Dynamic adjustment of authentication mechanism

US 10,021,110 B2
Filed: 03/23/2016
Issued: 07/10/2018
Est. Priority Date: 03/19/2013
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

collecting, by a data processing system, colony proximity data of one or more agents relative to an agent attempting to authenticate to the data processing system, the data processing system including first and second authentication schemes, the second authentication scheme being lower in strength than the first authentication scheme, the data processing system configured to apply the first authentication scheme for authentication requests;

collecting, by the data processing system, colony size data of the one or more agents;

combining the colony proximity data and the colony size data to derive a colony value;

determining if the colony value meets a threshold value; and

responsive to the colony value meeting the threshold value, dynamically selecting the second authentication scheme instead of the first authentication scheme to apply for authenticating the attempting agent to the data processing system.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to one aspect of the present disclosure, a method and technique for dynamic adjustment of authentication mechanism is disclosed. The method includes: collecting location data of one or more agents relative to an agent attempting to authenticate to a data processing system; determining if the location data meets a threshold value; and responsive to the location data meeting the threshold value, relaxing an authentication scheme for the attempting agent to authenticate to the data processing system.

Citations

20 Claims

1. A method, comprising:
- collecting, by a data processing system, colony proximity data of one or more agents relative to an agent attempting to authenticate to the data processing system, the data processing system including first and second authentication schemes, the second authentication scheme being lower in strength than the first authentication scheme, the data processing system configured to apply the first authentication scheme for authentication requests;
  
  collecting, by the data processing system, colony size data of the one or more agents;
  
  combining the colony proximity data and the colony size data to derive a colony value;
  
  determining if the colony value meets a threshold value; and
  
  responsive to the colony value meeting the threshold value, dynamically selecting the second authentication scheme instead of the first authentication scheme to apply for authenticating the attempting agent to the data processing system.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein collecting the colony proximity data comprises determining a distance of each of the one or more agents from the attempting agent.
  - 3. The method of claim 2, further comprising calculating an average distance based on the determined distances of each of the one or more agents.
  - 4. The method of claim 2, wherein determining the distance of each of the one or more agents from the attempting agent comprises determining the distance for those of the one or more agents located within a proximity zone relative to the attempting agent.
  - 5. The method of claim 1, wherein collecting the colony size data comprises determining a quantity of the one or more agents within a proximity zone relative to the attempting agent.
  - 6. The method of claim 1, wherein combining the colony proximity data and the colony size data to derive the colony value comprises:
    - determining a first quantity of the one or more agents within a first proximity zone relative to the attempting agent;
      
      determining a second quantity of the one or more agents within a second proximity zone relative to the attempting agent, the second proximity zone extending farther from the attempting agent than the first proximity zone;
      
      assigning a first weighted value to the first quantity;
      
      assigning a second weighted value to the second quantity; and
      
      calculating the colony value to be compared to the threshold value based on the first and second weighted values.
  - 7. The method of claim 1, wherein combining the colony proximity data and the colony size data to derive the colony value comprises:
    - determining a distance of each of the one or more agents from the attempting agent for the one or more agents located within a first proximity zone relative to the attempting agent;
      
      determining a distance of each of the one or more agents from the attempting agent for the one or more agents located within a second proximity zone relative to the attempting agent, the second proximity zone extending farther from the attempting agent than the first proximity zone;
      
      determining a first average distance based on the determined distances within the first proximity zone;
      
      determining a second average distance based on the determined distances within the second proximity zone;
      
      assigning a first weighted value to the first average distance;
      
      assigning a second weighted value to the second average distance; and
      
      calculating the colony value to be compared to the threshold value based on the first and second weighted values.

8. A system, comprising:
- a processor and a memory; and
  
  logic executable by the processor to;
  
  collect colony proximity data of one or more agents relative to an agent attempting to authenticate to a data processing system, the data processing system including first and second authentication schemes, the second authentication scheme being lower in strength than the first authentication scheme, the data processing system configured to apply the first authentication scheme for authentication requests;
  
  collect colony size data of the one or more agents;
  
  combine the colony proximity data and the colony size data to derive a colony value;
  
  determine if the colony value meets a threshold value; and
  
  responsive to the colony value meeting the threshold value, dynamically select the second authentication scheme instead of the first authentication scheme to apply for authenticating the attempting agent to the data processing system.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system of claim 8, wherein the logic is executable to collect the colony size data by determining a quantity of the one or more agents within a proximity zone relative to the attempting agent.
  - 10. The system of claim 8, wherein the logic is executable to:
    - determine a first quantity of the one or more agents within a first proximity zone relative to the attempting agent;
      
      determine a second quantity of the one or more agents within a second proximity zone relative to the attempting agent, the second proximity zone extending farther from the attempting agent than the first proximity zone;
      
      assign a first weighted value to the first quantity;
      
      assign a second weighted value to the second quantity; and
      
      calculate the colony value to be compared to the threshold value based on the first and second weighted values.
  - 11. The system of claim 8, wherein the logic is executable to collect the colony proximity data by determining a distance of each of the one or more agents from the attempting agent.
  - 12. The system of claim 11, wherein the logic is executable to calculate an average distance based on the determined distances of each of the one or more agents.
  - 13. The system of claim 11, wherein the logic is executable to collect the colony proximity data by determining the distance for those of the one or more agents located within a proximity zone relative to the attempting agent.
  - 14. The system of claim 8, wherein the logic is executable to:
    - determine a distance of each of the one or more agents from the attempting agent for the one or more agents located within a first proximity zone relative to the attempting agent;
      
      determine a distance of each of the one or more agents from the attempting agent for the one or more agents located within a second proximity zone relative to the attempting agent, the second proximity zone extending farther from the attempting agent than the first proximity zone;
      
      determine a first average distance based on the determined distances within the first proximity zone;
      
      determine a second average distance based on the determined distances within the second proximity zone;
      
      assign a first weighted value to the first average distance;
      
      assign a second weighted value to the second average distance; and
      
      calculate the colony value to be compared to the threshold value based on the first and second weighted values.

15. A computer program product for dynamic adjustment of authentication mechanism, the computer program product comprising:
- a non-transitory computer readable medium having computer readable program code embodied therewith, the computer readable program code comprising computer readable program code configured to;
  
  collect colony proximity data of one or more agents relative to an agent attempting to authenticate to a data processing system, the data processing system including first and second authentication schemes, the second authentication scheme being lower in strength than the first authentication scheme, the data processing system configured to apply the first authentication scheme for authentication requests;
  
  collect colony size data of the one or more agents;
  
  combine the colony proximity data and the colony size data to derive a colony value;
  
  determine if the colony value meets a threshold value; and
  
  responsive to the colony value meeting the threshold value, dynamically select the second authentication scheme instead of the first authentication scheme to apply for authenticating the attempting agent to the data processing system.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The computer program product of claim 15, wherein the computer readable program code is configured to collect the colony size data by determining a quantity of the one or more agents within a proximity zone relative to the attempting agent.
  - 17. The computer program product of claim 15, wherein the computer readable program code is configured to:
    - determine a first quantity of the one or more agents within a first proximity zone relative to the attempting agent;
      
      determine a second quantity of the one or more agents within a second proximity zone relative to the attempting agent, the second proximity zone extending farther from the attempting agent than the first proximity zone;
      
      assign a first weighted value to the first quantity;
      
      assign a second weighted value to the second quantity; and
      
      calculate the colony value to be compared to the threshold value based on the first and second weighted values.
  - 18. The computer program product of claim 17, wherein the computer readable program code is configured to collect the colony proximity data by determining a distance of each of the one or more agents from the attempting agent.
  - 19. The computer program product of claim 18, wherein the computer readable program code is configured to calculate an average distance based on the determined distances of each of the one or more agents.
  - 20. The computer program product of claim 15, wherein the computer readable program code is configured to:
    - determine a distance of each of the one or more agents from the attempting agent for the one or more agents located within a first proximity zone relative to the attempting agent;
      
      determine a distance of each of the one or more agents from the attempting agent for the one or more agents located within a second proximity zone relative to the attempting agent, the second proximity zone extending farther from the attempting agent than the first proximity zone;
      
      determine a first average distance based on the determined distances within the first proximity zone;
      
      determine a second average distance based on the determined distances within the second proximity zone;
      
      assign a first weighted value to the first average distance;
      
      assign a second weighted value to the second average distance; and
      
      calculate colony value to be compared to the threshold value based on the first and second weighted values.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Tang, Weng Sing
Primary Examiner(s)
Jamshidi, Ghodrat

Application Number

US15/078,662
Publication Number

US 20160205085A1
Time in Patent Office

839 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/107   wherein the security polici...

H04L 63/20   for managing network securi...

Dynamic adjustment of authentication mechanism

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Dynamic adjustment of authentication mechanism

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links