APPARATUS AND METHOD FOR SYSTEM USER AUTHENTICATION

US 20150033306A1
Filed: 07/25/2013
Published: 01/29/2015
Est. Priority Date: 07/25/2013
Status: Abandoned Application

First Claim

Patent Images

1. An apparatus comprising:

an input module that receives an authentication token during a user authentication session;

a counter module that increments a count of the number of authentication tokens received during the user authentication session in response to receiving the authentication token;

a security module thatdetermines whether the authentication token matches a valid authentication token for the user;

prompts the user for another authentication token in response to determining that the authentication token does not match the valid authentication token; and

provides the user simulated access to a computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is equal to one and (ii) the authentication token matches the valid authentication token; and

an access module that provides the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is greater than one and (ii) the authentication token matches the valid authentication token,wherein at least a portion of the input module, the counter module, the security module, and the access module comprise one or more of hardware and executable code, the executable code stored on one or more computer readable storage media.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An apparatus for user authentication includes an input module that receives an authentication token, a counter module that increments a count of the number of authentication tokens received, a security module that determines whether the authentication token matches a valid authentication token for the user, prompts the user for another authentication token in response to determining that the authentication token does not match the valid authentication token, and provides the user simulated access to an electronic system in response to determining that (i) the count of the number of authentication tokens received is equal to one and (ii) the authentication token matches the valid authentication token, and an access module that provides the user authentic access to the electronic system in response to determining that (i) the count of the number of authentication tokens received is greater than one and (ii) the authentication token matches the valid authentication token.

Citations

20 Claims

1. An apparatus comprising:
- an input module that receives an authentication token during a user authentication session;
  
  a counter module that increments a count of the number of authentication tokens received during the user authentication session in response to receiving the authentication token;
  
  a security module thatdetermines whether the authentication token matches a valid authentication token for the user;
  
  prompts the user for another authentication token in response to determining that the authentication token does not match the valid authentication token; and
  
  provides the user simulated access to a computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is equal to one and (ii) the authentication token matches the valid authentication token; and
  
  an access module that provides the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is greater than one and (ii) the authentication token matches the valid authentication token,wherein at least a portion of the input module, the counter module, the security module, and the access module comprise one or more of hardware and executable code, the executable code stored on one or more computer readable storage media.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The apparatus of claim 1, whereinthe counter module further determines whether the count of the number of authentication tokens received during the user authentication session equals or exceeds a minimum number of authentication attempts required during the user authentication session;
    - the security module further provides the user simulated access to a computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than a minimum of required authentication attempts during the user authentication session and (ii) the authentication token matches the valid authentication token; and
      
      the access module further provides the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session equals or exceeds a minimum number of authentication attempts required during the authentication session and (ii) the authentication token matches the valid authentication token.
  - 3. The apparatus of claim 1, whereinthe counter module further determines whether the count of the number of authentication tokens received during the user authentication session exceeds a maximum number of authentication attempts allowed during the user authentication session;
    - the security module further prompts the user for another authentication token in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than a maximum number of allowed authentication attempts during the user authentication session and (ii) the authentication token does not match the valid authentication token; and
      
      the access module further provides the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than the maximum number of authentication attempts allowed during the authentication session and (ii) the authentication token matches the valid authentication token.
  - 4. The apparatus of claim 1, wherein the authentication token comprises one or more of a password, a personal identification number, an image, a gesture pattern, and a biometric identifier.
  - 5. The apparatus of claim 1, wherein the security module determines that the authentication token does not match the valid authentication token comprises determining that the authentication token comprises a variation of the valid authentication token.
  - 6. The apparatus of claim 1, wherein the security module determines that the authentication token does not match the valid authentication token comprises determining that the entry of the authentication token required no corrections.
  - 7. The apparatus of claim 5, wherein the variation of the valid authentication token comprises one or more oftransposing two or more elements of the valid authentication token;
    - inserting one or more elements into the valid authentication token;
      
      deleting one or more elements from the valid authentication token; and
      
      changing one or more elements of the valid authentication token.

8. A method for system user authentication comprising:
- receiving an authentication token during a user authentication session;
  
  incrementing a count of the number of authentication tokens received during the user authentication session in response to receiving the authentication token;
  
  determining whether the authentication token matches a valid authentication token for the user;
  
  prompting the user for another authentication token in response to determining that the authentication token does not match the valid authentication token;
  
  providing the user simulated access to a computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is equal to one and (ii) the authentication token matches the valid authentication token; and
  
  providing the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is greater than one and (ii) the authentication token matches the valid authentication token.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method of claim 8, further comprisingdetermining whether the count of the number of authentication tokens received during the user authentication session equals or exceeds a minimum number of authentication attempts required during the user authentication session;
    - providing the user simulated access to a computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than a minimum number of required authentication attempts during the user authentication session and (ii) the authentication token matches the valid authentication token; and
      
      providing the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session equals or exceeds the minimum number of authentication attempts required during the authentication session and (ii) the authentication token matches the valid authentication token.
  - 10. The method of claim 8, further comprisingdetermining whether the count of the number of authentication tokens received during the user authentication session exceeds a maximum number of authentication attempts allowed during the user authentication session;
    - prompting the user for another authentication token in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than a maximum number of allowed authentication attempts during the user authentication session and (ii) the authentication token does not match the valid authentication token; and
      
      providing the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than the maximum number of authentication attempts allowed during the authentication session and (ii) the authentication token matches the valid authentication token.
  - 11. The method of claim 8, wherein the authentication token comprises one or more of a password, a personal identification number, an image, a gesture pattern, and a biometric identifier.
  - 12. The method of claim 8, wherein determining that the authentication token does not match the valid authentication token comprises determining that the authentication token comprises a variation of the valid authentication token.
  - 13. The method of claim 8, wherein determining that the authentication token does not match the valid authentication token comprises determining that the entry of the authentication token required no corrections.
  - 14. The method of claim 12, wherein the variation of the valid authentication token comprises one or more oftransposing two or more elements of the valid authentication token;
    - inserting one or more elements into the valid authentication token;
      
      deleting one or more elements from the valid authentication token; and
      
      changing one or more elements of the valid authentication token.

15. A computer program product for system user authentication, the computer program product comprising a computer readable storage medium having program code embodied therein, the program code readable/executable by a processor to:
- receive an authentication token during a user authentication session;
  
  increment a count of the number of authentication tokens received during the user authentication session in response to receiving the authentication token;
  
  determine whether the authentication token matches a valid authentication token for the user;
  
  prompt the user for another authentication token in response to determining that the authentication token does not match the valid authentication token;
  
  provide the user simulated access to a computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is equal to one and (ii) the authentication token matches the valid authentication token; and
  
  provide the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is greater than one and (ii) the authentication token matches the valid authentication token.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The computer program product of claim 15, the program code further configured todetermine whether the count of the number of authentication tokens received during the user authentication session equals or exceeds a minimum number of authentication attempts required during the user authentication session;
    - provide the user simulated access to a computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than a minimum number of required authentication attempts during the user authentication session and (ii) the authentication token matches the valid authentication token; and
      
      provide the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session equals or exceeds the minimum number of authentication attempts required during the authentication session and (ii) the authentication token matches the valid authentication token.
  - 17. The computer program product of claim 15, the program code further configured todetermine whether the count of the number of authentication tokens received during the user authentication session exceeds a maximum number of authentication attempts allowed during the user authentication session;
    - prompt the user for another authentication token in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than a maximum number of allowed authentication attempts during the user authentication session and (ii) the authentication token does not match the valid authentication token; and
      
      provide the user authentic access to the computing or electronic system in response to determining that (i) the count of the number of authentication tokens received during the user authentication session is less than the maximum number of authentication attempts allowed during the authentication session and (ii) the authentication token matches the valid authentication token.
  - 18. The computer program product of claim 15, wherein the authentication token comprises one or more of a password, a personal identification number, an image, a gesture pattern, and a biometric identifier.
  - 19. The computer program product of claim 15, wherein determining that the authentication token does not match the valid authentication token comprises determining that the authentication token comprises a variation of the valid authentication token.
  - 20. The computer program product of claim 19, wherein the variation of the valid authentication token comprises one or more oftransposing two or more elements of the valid authentication token;
    - inserting one or more elements into the valid authentication token;
      
      deleting one or more elements from the valid authentication token; and
      
      changing one or more elements of the valid authentication token.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
GlobalFoundries, Inc.
Original Assignee
International Business Machines Corporation
Inventors
Dickenson, Gary I., Hutzler, Richard

Application Number

US13/951,216
Publication Number

US 20150033306A1
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

G06F 21/31   User authentication

G06F 2221/2127   Bluffing

H04L 63/0807   using tickets, e.g. Kerbero...

APPARATUS AND METHOD FOR SYSTEM USER AUTHENTICATION

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

APPARATUS AND METHOD FOR SYSTEM USER AUTHENTICATION

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links