What technology area does this patent fall under?

Primary CPC classification G06F21/31. Mapped technology areas include Physics.

When was this patent published?

Publication date Tue Jun 20 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).

Methods and systems for using behavioral analysis towards efficient continuous authentication

US9684775B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9684775-B2
Application number	US-201414514662-A
Country	US
Kind code	B2
Filing date	Oct 15, 2014
Priority date	Oct 15, 2014
Publication date	Jun 20, 2017
Grant date	Jun 20, 2017

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A computing device processor may be configured with processor-executable instructions to implement methods of using behavioral analysis and machine learning techniques to identify, prevent, correct, and/or otherwise respond to malicious or performance-degrading behaviors of the computing device. As part of these operations, the processor may perform multifactor authentication operations that include determining one or more of a transaction type criticality value, a user confidence value, a software integrity confidence value, and a historical behavior value, using the one or more of these values to determine a number of authentication factors that are be evaluated when authenticating a user of the computing device, and authenticating the user by evaluating the determined number of authentication factors.

First claim

Opening claim text (preview).

What is claimed is: 1. A method of performing multifactor user authentication in a computing device, comprising: monitoring, via a processor of the computing device, an activity of a software application operating on the computing device to collect behavior information; using the collected behavior information to generate a behavior vector that characterizes the monitored activity of the software application; applying the generated behavior vector to a classifier model to generate an analysis result; using the generated analysis result to compute at least one value, the computed at least one value including one or more of a transaction type criticality value, a user confidence value, a software integrity confidence value, and a historical behavior value; using the computed at least one value to determine a number of authentication factors that are to be evaluated when authenticating a user of the computing device; using the computed at least one value to determine which authentication factor to use for each of the number of authentication factors that are to be evaluated when authenticating the user of the computing device; and authenticating the user by evaluating the determined number of the determined authentication factors. 2. The method of claim 1 , further comprising: monitoring hardware and software systems of the computing device to determine the computing device's current vulnerability to unauthorized use. 3. The method of claim 1 , wherein applying the behavior vector to the classifier model to generate the analysis result comprises applying the behavior vector to a model of critical activity to generate the analysis result. 4. The method of claim 3 , wherein applying the behavior vector to the model of critical activity to generate the analysis result comprises: applying a multi-dimension vector data structure to the model of critical activity to generate the analysis result. 5. The method of claim 1 , further comprising monitoring hardware and software systems of the computing device to learn over time a distinct way in which the user interacts with the computing device, wherein authenticating the user by evaluating the determined number of the determined authentication factors comprises determining whether a behavior of the software application is consistent with the distinct way in which the user interacts with the computing device. 6. The method of claim 1 , wherein using the computed at least one value to determine the number of authentication factors that are to be evaluated when authenticating the user of the computing device further comprises: performing passive authentication operations to authenticate the user without requiring express user interaction; determining a passive authentication confidence value that identifies the computing device's level of confidence in an accuracy of the passive authentication operations; determining a criticality level value that identifies an importance or criticality of the software application operating on the computing device; comparing the passive authentication confidence value to the criticality level value to generate a comparison result that identifies whether a level of confidence in the passive authentication outweighs a level of criticality; and using the generated comparison result to determine the number of authentication factors that are be evaluated when authenticating the user of the computing device. 7. A computing device, comprising: a memory; a processor coupled to the memory, wherein the processor is configured with processor-executable instructions to perform operations comprising: monitoring an activity of a software application operating on the computing device to collect behavior information; using the collected behavior information to generate a behavior vector that characterizes the monitored activity of the software application; applying the generated behavior vector to a classifier model to generate an analysis result; using the generated analysis result to compute at least one value, the computed at least one value including one or more of a transaction type criticality value, a user confidence value, a software integrity confidence value, and a historical behavior value; using the computed at least one value to determine a number of authentication factors that are to be evaluated when authenticating a user of the computing device; using the computed at least one value to determine which authentication factor to use for each of the number of authentication factors that are to be evaluated when authenticating the user of the computing device; and authenticating the user by evaluating the determined number of the determined authentication factors. 8. The computing device of claim 7 , wherein the processor is configured with processor-executable instructions to perform operations further comprising monitoring hardware and software systems to determine the computing device's current vulnerability to unauthorized use. 9. The computing device of claim 7 , wherein the processor is configured with processor-executable instructions to perform operations such that applying the behavior vector to the classifier model to generate the analysis result comprises: applying the behavior vector to a model of critical activity to generate the analysis result. 10. The computing device of claim 9 , wherein the processor is configured with processor-executable instructions to perform operations such that applying the behavior vector to the model of critical activity to generate the analysis result comprises: applying a multi-dimension vector data structure to the model of critical activity to generate the analysis result. 11. The computing device of claim 7 , wherein: the processor is configured with processor-executable instructions to perform operations further comprising monitoring hardware and software systems of the computing device to learn over time a distinct way in which the user interacts with the computing device; and the processor is configured with processor-executable instructions to perform operations such that authenticating the user by evaluating the determined number of the determined authentication factors comprises determining whether a behavior of the software application is consistent with the distinct way in which the user interacts with the computing device. 12. The computing device of claim 7 , wherein the processor is configured with processor-executable instructions to perform operations such that using the computed at least one value to determine the number of authentication factors that are to be evaluated when authenticating the user of the computing device further comprises: performing passive authentication operations to authenticate the user without requiring express user interaction; determining a passive authentication confidence value that identifies the computing device's level of confidence in an accuracy of the passive authentication operations; determining a criticality level value that identifies an importance or criticality of the software application operating on the computing device; comparing the passive authentication confidence value to the criticality level value to generate a comparison result that identifies whether a level of confidence in the passive authentication outweighs a level of criticality; and using the generated comparison result to determine the number of authentication factors that are be evaluated when authenticating the user of the computing device. 13. A non-transitory computer readable storage medium having stored thereon processor-executable software instructions configured to cause a pro

Assignees

Qualcomm Inc

Inventors

Classifications

G06F2221/034
Test or assess a computer or a system · CPC title
H04W12/06
Authentication · CPC title
G06F21/31Primary
User authentication · CPC title
H04L63/1433
Vulnerability analysis · CPC title
H04L63/08Primary
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title

Patent family

Related publications grouped by family.

View patent family 54015249

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9684775B2 cover?: A computing device processor may be configured with processor-executable instructions to implement methods of using behavioral analysis and machine learning techniques to identify, prevent, correct, and/or otherwise respond to malicious or performance-degrading behaviors of the computing device. As part of these operations, the processor may perform multifactor authentication operations that in…
Who is the assignee on this patent?: Qualcomm Inc
What technology area does this patent fall under?: Primary CPC classification G06F21/31. Mapped technology areas include Physics.
When was this patent published?: Publication date Tue Jun 20 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).