Selectively enabling and disabling biometric authentication based on mobile device state information

US 10,182,078 B2
Filed: 02/27/2018
Issued: 01/15/2019
Est. Priority Date: 11/19/2015
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

at a computing platform comprising at least one processor, memory, and a communication interface;

receiving, by the at least one processor, via the communication interface, from a device monitoring and management computer system, a device state indicator message comprising device state information associated with a mobile computing device, wherein the device state information associated with the mobile computing device comprises information indicating that the mobile computing device has been jailbroken or rooted;

setting, by the at least one processor, a biometric authentication flag for the mobile computing device based on the device state indicator message received from the device monitoring and management computer system;

generating, by the at least one processor, an authentication functionality message for the mobile computing device based on the biometric authentication flag set for the mobile computing device, wherein the authentication functionality message selectively disables a biometric authentication function of a mobile banking application executed on the mobile computing device based on the information indicating that the mobile computing device has been jailbroken or rooted, wherein the biometric authentication function of the mobile banking application is used when authenticating with the computing platform to access mobile banking information maintained by a financial institution operating the computing platform; and

sending, by the at least one processor, via the communication interface, to the mobile computing device, the authentication functionality message generated for the mobile computing device, wherein sending the authentication functionality message generated for the mobile computing device to the mobile computing device causes the mobile computing device to disable the biometric authentication function of the mobile banking application executed on the mobile computing device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, systems, and computer-readable media for selectively enabling and disabling biometric authentication are presented. In some embodiments, a computing platform may receive, from a device monitoring and management computer system, a device state indicator message comprising device state information associated with a mobile computing device. Subsequently, the computing platform may set a biometric authentication flag for the mobile computing device based on the device state indicator message received from the device monitoring and management computer system. Then, the computing platform may generate an authentication functionality message for the mobile computing device based on the biometric authentication flag set for the mobile computing device, and the authentication functionality message may be configured to selectively enable or disable one or more biometric authentication functions provided by the mobile computing device. Thereafter, the computing platform may send, to the mobile computing device, the authentication functionality message generated for the mobile computing device.

63 Citations

View as Search Results

20 Claims

1. A method comprising:
- at a computing platform comprising at least one processor, memory, and a communication interface;
  
  receiving, by the at least one processor, via the communication interface, from a device monitoring and management computer system, a device state indicator message comprising device state information associated with a mobile computing device, wherein the device state information associated with the mobile computing device comprises information indicating that the mobile computing device has been jailbroken or rooted;
  
  setting, by the at least one processor, a biometric authentication flag for the mobile computing device based on the device state indicator message received from the device monitoring and management computer system;
  
  generating, by the at least one processor, an authentication functionality message for the mobile computing device based on the biometric authentication flag set for the mobile computing device, wherein the authentication functionality message selectively disables a biometric authentication function of a mobile banking application executed on the mobile computing device based on the information indicating that the mobile computing device has been jailbroken or rooted, wherein the biometric authentication function of the mobile banking application is used when authenticating with the computing platform to access mobile banking information maintained by a financial institution operating the computing platform; and
  
  sending, by the at least one processor, via the communication interface, to the mobile computing device, the authentication functionality message generated for the mobile computing device, wherein sending the authentication functionality message generated for the mobile computing device to the mobile computing device causes the mobile computing device to disable the biometric authentication function of the mobile banking application executed on the mobile computing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. The method of claim 1, wherein the mobile banking application is provided by the financial institution operating the computing platform, and the mobile computing device is used by a customer of the financial institution operating the computing platform.
  - 3. The method of claim 1, wherein the device state information associated with the mobile computing device comprises location information identifying a current geographic location of the mobile computing device.
  - 4. The method of claim 1, wherein the device state information associated with the mobile computing device comprises application information identifying one or more programs that are installed or running on the mobile computing device.
  - 5. The method of claim 1, wherein the device state information associated with the mobile computing device comprises user information identifying a current user of the mobile computing device.
  - 6. The method of claim 1, comprising:
    - prior to receiving the device state indicator message comprising the device state information associated with the mobile computing device;
      
      receiving, by the at least one processor, via the communication interface, from the mobile computing device, a connect message comprising one or more identifiers associated with the mobile computing device;
      
      based on receiving the connect message comprising the one or more identifiers associated with the mobile computing device, generating, by the at least one processor, a probe request for the mobile computing device, wherein the probe request causes the device monitoring and management computer system to collect state information from the mobile computing device; and
      
      sending, by the at least one processor, via the communication interface, to the device monitoring and management computer system, the probe request generated for the mobile computing device.
  - 7. The method of claim 6, wherein the device state information associated with the mobile computing device is collected by a management agent executed on the mobile computing device.
  - 8. The method of claim 6, wherein the device state information associated with the mobile computing device is collected by the mobile banking application executed on the mobile computing device.
  - 9. The method of claim 2, comprising:
    - setting, by the at least one processor, one or more additional authentication flags for the mobile computing device based on the device state indicator message received from the device monitoring and management computer system.
  - 10. The method of claim 9, comprising:
    - after sending the authentication functionality message generated for the mobile computing device to the mobile computing device;
      
      receiving, by the at least one processor, via the communication interface, from the mobile computing device, authentication input information;
      
      validating, by the at least one processor, the authentication input information received from the mobile computing device; and
      
      based on validating the authentication input information received from the mobile computing device, providing, by the at least one processor, to the mobile computing device, online banking information associated with one or more financial accounts maintained by the financial institution for the customer of the financial institution.
  - 11. The method of claim 10, comprising:
    - prior to providing the online banking information to the mobile computing device;
      
      generating, by the at least one processor, one or more additional authentication prompts based on the one or more additional authentication flags set for the mobile computing device; and
      
      providing, by the at least one processor, the one or more additional authentication prompts to the mobile computing device.
  - 12. The method of claim 1, wherein the biometric authentication function of the mobile banking application executed on the mobile computing device comprises a fingerprint biometric authentication function.
  - 13. The method of claim 1, wherein the biometric authentication function of the mobile banking application executed on the mobile computing device comprises a voice biometric authentication function.
  - 14. The method of claim 1, wherein the biometric authentication function of the mobile banking application executed on the mobile computing device comprises a facial biometric authentication function.
  - 15. The method of claim 1, wherein the biometric authentication function of the mobile banking application executed on the mobile computing device comprises a retinal biometric authentication function.

16. One or more non-transitory computer-readable media storing instructions that, when executed by a computing platform comprising at least one processor, memory, and a communication interface, cause the computing platform to:
- receive, via the communication interface, from a device monitoring and management computer system, a device state indicator message comprising device state information associated with a mobile computing device, wherein the device state information associated with the mobile computing device comprises information indicating that the mobile computing device has been jailbroken or rooted;
  
  set a biometric authentication flag for the mobile computing device based on the device state indicator message received from the device monitoring and management computer system;
  
  generate an authentication functionality message for the mobile computing device based on the biometric authentication flag set for the mobile computing device, wherein the authentication functionality message selectively disables a biometric authentication function of a mobile banking application executed on the mobile computing device based on the information indicating that the mobile computing device has been jailbroken or rooted, wherein the biometric authentication function of the mobile banking application is used when authenticating with the computing platform to access mobile banking information maintained by a financial institution operating the computing platform; and
  
  send, via the communication interface, to the mobile computing device, the authentication functionality message generated for the mobile computing device, wherein sending the authentication functionality message generated for the mobile computing device to the mobile computing device causes the mobile computing device to disable the biometric authentication function of the mobile banking application executed on the mobile computing device.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The one or more non-transitory computer-readable media of claim 16, wherein the mobile banking application is provided by the financial institution operating the computing platform, and the mobile computing device is used by a customer of the financial institution operating the computing platform.
  - 18. The one or more non-transitory computer-readable media of claim 16, wherein the device state information associated with the mobile computing device comprises location information identifying a current geographic location of the mobile computing device.
  - 19. The one or more non-transitory computer-readable media of claim 16, wherein the device state information associated with the mobile computing device comprises application information identifying one or more programs that are installed or running on the mobile computing device.
  - 20. The one or more non-transitory computer-readable media of claim 16, wherein the device state information associated with the mobile computing device comprises user information identifying a current user of the mobile computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Zhang, Xianhong, Meng, Wenhui, Pasumarthi, Kalyan V., Votaw, Elizabeth, Keys, Andrew T., Dave, Apeksh M.
Primary Examiner(s)
Naghdali, Khalil

Application Number

US15/906,736
Publication Number

US 20180191784A1
Time in Patent Office

322 Days
Field of Search

726 6
US Class Current
CPC Class Codes

G06Q 20/108   Remote banking, e.g. home b...

G06Q 20/40145   Biometric identity checks

H04L 2463/082   applying multi-factor authe...

H04L 63/0861   using biometrical features,...

H04L 63/205   involving negotiation or de...

H04W 12/06   Authentication

H04W 12/67   Risk-dependent, e.g. select...

Selectively enabling and disabling biometric authentication based on mobile device state information

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

63 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Selectively enabling and disabling biometric authentication based on mobile device state information

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

63 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links