Automated authorization response techniques

US 10,701,081 B2
Filed: 03/01/2019
Issued: 06/30/2020
Est. Priority Date: 10/25/2011
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computer-readable medium having computer instructions stored thereon that are capable of causing a first computing device to perform operations comprising:

processing a permission request received from a server system as an authentication factor in a multi-factor authentication procedure initiated by a second computing device;

determining that one or more automation criteria are met based on current values of one or more parameters determined by the first computing device; and

in response to the determining, automatically granting or denying the permission request without receiving user input indicating whether to grant or deny the permission request.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. A mobile device may allow a user to automate responses to future permission requests for multi-factor authentication procedures. The mobile device may automatically respond to subsequent permission requests based on one or more automation criteria. Authorized actions may include login, transaction approval, physical access, vehicle ignition, account recovery, etc. The automation criteria may include location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, image characteristics, etc. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.

Citations

20 Claims

1. A non-transitory computer-readable medium having computer instructions stored thereon that are capable of causing a first computing device to perform operations comprising:
- processing a permission request received from a server system as an authentication factor in a multi-factor authentication procedure initiated by a second computing device;
  
  determining that one or more automation criteria are met based on current values of one or more parameters determined by the first computing device; and
  
  in response to the determining, automatically granting or denying the permission request without receiving user input indicating whether to grant or deny the permission request.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The non-transitory computer-readable medium of claim 1, wherein the one or more automation criteria include a plurality of automation criteria and the determining that one or more automation criteria are met includes determining that a particular combination of automation criteria is satisfied.
  - 3. The non-transitory computer-readable medium of claim 2, wherein the determining is based on weighting factors assigned to ones of the automation criteria.
  - 4. The non-transitory computer-readable medium of claim 1, wherein the one or more parameters include one or more of:
    - location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, or image characteristics.
  - 5. The non-transitory computer-readable medium of claim 1, wherein the one or more parameters include:
    - location, wireless connectivity, and biometrics.
  - 6. The non-transitory computer-readable medium of claim 1, wherein the operations further comprise:
    - in response to receiving a subsequent permission request for a multi-factor authentication procedure initiated by the second computing device, determining to require user input prior to responding to the subsequent permission request based on determining that one or more automation criteria are not met based on current values of one or more parameters determined by the first computing device.
  - 7. The non-transitory computer-readable medium of claim 1, wherein the operations further comprise:
    - in response a change in at least one of the one or more automation criteria, ending a session associated with the multi-factor authentication procedure.
  - 8. The non-transitory computer-readable medium of claim 1, wherein the one or more parameters include one or more visual characteristics in one or more images captured by the first computing device.
  - 9. The non-transitory computer-readable medium of claim 1, wherein the operations further comprise:
    - prior to receiving the permission request, in response to user input responsive to a displayed option, storing an indication that responses by the first computing device granting or denying permission requests are to be automated based on the one or more automation criteria.

10. An apparatus, comprising:
- one or more processors;
  
  one or more memories having program instructions stored thereon that are capable of execution by the one or more processors to cause the apparatus to;
  
  process a permission request received from a server system as an authentication factor in a multi-factor authentication procedure initiated by another computing device;
  
  determine that one or more automation criteria are met based on current values of one or more parameters determined by the apparatus; and
  
  in response to the determination, automatically grant or deny the permission request without receiving user input indicating whether to grant or deny the permission request.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The apparatus of claim 10, wherein the apparatus is configured to generate hardware identifier information based on components included in the apparatus and transmit the hardware identifier information in conjunction with the automatic grant or denial of the permission request.
  - 12. The apparatus of claim 10, wherein the one or more automation criteria include a plurality of automation criteria and the determination that one or more automation criteria are met includes a determination that a particular combination of automation criteria is satisfied.
  - 13. The apparatus of claim 12, wherein the determining is based on weighting factors assigned to ones of the automation criteria.
  - 14. The apparatus of claim 10, wherein the one or more parameters include:
    - location and wireless connectivity.
  - 15. The apparatus of claim 10, wherein the apparatus is further configured to:
    - in response a change in at least one of the one or more automation criteria, end a session associated with the multi-factor authentication procedure.
  - 16. The apparatus of claim 10, wherein the one or more parameters include one or more visual characteristics in one or more images captured by the apparatus.

17. A method, comprising:
- receiving, by a server computing system from a first device, a first request associated with a user account;
  
  sending, by the server computing system to a second device, a permission request as an authentication factor in a multi-factor authentication procedure for the first request;
  
  receiving, by the server computing system, an automatic grant or denial of the permission request, wherein the automatic grant or denial is generated by the second device, based on a determination that one or more automation criteria are met based on current values of one or more parameters determined by the second device, without receiving user input indicating whether to grant or deny the permission request; and
  
  generating a response to the first request based on the automatic grant or denial.
- View Dependent Claims (18, 19, 20)
- - 18. The method of claim 17, wherein the one or more parameters include one or more of:
    - location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, or image characteristics.
  - 19. The method of claim 17, further comprising:
    - in response a change in at least one of the one or more automation criteria indicated by the second device, ending a session associated with the multi-factor authentication procedure.
  - 20. The method of claim 17, wherein the one or more parameters include one or more visual characteristics in one or more images captured by the second device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Salesforce.com, Inc.
Original Assignee
Salesforce.com, Inc.
Inventors
Grim, Evan Tyler, Alexander, Josh
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
Gyorfi, Thomas A

Application Number

US16/290,678
Publication Number

US 20190199734A1
Time in Patent Office

487 Days
Field of Search
US Class Current
CPC Class Codes

H04L 2463/082   applying multi-factor authe...

H04L 63/08   for authentication of entit...

H04L 63/0861   using biometrical features,...

H04L 63/107   wherein the security polici...

H04W 12/06   Authentication

H04W 12/61   Time-dependent

H04W 12/68   Gesture-dependent or behavi...

H04W 4/80   Services using short range ...

Automated authorization response techniques

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Automated authorization response techniques

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links