On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
First Claim
Patent Images
1. A non-transitory machine-readable medium carrying one or more sequences of instructions which, when executed by one or more processors, cause the one or more processors to:
- receiving, with one or more hardware processors, a request to access an on-demand service from a requestor associated with one of a plurality of entities of the on-demand service;
determining, with the one or more hardware processors, that the request to access the on-demand service is from a source providing a risk of access, the determination being based at least in part on stored information associated with at least one of a plurality of users or the one of the plurality of entities, wherein the request has an associated one-time use token that cannot be reused and expires after a predetermined amount of time; and
managing, with the one or more hardware processors, the risk of access to the on-demand service by the requestor as a condition of permitting the requestor to access the on-demand service by providing an additional authentication sequence selected based on whether a requestor device is known, wherein the additional authentication sequence comprises completing additional subsequent authentication communications with the requestor device.
1 Assignment
0 Petitions
Accused Products
Abstract
In accordance with embodiments, there are provided mechanisms and methods for managing a risk of access to an on-demand service as a condition of permitting access to the on-demand service. These mechanisms and methods for providing such management can enable embodiments to help prohibit an unauthorized user from accessing an account of an authorized user when the authorized user inadvertently loses login information. The ability of embodiments to provide such management may lead to an improved security feature for accessing on-demand services.
-
Citations
20 Claims
-
1. A non-transitory machine-readable medium carrying one or more sequences of instructions which, when executed by one or more processors, cause the one or more processors to:
-
receiving, with one or more hardware processors, a request to access an on-demand service from a requestor associated with one of a plurality of entities of the on-demand service; determining, with the one or more hardware processors, that the request to access the on-demand service is from a source providing a risk of access, the determination being based at least in part on stored information associated with at least one of a plurality of users or the one of the plurality of entities, wherein the request has an associated one-time use token that cannot be reused and expires after a predetermined amount of time; and managing, with the one or more hardware processors, the risk of access to the on-demand service by the requestor as a condition of permitting the requestor to access the on-demand service by providing an additional authentication sequence selected based on whether a requestor device is known, wherein the additional authentication sequence comprises completing additional subsequent authentication communications with the requestor device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method, comprising:
-
receiving, with one or more hardware processors, a request to access an on-demand service from a requestor associated with one of a plurality of entities of the on-demand service; determining, with the one or more hardware processors, that the request to access the on-demand service is from a source providing a risk of access, the determination being based at least in part on stored information associated with at least one of a plurality of users or the one of the plurality of entities, wherein the request has an associated one-time use token that cannot be reused and expires after a predetermined amount of time; and managing, with the one or more hardware processors, the risk of access to the on-demand service by the requestor as a condition of permitting the requestor to access the on-demand service by providing an additional authentication sequence selected based on whether a requestor device is known, wherein the additional authentication sequence comprises completing additional subsequent authentication communications with the requestor device. - View Dependent Claims (13, 14, 15, 16)
-
-
12. An apparatus, comprising:
a processor; and one or more stored sequences of instructions which, when executed by the processor, cause the processor to; receiving, with one or more hardware processors, a request to access an on-demand service from a requestor associated with one of a plurality of entities of the on-demand service; determining, with the one or more hardware processors, that the request to access the on-demand service is from a source providing a risk of access, the determination being based at least in part on stored information associated with at least one of a plurality of users or the one of the plurality of entities, wherein the request has an associated one-time use token that cannot be reused and expires after a predetermined amount of time; and managing, with the one or more hardware processors, the risk of access to the on-demand service by the requestor as a condition of permitting the requestor to access the on-demand service by providing an additional authentication sequence selected based on whether a requestor device is known, wherein the additional authentication sequence comprises completing additional subsequent authentication communications with the requestor device. - View Dependent Claims (17, 18, 19, 20)
Specification