×

Managing deviations between expected and normal operations of authentication systems

  • US 10,284,601 B1
  • Filed: 05/17/2017
  • Issued: 05/07/2019
  • Est. Priority Date: 03/31/2014
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method, comprising:

  • generating, by processing circuitry, a first distribution of risk scores expected to be produced by an authentication system in connection with a first set of one or more requests to access a computerized resource, wherein generating the first distribution comprises utilizing a normalization process to produce the expected risk scores by normalizing preliminary expected risk scores in connection with the first set of one or more requests to a scale of risk scores such that a pre-defined amount of the first set of one or more requests have expected risk scores in a range of risk scores at an end of the scale indicating high risk;

    generating, by processing circuitry, a second distribution relating to risk scores actually produced by the authentication system in connection with a second set of one or more requests to access the computerized resource, wherein generating the second distribution comprises utilizing a normalization process to produce the actual risk scores by normalizing preliminary actual risk scores in connection with the second set of one or more requests to the scale of risk scores;

    performing, by processing circuitry, a comparison between the first and the second distributions, wherein performing the comparison comprises utilizing the Kolmogorov-Smirnov distance to detect a deviation between the expected and the actual risk scores in the range of risk scores at the end of the scale indicating high risk;

    performing, by processing circuitry, a normalization process failover to a new normalization process after detection of the deviation, wherein the new normalization process is configured to reduce the deviation between the expected and the actual risk scores in the range of risk scores at the end of the scale indicating high risk, wherein the new normalization process is based on data related to a third set of one or more requests to access the computerized resource that are received after the detection of the deviation;

    receiving, by processing circuitry, a fourth set of one or more requests to access the computerized resource after the detection of the deviation,determining, by processing circuitry, actual risk scores in connection with the fourth set of one or more requests by normalizing preliminary actual risk scores in connection with the fourth set of one or more requests to the scale of risk scores in accordance with the new normalization process; and

    utilizing, by processing circuitry, the actual risk scores in connection with the fourth set of one or more requests to control access to the computerized resource.

View all claims
  • 6 Assignments
Timeline View
Assignment View
    ×
    ×