in determining whether to respond to the second permission request without prompting a user for input; and determine to prompt the user for input specifying whether to grant or deny the second permission request based on determining that the second set of one or more automation criteria specified in the second permission request are not met. 8. The mobile device of claim 7 , wherein the action associated with the first permission request and the action associated with the second permission request are the same type of action. 9. The mobile device of claim 7 , wherein the first and second sets of one or more automation criteria each include a criterion corresponding to a location of the mobile device. 10. The mobile device of claim 9 , wherein the criterion corresponding to the location of the mobile device indicates automatically responding to permission requests that are received when the mobile device is in a particular geographic region. 11. The mobile device of claim 7 , wherein the first and second sets of automation criteria are the same. 12. The mobile device of claim 7 , wherein the first set of one or more automation criteria includes two or more criteria that correspond to two or more of: location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, or image characteristics. 13. The mobile device of claim 7 , wherein the action associated with the first permission request is a login. 14. A method, comprising: receiving, by a computing system, information indicating a request by a user to perform an action; determining, by the computing system, a set of one or more automation criteria under which a mobile device associated with the user should respond to a permission request for authorization from the mobile device to perform the action; transmitting, by the computing system, a first permission request to the mobile device associated with the user as a factor in a first multi-factor authentication process initiated by another device, wherein the first permission request specifies the set of one or more automation criteria to be considered by the mobile device in determining whether to respond to the first permission request without prompting a user for input; receiving, by the computing system, a response granting or denying the first permission request, wherein the response is automatically generated by the mobile device based on the set of one or more automation criteria without prompting the user for input to accept or deny the first permission request; receiving, by a computing system, information indicating a second request by a user to perform an action; determining, by the computing system, a second set of one or more automation criteria under which a mobile device associated with the user should respond to a second permission request for authorization from the mobile device to perform the action; transmitting, by the computing system, a second permission request to the mobile device associated with the user as a factor in a second multi-factor authentication process initiated by another device, wherein the second permission request specifies the second set of one or more automation criteria to be considered by the mobile device in determining whether to respond to the second permission re
Assignees
Inventors
Classifications
using biometrical features, e.g. fingerprint, retina-scan (cryptographic mechanisms or cryptographic arrangements for entity authentication using biological data H04L9/3231) · CPC title
wherein the security policies are location-dependent, e.g. entities privileges depend on current location or allowing specific operations only from locally connected terminals · CPC title
applying multi-factor authentication · CPC title
- H04L63/08Primary
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
Authentication · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10225242B2 cover?
- Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. In some embodiments a mobile device receives permission requests that specify sets of one or more automation criteria. In some embodiments, the mobile device prompts a user for a response to permission requests when the criteria are not met and automatically responds to perm…
- Who is the assignee on this patent?
- Salesforce Com Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/08. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Mar 05 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).