Methods, apparatus and systems for securely authenticating a person depending on context

US 10,268,810 B2
Filed: 05/01/2018
Issued: 04/23/2019
Est. Priority Date: 10/15/2014
Status: Active Grant

First Claim

Patent Images

1. A user authentication services system comprising:

a meta-wallet system platform;

a user mobile device configured for communication with the meta-wallet system platform; and

a plurality of entity computers associated with a plurality of entities, the entity computers configured for communication with the meta-wallet system platform;

wherein the meta-wallet system platform comprises a meta-wallet computer operably connected to a meta-wallet master database, the meta-wallet computer comprising a meta-wallet processor operably connected to a communication device and to a storage device storing instructions configured to cause the meta-wallet processor to;

receive, via the communication device from a user mobile device, a user authentication request comprising a combination of a meta-wallet identifier, an entity identifier associated with an entity device, a context identifier determined by a meta-wallet application resident on the user mobile device based on activity data, and at least one of user biometric data, user personal assets data personally identifiable to the user, and user social media data personally identifiable to the user;

determine, based on the meta-wallet identifier and the context identifier, that the user is a registered meta-wallet user, that the user defined a plurality of security protocols, and that the user is engaging in a predetermined type of activity defined by the context identifier;

select a security protocol from the plurality of security protocols defined by the user based on the type of activity defined by the context identifier;

determine that a combination of personally identifiable assets data and at least one of user biometric data and user social media data matches stored personal meta-wallet data associated with the registered meta-wallet user and thus satisfies the selected security protocol; and

transmit, via the communication device to at least one of the user mobile device and the entity computer associated with the entity identifier, a user authentication confirmation message.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems, methods and apparatus are described for securely authenticating a user at an appropriate level of security depending on context. A system embodiment includes a meta-wallet system platform, a user mobile device, and a plurality of entity computers. A meta-wallet processor receives a user authentication request from a user mobile device including a meta-wallet identifier, an entity identifier, a context identifier, and at least one of user biometric data, user personal assets data, and user social media data. The meta-wall processor then determines that the user is a registered meta-wallet user, defined at least one security protocol, and is engaging in a predetermined type of activity. A security protocol is then selected, and a determination made that a combination of personally identifiable assets data and user biometric data and/or user social media data matches stored data and satisfies the security protocol. The meta-wallet processor then transmits a user authentication confirmation message to the user mobile device and/or to an entity computer.

Citations

23 Claims

1. A user authentication services system comprising:
- a meta-wallet system platform;
  
  a user mobile device configured for communication with the meta-wallet system platform; and
  
  a plurality of entity computers associated with a plurality of entities, the entity computers configured for communication with the meta-wallet system platform;
  
  wherein the meta-wallet system platform comprises a meta-wallet computer operably connected to a meta-wallet master database, the meta-wallet computer comprising a meta-wallet processor operably connected to a communication device and to a storage device storing instructions configured to cause the meta-wallet processor to;
  
  receive, via the communication device from a user mobile device, a user authentication request comprising a combination of a meta-wallet identifier, an entity identifier associated with an entity device, a context identifier determined by a meta-wallet application resident on the user mobile device based on activity data, and at least one of user biometric data, user personal assets data personally identifiable to the user, and user social media data personally identifiable to the user;
  
  determine, based on the meta-wallet identifier and the context identifier, that the user is a registered meta-wallet user, that the user defined a plurality of security protocols, and that the user is engaging in a predetermined type of activity defined by the context identifier;
  
  select a security protocol from the plurality of security protocols defined by the user based on the type of activity defined by the context identifier;
  
  determine that a combination of personally identifiable assets data and at least one of user biometric data and user social media data matches stored personal meta-wallet data associated with the registered meta-wallet user and thus satisfies the selected security protocol; and
  
  transmit, via the communication device to at least one of the user mobile device and the entity computer associated with the entity identifier, a user authentication confirmation message.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The system of claim 1, further comprising at least one of a biometric database, a social media database, a personal assets database, and other database(s) operably connected to the meta-wallet master database.
  - 3. The system of claim 1, further comprising at least one of an approved external database operably connected to the meta-wallet computer and a social media server computer operably connected to the meta-wallet computer.
  - 4. The system of claim 1, wherein the plurality of entity computers is associated with at least one of merchants, companies, and transit authorities.
  - 5. The system of claim 1, further comprising a payment network operably connected to the meta-wallet computer.
  - 6. The system of claim 1, wherein the storage device stores further instructions, subsequent to the instructions for selecting the security protocol, instructions configured to cause the processor to:
    - determine that the at least one of user biometric data, user personal assets data, and user social media data does not match stored personal meta-wallet data associated with the registered meta-wallet user and thus does not satisfy the authentication protocol; and
      
      transmit a user authentication denied message to at least one of the user device and the entity computer.
  - 7. The system of claim 1, wherein the instructions for receiving the user authentication request further comprises instructions configured to cause the meta-wallet processor to receive location data from the user mobile device indicating a current location of the user mobile device.
  - 8. The system of claim 7, further comprising instructions configured to cause the meta-wallet processor to:
    - determine, based on the location data, that the user mobile device is located in an area having an increased rate of fraudulent activity; and
      
      modify at least one meta-wallet authentication data requirement.
  - 9. The system of claim 8, further comprising instructions configured to cause the meta-wallet processor to transmit, via the communications device, a prompt to the user mobile device for the meta-wallet user to provide further user identification data to satisfy the at least one modified meta-wallet authentication data requirement.
  - 10. The system of claim 1, further comprising, prior to the instructions for receiving the user authentication request, instructions configured to cause the meta-wallet processor to:
    - receive a meta-wallet service enrollment request from a user device;
      
      determine that the user device includes at least one of a biometric sensor and a camera;
      
      prompt the user to provide at least one of biometric data and visual data;
      
      receive at least one of user biometric data and user visual data from the user device; and
      
      store the at least one of user biometric data and user visual data in a storage device.
  - 11. The system of claim 10, further comprising instructions configured to cause the meta-wallet processor to:
    - determine a meta-wallet user security protocol with regard to at least one type of activity that comprises at least one of the biometric data and the visual data; and
      
      store the meta-wallet user security protocol in the storage device.
  - 12. The system of claim 1, further comprising, prior to the instructions for receiving the user authentication request, instructions configured to cause the meta-wallet processor to:
    - receive a meta-wallet service enrollment request from a user device;
      
      prompt the user to provide at least one of biometric data, personal assets data, and social media data;
      
      receive at least one of the biometric data, the personal assets data, and the social media data of the meta-wallet user from the user device; and
      
      store the at least one of the biometric data, the personal assets data, and the social media data of the meta-wallet user in a storage device.
  - 13. The system of claim 12, further comprising instructions configured to cause the meta-wallet processor to:
    - determine a meta-wallet user security protocol with regard to at least one type of activity that comprises at least one of the biometric data, the personal assets data, and the social media data of the meta-wallet user; and
      
      store the meta-wallet user security protocol in the storage device.

14. A method for providing user authentication services at an appropriate security level comprising:
- receiving, by a meta-wallet processor of a meta-wallet computer via a communication device, a user authentication request from a user mobile device, the user authentication request comprising a combination of a meta-wallet identifier, an entity identifier associated with an entity device, a context identifier determined by a meta-wallet application resident on the user mobile device based on activity data, and at least one of user biometric data, user personal assets data personally identifiable to the user, and user social media data personally identifiable to the user;
  
  determining, by a meta-wallet processor based on the meta-wallet identifier and the context identifier, that the user is a registered meta-wallet user, that the user defined a plurality of security protocols, and that the user is engaging in a predetermined type of activity defined by the context identifier;
  
  selecting, by the meta-wallet processor, a security protocol from the plurality of security protocols defined by the user based on the type of activity defined by the context identifier;
  
  determining, by the meta-wallet processor, that a combination of personally identifiable assets data and at least one of user biometric data and user social media data matches stored personal meta-wallet data associated with the registered meta-wallet user and thus satisfies the selected security protocol; and
  
  transmitting, by the meta-wallet processor via the communication device to at least one of the user mobile device and the entity computer associated with the entity identifier, a user authentication confirmation message.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
- - 15. The method of claim 14, further comprising, subsequent to selecting the security protocol:
    - determining, by the meta-wallet processor, that the at least one of user biometric data, user personal assets data, and user social media data does not match stored personal meta-wallet data associated with the registered meta-wallet user and thus does not satisfy the authentication protocol; and
      
      transmitting, by the meta-wallet processor to at least one of the user device and the entity computer, a user authentication denied message.
  - 16. The method of claim 14, wherein receiving authentication data further comprises receiving, by the meta-wallet processor from the user mobile device, location data indicating a current location of the user mobile device.
  - 17. The method of claim 16, further comprising:
    - determining, by the meta-wallet processor based on the location data, that the user mobile device is located in an area having an increased rate of fraudulent activity; and
      
      modifying, by the meta-wallet processor, at least one meta-wallet authentication data requirement.
  - 18. The method of claim 17, further comprising, transmitting, by the meta-wallet processor, a prompt to the user mobile device for the meta-wallet user to provide further user identification data to satisfy the at least one modified meta-wallet authentication data requirement.
  - 19. The method of claim 14, further comprising, prior to receiving the user authentication request:
    - receiving, by the meta-wallet processor from a user device, a meta-wallet service enrollment request;
      
      determining, by the meta-wallet processor, that the user device includes at least one of a biometric sensor and a camera;
      
      prompting, by the meta-wallet processor, the user to provide at least one of biometric data and visual data;
      
      receiving, by the meta-wallet processor from the user device, at least one of user biometric data and user visual data; and
      
      storing the at least one of user biometric data and user visual data in a storage device.
  - 20. The method of claim 19, further comprising:
    - determining, by the meta-wallet processor, a meta-wallet user security protocol with regard to at least one type of activity that comprises at least one of the biometric data and the visual data; and
      
      storing, by the meta-wallet processor, the meta-wallet user security protocol in the storage device.
  - 21. The method of claim 14, further comprising, prior to receiving the user authentication request:
    - receiving, by a meta-wallet processor from a user device, a meta-wallet service enrollment request;
      
      prompting, by the meta-wallet processor, the user to provide at least one of biometric data, personal assets data, and social media data;
      
      receiving, by a meta-wallet processor from the user device, at least one of the biometric data, the personal assets data, and the social media data of the meta-wallet user; and
      
      storing, by the meta-wallet processor in a storage device, the at least one of the biometric data, the personal assets data, and the social media data of the meta-wallet user.
  - 22. The method of claim 21, further comprising:
    - determining, by the meta-wallet processor, a meta-wallet user security protocol with regard to at least one type of activity that comprises at least one of the biometric data, the personal assets data, and the social media data of the meta-wallet user; and
      
      storing, by the meta-wallet processor, the meta-wallet user security protocol in the storage device.

23. An apparatus for providing user authentication services at an appropriate level of security comprising:
- A meta-wallet processor;
  
  a non-transitory computer medium operably coupled to the meta-wallet processor, the non-transitory computer medium storing instructions configured to cause the processor to;
  
  receive, via the communication device from a user mobile device, a user authentication request comprising a combination of a meta-wallet identifier, an entity identifier associated with an entity device, a context identifier determined by a meta-wallet application resident on the user mobile device based on activity data, and at least one of user biometric data, user personal assets data personally identifiable to the user, and user social media data personally identifiable to the user;
  
  determine, based on the meta-wallet identifier and the context identifier, that the user is a registered meta-wallet user, that the user defined a plurality of security protocols, and that the user is engaging in a predetermined type of activity defined by the context identifier;
  
  select a security protocol from the plurality of security protocols defined by the user based on the type of activity defined by the context identifier;
  
  determine that a combination of personally identifiable assets data and at least one of user biometric data and user social media data matches stored personal meta-wallet data associated with the registered meta-wallet user and thus satisfies the selected security protocol; and
  
  transmit, via the communication device to at least one of the user mobile device and the entity computer associated with the entity identifier, a user authentication confirmation message.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mastercard International Incorporated (MasterCard Incorporated)
Original Assignee
Mastercard International Incorporated (MasterCard Incorporated)
Inventors
Mathew, Bejoy
Primary Examiner(s)
Gee, Jason K
Assistant Examiner(s)
Gao, Shu Chun

Application Number

US15/968,267
Publication Number

US 20180247033A1
Time in Patent Office

357 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/32   using biometric data, e.g. ...

G06Q 20/363   with the personal data of a...

G06Q 20/384   using social networks

G06Q 20/40145   Biometric identity checks

G06Q 50/01   Social networking

H04L 63/0861   using biometrical features,...

H04L 63/0884   by delegation of authentica...

Methods, apparatus and systems for securely authenticating a person depending on context

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Methods, apparatus and systems for securely authenticating a person depending on context

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links