Method and apparatus for subscriber management
US-2017132087-A1 · May 11, 2017 · US
Systems and methods for automatically performing secondary authentication of primary authentication credentials
US12155651B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12155651-B2 |
| Application number | US-202318451868-A |
| Country | US |
| Kind code | B2 |
| Filing date | Aug 18, 2023 |
| Priority date | Jun 10, 2019 |
| Publication date | Nov 26, 2024 |
| Grant date | Nov 26, 2024 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The disclosed technology includes systems and methods for determining secondary authentication of a user's log-in attempts by comparing received behavioral biometric data and/or received scenario-specific data to saved behavioral biometric data and/or saved scenario-specific data, respectively. Responsive to determining that the received behavioral biometric data and/or received scenario-specific data is above a predetermined threshold of similarity with respect to the saved behavioral biometric data and/or saved scenario-specific data, respectively, the systems and methods can determine that the corresponding log-in attempt is secondarily authenticated. of a user device via behavioral biometric data. Responsive to determining that the level of similarity is not above the predetermined threshold, the systems and methods can initiate a secondary authentication method and can associate the received behavioral biometric data with a second user model.
First claim
Opening claim text (preview).
What is claimed is: 1. A system comprising: one or more processors; and memory having instructions stored thereon that, when executed by the one or more processors, cause the system to: generate a first user model associated with a first user account, the first user model generated from behavioral input data associated with one or more prior entries of primary authentication credentials on a first user device using a first credential entry method; store the first user model in a database; receive first input data from a user device, the first input data being associated with a first entry of the primary authentication credentials associated with the first user account; compare the first input data to the first user model; responsive to determining that a first level of similarity between the first input data received and the first user model is less than a first predetermined threshold: receive second input data, the second input data associated with a second entry of secondary authentication credentials of the first user account; and validate the second input data using the secondary authentication credentials; and responsive to successfully validating the second input data: generate a second user model based on the first input data associated with the first user account, wherein the second user model is separate from the first user model; and store the second user model in the database; and responsive to determining that the first level of similarity between the first input data received and the first user model is greater than the first predetermined threshold: update the first user model by integrating the first input data into the first user model; and store the updated first user model in the database. 2. The system of claim 1 , wherein: the first user model and the second user model are operated in parallel; and the instructions, when executed by the one or more processors, further cause the system to: receive third input data; compare the third input data to first stored input data of the first user model and second stored input data of the second user model; determine whether the third input data is within a second level of similarity to the first user model or the second user model; responsive to determining that the third input data is within the second level of similarity to the first user model, integrate the third input data into the first stored input data of the first user model; responsive to determining that the third input data is within the second level of similarity to the second user model, integrate the third input data into the second stored input data of the second user model; and responsive to determining that the third input data is not within the second level of similarity to the first user model or the second user model, create a third user model associated with the first user account using the third input data. 3. The system of claim 1 , wherein the second user model is associated with a second user device. 4. The system of claim 1 , wherein the second user model associated with a second credential entry method. 5. The system of claim 4 , wherein: one of the first and second credential entry methods is a manual credential entry method and the other of the first and second credential entry methods is an automatic entry method utilizing a password manager service, and comparing the first input data to the first user model comprises comparing current typing time data of the first input data to model time data of the first user model. 6. The system of claim 1 , wherein comparing the first input data to the first user model comprises comparing scenario data of the first input data to model scenario data of the first user model, the scenario data comprising device elevation data and device orientation data and being contemporaneously detected by one or more sensors of the user device along with the first entry of the primary authentication credentials. 7. The system of claim 1 , wherein the instructions, when executed by the one or more processors, further cause the system to: determine that the first entry of the primary authentication credentials meets a secondary authentication requirement if the first level of similarity between the first input data and a first stored input data of the first user model is greater than or equal to the first predetermined threshold. 8. The system of claim 7 , wherein the instructions, when executed by the one or more processors, further cause the system to: responsive to matching the primary authentication credentials to stored primary authentication credentials, determine that a user meets a primary authentication requirement; and responsive to determining that the first entry of the primary authentication credentials meets the primary authentication requirement and the secondary authentication requirement, provide access to user-accessible system resources. 9. The system of claim 7 , wherein the instructions, when executed by the one or more processors, further cause the system to: in response to successfully validating the second input data, determine that the first entry of the primary authentication credentials meets the secondary authentication requirement when the first level of similarity between the first input data and the first stored input data of the first user model is less than the first predetermined threshold. 10. The system of claim 1 , wherein: the first input data comprises device identification data, and the instructions, when executed by the one or more processors, further cause the system to, identify, based on the first input data, the first user device from a plurality of user devices associated with a user. 11. A non-transitory, computer-readable medium having instructions stored thereon that, when executed by one or more processors, cause a computing device to: generate a first user model associated with a first user account, the first user model generated from behavioral input data associated with one or more prior entries of primary authentication credentials on a first user device using a first credential entry method; store the first user model in a database; receive first input data from a user device, the first input data being associated with a first entry of the primary authentication credentials associated with the first user account; compare the first input data to the first user model; responsive to determining that a first level of similarity between the first input data received and the first user model is less than a first predetermined threshold: receive second input data, the second input data associated with a second entry of secondary authentication credentials of the first user account; and validate the second input data using the secondary authentication credentials; and responsive to successfully validating the second input data: generate a second user model, separate from the first user model, based on the first input data, and associated with the first user account; and store the second user model in the database; and responsive to determining that the first level of similarity between the first input data received and the first user model is greater than the first predetermined threshold: update the first user model by integrating the first input data into the first user model; and store the updated first user model in the database. 12. The non-transitory, computer-readable medium of claim 11 , wherein the second user model is associated with a second user device. 13. The non-transitory, computer-readable medium of claim 11 , wherein the second user model is associated with a s
Assignees
Inventors
Classifications
using credential vaults, e.g. password manager applications or one time password [OTP] applications · CPC title
Entity profiles · CPC title
Access security · CPC title
applying multi-factor authentication · CPC title
using passwords (cryptographic mechanisms or cryptographic arrangements for entity authentication using a predetermined code H04L9/3226) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12155651B2 cover?
- The disclosed technology includes systems and methods for determining secondary authentication of a user's log-in attempts by comparing received behavioral biometric data and/or received scenario-specific data to saved behavioral biometric data and/or saved scenario-specific data, respectively. Responsive to determining that the received behavioral biometric data and/or received scenario-specif…
- Who is the assignee on this patent?
- Capital One Services Llc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0861. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Nov 26 2024 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).