Technologies for login pattern based multi-factor authentication
US-2016180068-A1 · Jun 23, 2016 · US
Methods and Systems for Using Behavioral Analysis Towards Efficient Continuous Authentication
US2016110528A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2016110528-A1 |
| Application number | US-201414514662-A |
| Country | US |
| Kind code | A1 |
| Filing date | Oct 15, 2014 |
| Priority date | Oct 15, 2014 |
| Publication date | Apr 21, 2016 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A computing device processor may be configured with processor-executable instructions to implement methods of using behavioral analysis and machine learning techniques to identify, prevent, correct, and/or otherwise respond to malicious or performance-degrading behaviors of the computing device. As part of these operations, the processor may perform multifactor authentication operations that include determining one or more of a transaction type criticality value, a user confidence value, a software integrity confidence value, and a historical behavior value, using the one or more of these values to determine a number of authentication factors that are be evaluated when authenticating a user of the computing device, and authenticating the user by evaluating the determined number of authentication factors.
First claim
Opening claim text (preview).
What is claimed is: 1 . A method of performing multifactor user authentication in a computing device, comprising: determining in a processor of the computing device one or more of a transaction type criticality value, a user confidence value, a software integrity confidence value, and a historical behavior value; using one or more of the transaction type criticality value, the user confidence value, the software integrity confidence value, and the historical behavior value to determine a number of authentication factors that are be evaluated when authenticating a user of the computing device; and authenticating the user by evaluating the determined number of authentication factors. 2 . The method of claim 1 , further comprising: using one or more of the transaction type criticality value, the user confidence value, the software integrity confidence value, and the historical behavior value to determine the authentication factors that are be evaluated when authenticating the user of the computing device. 3 . The method of claim 1 , further comprising: monitoring hardware and software systems of the computing device to determine the computing device's current vulnerability to unauthorized use. 4 . The method of claim 1 , wherein determining one or more of the transaction type criticality value, the user confidence value, the software integrity confidence value, and the historical behavior value comprises: monitoring activities of a software application to collect behavior information; generating a behavior vector that characterizes the monitored activities based on the collected behavior information; and applying the behavior vector to a classifier model to generate analysis results. 5 . The method of claim 4 , wherein the classifier model is a model of critical activity. 6 . The method of claim 5 , wherein the behavior vector is a multi-dimension vector data structure. 7 . The method of claim 1 , further comprising monitoring hardware and software systems of the computing device to learn over time a distinct way in which the user interacts with the computing device, wherein authenticating the user by evaluating the determined number of authentication factors comprises determining whether a behavior of a software application is consistent with the distinct way in which the user interacts with the computing device. 8 . The method of claim 1 , wherein determining the number of authentication factors that are to be evaluated comprises: performing passive authentication operations to authenticate the user without requiring express user interaction for the purpose of authentication; determining a passive authentication confidence value that identifies the device level of confidence in an accuracy of the passive authentication operations; determining a criticality level value that identifies an importance or criticality of a process or software application operating on the computing device; comparing the passive authentication confidence value to the criticality level value to generate a comparison result that identifies whether a level of confidence in the passive authentication outweighs a level of criticality; and determining the number of authentication factors that are be evaluated when authenticating the user of the computing device based on the comparison result. 9 . A computing device, comprising: a processor configured with processor-executable instructions to perform operations comprising: determining one or more of a transaction type criticality value, a user confidence value, a software integrity confidence value, and a historical behavior value; using one or more of the transaction type criticality value, the user confidence value, the software integrity confidence value, and the historical behavior value to determine a number of authentication factors that are be evaluated when authenticating a user of the computing device; and authenticating the user by evaluating the determined number of authentication factors. 10 . The computing device of claim 9 , wherein the processor is configured with processor-executable instructions to perform operations further comprising: using one or more of the transaction type criticality value, the user confidence value, the software integrity confidence value, and the historical behavior value to determine the authentication factors that are be evaluated when authenticating the user of the computing device. 11 . The computing device of claim 9 , wherein the processor is configured with processor-executable instructions to perform operations further comprising monitoring hardware and software systems to determine the computing device's current vulnerability to unauthorized use. 12 . The computing device of claim 9 , wherein the processor is configured with processor-executable instructions to perform operations such that determining one or more of the transaction type criticality value, the user confidence value, the software integrity confidence value, and the historical behavior value comprises: monitoring activities of a software application to collect behavior information; generating a behavior vector that characterizes the monitored activities based on the collected behavior information; and applying the behavior vector to a classifier model to generate analysis results. 13 . The computing device of claim 12 , wherein the processor is configured with processor-executable instructions to perform operations such that applying the behavior vector to the classifier model to generate the analysis results comprises applying the behavior vector to a model of critical activity. 14 . The computing device of claim 13 , wherein the processor is configured with processor-executable instructions to perform operations such that applying the behavior vector to the model of critical activity comprises applying a multi-dimension vector data structure to the model of critical activity. 15 . The computing device of claim 9 , wherein: the processor is configured with processor-executable instructions to perform operations further comprising monitoring hardware and software systems of the computing device to learn over time a distinct way in which the user interacts with the computing device; and the processor is configured with processor-executable instructions to perform operations such that authenticating the user by evaluating the determined number of authentication factors comprises determining whether a behavior of a software application is consistent with the distinct way in which the user interacts with the computing device. 16 . The computing device of claim 9 , wherein the processor is configured with processor-executable instructions to perform operations such that determining the number of authentication factors that are to be evaluated comprises: performing passive authentication operations to authenticate the user without requiring express user interaction for the purpose of authentication; determining a passive authentication confidence value that identifies the device level of confidence in an accuracy of the passive authentication operations; determining a criticality level value that identifies an importance or criticality of a process or software application operating on the computing device; comparing the passive authentication confidence value to the criticality level value to generate a comparison result that identifies whether a level of confidence in the passive authentication outweighs a level of criticality; and determining the number of authentication factors that are be evaluated whe
Assignees
Inventors
Classifications
Vulnerability analysis · CPC title
Traffic logging, e.g. anomaly detection · CPC title
Test or assess a computer or a system · CPC title
Authentication · CPC title
Multiple levels of security · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2016110528A1 cover?
- A computing device processor may be configured with processor-executable instructions to implement methods of using behavioral analysis and machine learning techniques to identify, prevent, correct, and/or otherwise respond to malicious or performance-degrading behaviors of the computing device. As part of these operations, the processor may perform multifactor authentication operations that in…
- Who is the assignee on this patent?
- Qualcomm Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/08. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Thu Apr 21 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).