System and method for applying digital fingerprints in multi-factor authentication
First Claim
Patent Images
1. A method for multi-factor authentication with a first client operating on a first client device, comprising:
- receiving a login request, the login request associated with a first user account, from the first client;
in response to receiving the login request, initiating an authentication transaction;
generating a first client digital fingerprint from a set of first client properties collected from the first client;
identifying a second client, the second client operating on a second client device, from data associated with the first user account;
analyzing the first client digital fingerprint based on a first set of stored digital fingerprints, wherein analyzing the first client digital fingerprint comprises;
generating a machine learning model trained using at least the first set of stored digital fingerprints as a training set, andevaluating the first client digital fingerprint using the machine learning model;
generating a concern metric based on the analyzing of the first client digital fingerprint;
in response to the concern metric exceeding a threshold concern metric, providing to the second client an authentication request notifying a user that the login request from the first client may have originated from an unauthorized source, wherein the authentication request to the second client comprises
1) the concern metric comprising a probability value that the login request by the first client is unauthorized, and
2) one or more suggested authorization options, wherein content of the suggested authorization options is determined based on degree of the concern metric;
receiving a user response to the authentication request, wherein the user response comprises one of an authorization or denial of the login request;
updating the training set to include the generated first client digital fingerprint and a label based on the received user response; and
updating the machine learning model using the updated training set.
3 Assignments
0 Petitions
Accused Products
Abstract
A method for multi-factor authentication with a first client includes receiving a request associated with the first client, initiating an authentication transaction, generating a digital fingerprint based on a set of client properties collected in association with the first client, identifying a second client from data associated with the authentication transaction, analyzing a digital fingerprint based on a set of stored digital fingerprints; generating a concern metric based on the analysis; and notifying an entity that the login request may have originated from an unauthorized source.
-
Citations
15 Claims
-
1. A method for multi-factor authentication with a first client operating on a first client device, comprising:
-
receiving a login request, the login request associated with a first user account, from the first client; in response to receiving the login request, initiating an authentication transaction; generating a first client digital fingerprint from a set of first client properties collected from the first client; identifying a second client, the second client operating on a second client device, from data associated with the first user account; analyzing the first client digital fingerprint based on a first set of stored digital fingerprints, wherein analyzing the first client digital fingerprint comprises; generating a machine learning model trained using at least the first set of stored digital fingerprints as a training set, and evaluating the first client digital fingerprint using the machine learning model; generating a concern metric based on the analyzing of the first client digital fingerprint; in response to the concern metric exceeding a threshold concern metric, providing to the second client an authentication request notifying a user that the login request from the first client may have originated from an unauthorized source, wherein the authentication request to the second client comprises
1) the concern metric comprising a probability value that the login request by the first client is unauthorized, and
2) one or more suggested authorization options, wherein content of the suggested authorization options is determined based on degree of the concern metric;receiving a user response to the authentication request, wherein the user response comprises one of an authorization or denial of the login request; updating the training set to include the generated first client digital fingerprint and a label based on the received user response; and updating the machine learning model using the updated training set. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for multi-factor authentication with a first client operating on a first client device, comprising:
-
receiving a login request, the login request associated with a first user account, from the first client; in response to receiving the login request, initiating an authentication transaction; identifying a second client, the second client operating on a second client device, from data associated with the first user account; generating a first client digital fingerprint from a set of first client properties collected from the first client; generating a second client digital fingerprint from a set of second client properties collected from the second client; generating a machine learning model trained using the set of first client properties and the set of second client properties as a training set; comparing, using the machine learning model, the first client digital fingerprint to the second client digital fingerprint; generating a concern metric based on the comparing of the first client digital fingerprint and the second client digital fingerprint; in response to the concern metric exceeding a threshold concern metric, providing to the second client an authentication request notifying a user that the login request from the first client may have originated from an unauthorized source, wherein the authentication request to the second client comprises
1) a display of the concern metric comprising a probability value that the login request by the first client is unauthorized and
2) one or more suggested authorization options, wherein content of the suggested authorization options is determined based on degree of the concern metric;receiving a user response to the authentication request, wherein the user response comprises one of an authorization or denial of the login request; updating the training set to include the generated first client digital fingerprint and a label based on the received user response; and updating the machine learning model using the updated training set. - View Dependent Claims (14, 15)
-
Specification