Automated authorization response techniques

US 10,225,264 B2
Filed: 09/09/2015
Issued: 03/05/2019
Est. Priority Date: 10/25/2011
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computer-readable medium having computer instructions stored thereon that are capable of causing a mobile device to perform operations comprising:

receiving a permission request as a factor in a first multi-factor authentication process to verify a first action initiated by another device;

displaying an option to automate future permission requests for the first action;

in response to user input responsive to the displayed option, storing an indication that responses by the mobile device granting or denying future permission requests are to be automated based on at least one automation criterion;

receiving a subsequent permission request as a factor for a second multi-factor authentication process to verify, for a user, a second action initiated by another device; and

determining that the at least one automation criterion is met; and

in response to the determining, automatically granting or denying the subsequent permission request without receiving user input indicating whether to grant or deny the subsequent permission request.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. A mobile device may display an option to allow a user to automate responses to future permission requests to perform an action. The mobile device may automatically respond to subsequent permission requests based on at least one automation criterion. The action may include login, transaction approval, physical access, vehicle ignition, account recovery, etc. The automation criteria may include location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, image characteristics, etc. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.

50 Citations

View as Search Results

20 Claims

1. A non-transitory computer-readable medium having computer instructions stored thereon that are capable of causing a mobile device to perform operations comprising:
- receiving a permission request as a factor in a first multi-factor authentication process to verify a first action initiated by another device;
  
  displaying an option to automate future permission requests for the first action;
  
  in response to user input responsive to the displayed option, storing an indication that responses by the mobile device granting or denying future permission requests are to be automated based on at least one automation criterion;
  
  receiving a subsequent permission request as a factor for a second multi-factor authentication process to verify, for a user, a second action initiated by another device; and
  
  determining that the at least one automation criterion is met; and
  
  in response to the determining, automatically granting or denying the subsequent permission request without receiving user input indicating whether to grant or deny the subsequent permission request.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The non-transitory computer-readable medium of claim 1, wherein the first action and the second action are the same type of action.
  - 3. The non-transitory computer-readable medium of claim 1, wherein the second action is an account recovery action.
  - 4. The non-transitory computer-readable medium of claim 1,wherein the at least one automation criterion includes a plurality of automation criteria;
    - andwherein the determining the at least one automation criterion is met is based on a predetermined combination of automation criteria and includes determining that multiple ones of the automation criteria are met for the subsequent permission request and that one or more of the plurality of automation criteria are not met for the subsequent permission request.
  - 5. The non-transitory computer-readable medium of claim 4, wherein the determining is based on weighting factors assigned to ones of the plurality of automation criteria.
  - 6. The non-transitory computer-readable medium of claim 1, wherein the at least one automation criterion include two or more criteria that correspond to:
    - location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, or image characteristics.
  - 7. The non-transitory computer-readable medium of claim 1, where the automatically granting or denying includes identifier information corresponding to hardware of the mobile device that is usable for comparison by an authorization system with stored identifier information corresponding to hardware of the mobile device to verify the identity of the mobile device.
  - 8. The non-transitory computer-readable medium of claim 1, wherein the operations further comprise:
    - in response to receiving a second, subsequent permission request for a third action for which the at least one automation criterion is satisfied, determining to require user input prior to responding to the second, subsequent permission request based on velocity information indicating an amount of activity associated with the user.
  - 9. The non-transitory computer-readable medium of claim 1, wherein the operations further comprise:
    - in response to determining that the mobile device has left a particular geographic region, ending an authenticated session associated with the user.
  - 10. The non-transitory computer-readable medium of claim 1,wherein the subsequent permission request is received based on a request made by the user via another computing device;
    - wherein the subsequent permission request includes information indicating one or more visual characteristics of a user interface associated with the request, wherein the user interface is displayed by the other computer device;
      
      wherein the operations further comprise capturing one or more images; and
      
      wherein the at least one automation criterion includes a criterion that the mobile device detects the one or more visual characteristics in the captured one or more images.

11. A mobile device, comprising:
- at least one antenna;
  
  one or more processing elements coupled to the at least one antenna;
  
  one or more memories having program instructions stored thereon that are capable of causing the mobile device to;
  
  receive a permission request as a factor in a first multi-factor authentication process to verify a first action initiated by another device;
  
  display an option to select an automated response for future permission requests, based on at least one automation criterion;
  
  receive user input selecting an automated response;
  
  store an indication that responses by the mobile device granting or denying future permission requests are to be automated based on the at least one automation criterion;
  
  receive a subsequent permission request as a factor for a second multi-factor authentication process to verify, for a user, a second action initiated by another device;
  
  making a determination that the at least one automation criterion is met for the subsequent permission request; and
  
  in response to the determination, automatically grant or deny the subsequent permission request without receiving user input indicating to grant or deny the subsequent permission request.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. The mobile device of claim 11, wherein the second action is an account recovery action responsive to the user not supplying correct login information for an account.
  - 13. The mobile device of claim 11, wherein the program instructions are further capable of causing the mobile device to:
    - generating hardware identifier information based on components included in the mobile device and transmit the hardware identifier information as part of the automatically responding to the subsequent permission request.
  - 14. The mobile device of claim 11, wherein the program instructions are further capable of causing the mobile device to:
    - receive information indicating an amount of activity associated with an account of the user;
      
      determine that the at least one automation criterion is met for a second subsequent permission request; and
      
      require user input prior to responding to the second subsequent permission request, based on the amount of activity exceeding a threshold amount.
  - 15. The mobile device of claim 11, wherein the program instructions are further capable of causing the mobile device to:
    - in response to determining that the mobile device is no longer in a particular geographic region, log the user out of one or more accounts.
  - 16. The mobile device of claim 11,wherein the subsequent permission request is received based on a request made by the user via another computing device;
    - wherein the subsequent permission request includes information indicating one or more visual characteristics of a user interface associated with the request, wherein the user interface is displayed by the other computer device;
      
      wherein the program instructions are further capable of causing the mobile device to capture one or more images; and
      
      wherein the at least one automation criterion includes detection of the one or more visual characteristics in the captured one or more images.
  - 17. The mobile device of claim 11, wherein the at least one automation criterion includes a criterion that the mobile device is in communication with another computing device.

18. A method, comprising:
- a computing system receiving a request to perform a first action;
  
  the computing system sending a permission request as a factor in a first multi-factor authentication process to a mobile device, wherein the first action is initiated by another device;
  
  the computing system sending a factor for a second multi-factor authentication process a subsequent permission request to the mobile device, wherein the subsequent permission request is sent to verify a second action initiated by another device; and
  
  the computing system receiving an automated response from the mobile device to the subsequent permission request, wherein the automated response is generated by the mobile device based on user input that is responsive to a displayed option to automate responses by the mobile device granting or denying future permission requests based on at least one automation criterion; and
  
  wherein the at least one automation criterion include information indicating one or more visual characteristics of a user interface, wherein the information is usable by the mobile device for comparison to one or more images captured by the mobile device to determine whether the mobile device is in visual range of the user interface; and
  
  wherein the automated response is determined at least in part by the mobile device using the information and the one or more captured images.
- View Dependent Claims (19, 20)
- - 19. The method of claim 18, further comprising generating a particular visual characteristic for the user interface, wherein the information indicates at least the generated particular visual characteristic.
  - 20. The method of claim 18, wherein the request is received from a computing device configured to display the user interface.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Salesforce.com, Inc.
Original Assignee
Salesforce.com, Inc.
Inventors
Grim, Evan Tyler, Alexander, Josh
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
Gyorfi, Thomas A

Application Number

US14/849,323
Publication Number

US 20150381633A1
Time in Patent Office

1,273 Days
Field of Search
US Class Current
CPC Class Codes

H04L 2463/082   applying multi-factor authe...

H04L 63/08   for authentication of entit...

H04L 63/0861   using biometrical features,...

H04L 63/107   wherein the security polici...

H04W 12/06   Authentication

H04W 12/61   Time-dependent

H04W 12/68   Gesture-dependent or behavi...

H04W 4/80   Services using short range ...

Automated authorization response techniques

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

50 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Automated authorization response techniques

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

50 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links