Reduced user authentication input requirements
First Claim
1. A system for selecting between a plurality of authentication protocols for processing account access requests, the system comprising:
- at least one processor; and
at least one memory in communication with the at least one processor, the at least one memory having computer-readable instructions stored thereupon that, when executed by the at least one processor, cause the at least one processor to implement a communication service and an authentication service,the communication service configured to;
identify, from at least one first computing device, a particular electronic communication that includes reservation data that is associated with a user, wherein the reservation data indicates an expected time period corresponding to an expected geolocation of the user;
generate extracted reservation data by parsing the particular electronic communication, wherein the extracted reservation data includes at least the expected time period and the expected geolocation;
based on the extracted reservation data, generate a confirmation wrapper that prompts for confirmation that the user intends to be present at the expected geolocation during the expected time period;
receive, from at least one second computing device and based on the confirmation wrapper, a confirmed time period that corresponds to a confirmed geolocation of the user, wherein the confirmation wrapper is configured to cause the at least one second computing device to render a user interface element that prompts for at least one of;
modification of the expected time period to indicate the confirmed time period, ormodification of the expected geolocation to indicate the confirmed geolocation;
generate a confirmed itinerary that associates the confirmed time period and the confirmed geolocation with an account of the user; and
provide the confirmed itinerary to the authentication service; and
the authentication service configured to;
receive a request to access the account of the user; and
in response to the request, select an authentication protocol, of the plurality of authentication protocols, based on a validation of the request against the confirmed itinerary.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques disclosed herein enable a system to reduce user authentication requirements during a user'"'"'s travels by analyzing transportation data and/or event data sent to the user via a communication service, e.g. email. The system may analyze the data in order to determine where the user will be at some future time and, ultimately, to then validate access requests against such determinations to mitigate the need for heightened user authentication requirements while the user is traveling. For instance, the system may identify an airline reservation sent to the user and enable the user to confirm that she has corresponding travel plans. Once she confirms her travel plans, the system may refrain from increasing authentication requirements from Single-Factor Authentication (SFA) to Multi-Factor Authentication (MFA) input requirements for access requests that match the confirmed travel plans.
-
Citations
19 Claims
-
1. A system for selecting between a plurality of authentication protocols for processing account access requests, the system comprising:
-
at least one processor; and at least one memory in communication with the at least one processor, the at least one memory having computer-readable instructions stored thereupon that, when executed by the at least one processor, cause the at least one processor to implement a communication service and an authentication service, the communication service configured to; identify, from at least one first computing device, a particular electronic communication that includes reservation data that is associated with a user, wherein the reservation data indicates an expected time period corresponding to an expected geolocation of the user; generate extracted reservation data by parsing the particular electronic communication, wherein the extracted reservation data includes at least the expected time period and the expected geolocation; based on the extracted reservation data, generate a confirmation wrapper that prompts for confirmation that the user intends to be present at the expected geolocation during the expected time period; receive, from at least one second computing device and based on the confirmation wrapper, a confirmed time period that corresponds to a confirmed geolocation of the user, wherein the confirmation wrapper is configured to cause the at least one second computing device to render a user interface element that prompts for at least one of; modification of the expected time period to indicate the confirmed time period, or modification of the expected geolocation to indicate the confirmed geolocation; generate a confirmed itinerary that associates the confirmed time period and the confirmed geolocation with an account of the user; and provide the confirmed itinerary to the authentication service; and the authentication service configured to; receive a request to access the account of the user; and in response to the request, select an authentication protocol, of the plurality of authentication protocols, based on a validation of the request against the confirmed itinerary. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-implemented method, comprising:
-
identifying, from a first computing device, an electronic communication that includes reservation data that corresponds to a user, wherein the reservation data indicates an expected time period corresponding to an expected geolocation associated with the user; generating extracted reservation data by parsing the electronic communication wherein the extracted reservation data includes at least the expected time period and the expected geolocation; based on the extracted reservation data, generating a confirmation wrapper that prompts for a confirmation that the user intends to be present at the expected geolocation during the expected time period, wherein the confirmation wrapper is configured to cause a second computing device to render a user interface element that prompts for at least one of; modification of the expected time period to indicate the confirmed time period, or modification of the expected geolocation to indicate the confirmed geolocation; receiving, from the second computing device, input that indicates that the user intends to be at a confirmed geolocation during a confirmed time period; generating, based at least in part on the input, a confirmed itinerary to associate an account of the user with the confirmed time period and the confirmed geolocation; and communicating the confirmed itinerary to an authentication service, wherein the confirmed itinerary is configured to enable the authentication service to validate a request to access the account based on the request originating during the confirmed time period from within a trust zone corresponding to the confirmed geolocation. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer-readable storage medium having computer-executable instructions stored thereupon which, when executed by one or more processors of a computing device, cause the one or more processors of the computing device to:
-
identify, from a first computing device, an electronic communication that includes reservation data that corresponds to a user, wherein the reservation data indicates at least an expected time period and an expected geolocation associated with the user; generate extracted reservation data by parsing the electronic communication, wherein the extracted reservation data includes at least the expected time period and the expected geolocation; generate, based on the extracted reservation data, a confirmation wrapper that prompts for confirmation that the user intends to be at the expected geolocation during the expected time period, wherein the confirmation wrapper is configured to cause a second computing device to render a user interface element that prompts for at least one of; modification of the expected time period to indicate the confirmed time period, or modification of the expected geolocation to indicate the confirmed geolocation; receive, from the second computing device, a response corresponding to the confirmation wrapper, the response including a confirmed time period and a confirmed geolocation corresponding to the user; generate, based at least in part on the response, a confirmed itinerary indicating that the user will be within a trust zone associated with the confirmed geolocation during the confirmed time period, the confirmed itinerary associating an account of the user with at least the confirmed time period and the confirmed geolocation; and select a first authentication protocol, from a plurality of authentication protocols, based at least in part on the request originating during the confirmed time period from within the trust zone. - View Dependent Claims (16, 17, 18, 19)
-
Specification