DYNAMIC TRUST MODEL FOR AUTHENTICATING A USER
First Claim
Patent Images
1. A method for authenticating a user, comprising:
- determining a trust level for the user, wherein the trust level is a function of elapsed time since the user previously provided authentication information;
calculating a transaction risk level based on a type of user transaction performed by the user; and
requesting additional authentication information from the user based on the trust level and the transaction risk level.
1 Assignment
0 Petitions
Accused Products
Abstract
A system that that dynamically authenticates one or more users is described. During operation, the computer system determines a trust level for a user, where the trust level is a function of elapsed time since the user previously provided authentication information. Next, the computer system calculates a transaction risk level based on a type of user transaction performed by the user. Then, the computer system requests additional authentication information from the user based on the trust level and the transaction risk level.
-
Citations
20 Claims
-
1. A method for authenticating a user, comprising:
-
determining a trust level for the user, wherein the trust level is a function of elapsed time since the user previously provided authentication information; calculating a transaction risk level based on a type of user transaction performed by the user; and requesting additional authentication information from the user based on the trust level and the transaction risk level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer program product for use in conjunction with a computer system, the computer program product comprising a computer-readable storage medium and a computer-program mechanism embedded therein for configuring the computer system, the computer-program mechanism including:
-
instructions for determining a trust level for a user, wherein the trust level is a function of elapsed time since the user previously provided authentication information; instructions for calculating a transaction risk level based on a type of user transaction performed by the user; and instructions for requesting additional authentication information from the user based on the comparison of the trust level and the transaction risk level.
-
-
20. A computer system, comprising:
-
a processor; memory; a program module, wherein the program module is stored in the memory and configured to be executed by the processor, the program module including; instructions for determining a trust level for a user, wherein the trust level is a function of elapsed time since the user previously provided authentication information; instructions for calculating a transaction risk level based on a type of user transaction performed by the user; and instructions for requesting additional authentication information from the user based on the comparison of the trust level and the transaction risk level.
-
Specification