User authentication relying on recurring public events for shared secrets
First Claim
1. A method for managing access to a resource by an access manager, the method comprising:
- designating, at a first time and from a first user location, a variable attribute of a recurring public event as a shared secret between the access manager and a user, wherein the recurring public event is not associated with the resource, and wherein values of the variable attribute of the recurring public event vary based on both time and location;
receiving, at a second time occurring after the first time and from a second user location different from the first user location, a shared key from the user, the shared key based on a value of the variable attribute of the recurring public event at a most recent recurrence of the recurring public event relative to the second time at a nearest location of the recurring public event relative to the second user location;
evaluating the shared key; and
granting, in response to the evaluating, the user access to the resource.
1 Assignment
0 Petitions
Accused Products
Abstract
An access manager manages access to a resource. At a first time, the access manager designates a variable attribute associated with a recurring public event as a shared secret between the access manager and a user. At a second time occurring after the first time, the access manager receives a shared key from the user. As received, the shared key is based on a value of the variable attribute associated with the recurring public event at a most recent recurrence of the recurring public event relative to the second time. The access manager evaluates the shared key. In response to the evaluation, the access manager grants or denies the user access to the resource.
23 Citations
13 Claims
-
1. A method for managing access to a resource by an access manager, the method comprising:
-
designating, at a first time and from a first user location, a variable attribute of a recurring public event as a shared secret between the access manager and a user, wherein the recurring public event is not associated with the resource, and wherein values of the variable attribute of the recurring public event vary based on both time and location; receiving, at a second time occurring after the first time and from a second user location different from the first user location, a shared key from the user, the shared key based on a value of the variable attribute of the recurring public event at a most recent recurrence of the recurring public event relative to the second time at a nearest location of the recurring public event relative to the second user location; evaluating the shared key; and granting, in response to the evaluating, the user access to the resource. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer program product for managing access to a resource by an access manager, the computer program product comprising a computer readable storage medium having program instructions embodied therewith, the program instructions executable by a computer to cause the computer to perform a method comprising:
-
designating, at a first time and from a first user location, a variable attribute of a recurring public event as a shared secret between the access manager and a user, wherein the recurring public event is not associated with the resource, and wherein values of the variable attribute of the recurring public event vary based on both time and location; receiving, at a second time occurring after the first time and from a second user location different from the first user location, a shared key from the user, the shared key based on a value of the variable attribute of the recurring public event at a most recent recurrence of the recurring public event relative to the second time at a nearest location of the recurring public event relative to the second user location; evaluating the shared key; and granting, in response to the evaluating, the user access to the resource. - View Dependent Claims (9, 10)
-
-
11. A system for managing access to a resource by an access manager, the system comprising:
-
a memory; and at least one processor circuit in communication with the memory, wherein the at least one processor circuit is configured to perform a method comprising; designating, at a first time and from a first user location, a variable attribute of a recurring public event as a shared secret between the access manager and a user, wherein the recurring public event is not associated with the resource, and wherein values of the variable attribute of the recurring public event vary based on both time and location; receiving, at a second time occurring after the first time and from a second user location different from the first user location, a shared key from the user, the shared key based on a value of the variable attribute of the recurring public event at a most recent recurrence of the recurring public event relative to the second time at a nearest location of the recurring public event relative to the second user location; evaluating the shared key; and granting, in response to the evaluating, the user access to the resource. - View Dependent Claims (12, 13)
-
Specification