Method and system for dynamic authentication and authorization

US 20060059340A1
Filed: 09/10/2004
Published: 03/16/2006
Est. Priority Date: 09/10/2004
Status: Abandoned Application

First Claim

Patent Images

1. A method for dynamically authenticating and authorizing a user, comprising:

receiving a request signal (104) from a user into a service unit (97);

the service unit extracting identification information (101) from the request signal;

the service unit evaluating the identification information and identifying potential users (X, Y, Z);

the service unit assigning a probability value (Px, Py, Pz) to each identified potential user (X, Y, Z) to indicate a likelihood of correct identification of the potential users (X, Y, Z);

the service unit providing sets of rules (RSx, RSy, RSz) for the users (X, Y, Z);

evaluating probability requirements (PrRx, PrRy, PrRz) of each rule in the rule sets (RSx, RSy, RSz); and

applying the rules in rule sets (RSx, RSy, RSz) for each (PrRx, PrRy, PrRz) less than or equal to (Px, Py, Pz).

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The method is for dynamically authenticating and authorizing a user. A request signal (104) is received from a user into a service unit (97). The service unit extracts identification information (101) from the request signal. The service unit evaluates the identification information and identifies potential users (X, Y, Z). The service unit assigns a probability value (Px, Py, Pz) to each identified potential user (X, Y, Z) to indicate a likelihood of correct identification of the potential users (X, Y, Z). The service unit provides rules sets (RSx, RSy, RSz) for the users (X, Y, Z). The probability requirements (PrRx, PrRy, PrRz) of each rule in the rules sets (RSx, RSy, RSz) are evaluated. The rules are applied for each (PrRx, PrRy, PrRz) less than or equal to (Px, Py, Pz).

37 Citations

View as Search Results

10 Claims

1. A method for dynamically authenticating and authorizing a user, comprising:
- receiving a request signal (104) from a user into a service unit (97);
  
  the service unit extracting identification information (101) from the request signal;
  
  the service unit evaluating the identification information and identifying potential users (X, Y, Z);
  
  the service unit assigning a probability value (Px, Py, Pz) to each identified potential user (X, Y, Z) to indicate a likelihood of correct identification of the potential users (X, Y, Z);
  
  the service unit providing sets of rules (RSx, RSy, RSz) for the users (X, Y, Z);
  
  evaluating probability requirements (PrRx, PrRy, PrRz) of each rule in the rule sets (RSx, RSy, RSz); and
  
  applying the rules in rule sets (RSx, RSy, RSz) for each (PrRx, PrRy, PrRz) less than or equal to (Px, Py, Pz).
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method according to claim 1 wherein the method further comprises using the initially identified potential users to extend an identification procedure with user adapted identification procedures.
  - 3. The method according to claim 1 wherein rules are applied to a user (102) in a defined order depending on priority of valid rules.
  - 4. The method according to claim 1 wherein the method further comprises providing an access control unit (106) and a login directory service unit (110) and the unit (106) sending a rule request signal (108) to the unit (110).
  - 5. The method according to claim 4 wherein the method further comprises the unit (106) intercepting a user'"'"'s request signal (150) when the unit (106) has no matching rules for a requested resource (152).
  - 6. The method according to claim 4 wherein the method further comprises the unit (106) extracting information from the request signal (104) comprising userHOST (105), userIP (107) and userMAC (109), userTIME (113) and userPLACE (111).
  - 7. The method according to claim 4 wherein the method further comprises the unit (106) redirecting the user to the unit (110).
  - 8. The method according to claim 4 wherein the method further comprises the unit (110) providing rules for the user (102) to gain access to the resource (152).
  - 9. The method according to claim 4 wherein the method further comprises the unit (106) requesting updates.
  - 10. The method according to claim 4 wherein the method further comprises the unit (106) extracting userPLACE (111) and userTIME (113) from the interaction with the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Fredrik Lindgren, Jan Paul Eldenmalm
Original Assignee
Fredrik Lindgren, Jan Paul Eldenmalm
Inventors
Lindgren, Fredrik, Eldenmalm, Jan Paul

Application Number

US10/937,371
Publication Number

US 20060059340A1
Time in Patent Office

Days
Field of Search
US Class Current

713/168
CPC Class Codes

G06F 21/31 User authentication

G06F 2221/2111 Location-sensitive, e.g. ge...

Method and system for dynamic authentication and authorization

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

37 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for dynamic authentication and authorization

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

37 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links