DETERMINING USER AUTHENTICATION REQUIREMENTS BASED ON THE CURRENT LOCATION OF THE USER IN COMPARISON TO A USER'S TRAVEL ROUTE

US 20150227926A1
Filed: 02/07/2014
Published: 08/13/2015
Est. Priority Date: 02/07/2014
Status: Abandoned Application

First Claim

Patent Images

1. An apparatus for determining user authentication requirements, the apparatus comprising:

a mobile communication device including a computing platform including a memory, a processor in communication with the memory and a location-determining mechanism in communication with the processor;

an authentication requirements module stored in the memory, executable by the processor and configured to,receive a request for a user to access a service requiring authentication,in response to receiving the request, determine (1) a current physical location of the user and a current time, and (2) that the user is associated with a predetermined travel route having location boundaries and a time period, wherein the current physical location of the user is determined by implementing the location-determining mechanism,determine proximity in distance and time of the current physical location of the user and current time to the predetermined travel route associated with the user, anddetermine, from amongst a plurality of levels of authentication, a level of authentication required for the user to access the service, wherein the level is based on the proximity in distance and time of the current physical location of the user to the predetermined travel route,wherein the plurality of levels of authentication include a no-authentication-required level that is defined by the user being physically located within predetermined boundaries of the travel route and the current time being within a predetermined time period for the user to be travelling on the travel route, and wherein the no-authentication-required level is configured to allow the user to access the service absent authentication, wherein the user is provided access to the service in response to the user meeting authentication requirements associated with the determined level of authentication; and

a service access module stored in the memory, executable by the processor and configured to determine a level of access available to the user of the service upon the user meeting the authentication requirements associated with the determined level of authentication, wherein the level of access defines functionality available to the user within the service based on the determined level of authentication and is granted to the user in response to the user meeting the authentication requirements, wherein functionality is defined as transactions that the user is authorized to conduct and information that the user is authorized to access.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems, apparatus, methods, and computer program products are provided for determining a user'"'"'s authentication requirements/credentials for a specific mobile network access session based on the current location of the user in comparison to a known typical travel route of the user. In this regard, if the user is located within the boundaries of the travel route during the time period when the user is typically travelling on the route, less, or in some instances no, authentication requirements are needed. Moreover, as the user deviates from the travel route in terms of distance and/or time the greater the authentication requirements/credentials may be required. Once the deviation is considered to significant in terms of distance and/or time full authentication requirements may be required.

44 Citations

View as Search Results

24 Claims

1. An apparatus for determining user authentication requirements, the apparatus comprising:
- a mobile communication device including a computing platform including a memory, a processor in communication with the memory and a location-determining mechanism in communication with the processor;
  
  an authentication requirements module stored in the memory, executable by the processor and configured to,receive a request for a user to access a service requiring authentication,in response to receiving the request, determine (1) a current physical location of the user and a current time, and (2) that the user is associated with a predetermined travel route having location boundaries and a time period, wherein the current physical location of the user is determined by implementing the location-determining mechanism,determine proximity in distance and time of the current physical location of the user and current time to the predetermined travel route associated with the user, anddetermine, from amongst a plurality of levels of authentication, a level of authentication required for the user to access the service, wherein the level is based on the proximity in distance and time of the current physical location of the user to the predetermined travel route,wherein the plurality of levels of authentication include a no-authentication-required level that is defined by the user being physically located within predetermined boundaries of the travel route and the current time being within a predetermined time period for the user to be travelling on the travel route, and wherein the no-authentication-required level is configured to allow the user to access the service absent authentication, wherein the user is provided access to the service in response to the user meeting authentication requirements associated with the determined level of authentication; and
  
  a service access module stored in the memory, executable by the processor and configured to determine a level of access available to the user of the service upon the user meeting the authentication requirements associated with the determined level of authentication, wherein the level of access defines functionality available to the user within the service based on the determined level of authentication and is granted to the user in response to the user meeting the authentication requirements, wherein functionality is defined as transactions that the user is authorized to conduct and information that the user is authorized to access.
- View Dependent Claims (3, 5, 6, 7)
- - 3. The apparatus of claim 1, wherein the authentication requirements module is further configured to determine the level of authentication required based on the proximity in distance and time of the current physical location of the user to the predetermined travel route, wherein each level of authentication is defined by at least one of a predetermined distance threshold or a predetermined time threshold.
  - 5. The apparatus of claim 1, wherein the authentication requirements module is further configured to determine the level of authentication, wherein the plurality of levels include a partial authentication level based on one of either (a) the user currently being physically located within predetermined boundaries of the travel route, or (b) the user currently being physically located outside of the travel route by a predetermined distance and the current time being within a predetermined time period for the user to be travelling on the travel route, wherein the partial authentication requires the user to provide less than full authentication credentials to access the service.
  - 6. The apparatus of claim 1, wherein the authentication requirements module is further configured to determine the level of authentication, wherein the plurality of levels include a full authentication level based on one of (1) the user currently being physically located outside of the travel route by a predetermined distance, or (2) the current time being outside of a predetermined time period for the user to be travelling on the travel route.
  - 7. The apparatus of claim 1, wherein the authentication requirements module is further configured to determine a point along an authentication continuum based on the proximity in distance and time of the current physical location of the user and the current time to the predetermined travel route, wherein the point along the authentication continuum corresponds to predetermined authentication requirements.

2. (canceled)

4. (canceled)

8. (canceled)

9. A method for determining user authentication requirements, the method comprising:
- receiving, by a computing device, a request for a user to access a service requiring authentication;
  
  in response to receiving the request, determining, by a computing device processor, (1) a current physical location of the user and a current time and (2) that the user is associated with a predetermined travel route having location boundaries and a time period, wherein the current physical location of the user is determined by a location-determining mechanism in a mobile communication device in possession of the user;
  
  determining, by a computing device processor, proximity in distance and time of the current physical location of the user and current time to the predetermined travel route;
  
  determining, by a computing device process, from amongst a plurality of levels of authentication, a level of authentication required for the user to access the service, wherein the level is based on the proximity in distance and time of the current physical location of the user to the predetermined travel route,wherein the plurality of levels of authentication include a no-authentication-required level that is defined by the user being physically located within predetermined boundaries of the travel route and the current time being within a predetermined time period for the user to be travelling on the travel route, and wherein the no-authentication-required level is configured to allow the user to access the service absent authentication,wherein the user is provided access to the service in response to the user meeting authentication requirements associated with the determined level of authentication; and
  
  determine, by a computing device processor, a level of access available to the user of the service upon the user meeting the authentication requirements associated with the determined level of authentication, wherein the level of access defines functionality available to the user within the service based on the determined level of authentication and is granted to the user in response to the user meeting the authentication requirements, wherein functionality is defined as transactions that the user is authorized to conduct and information that the user is authorized to access.
- View Dependent Claims (11, 13, 14, 15)
- - 11. The method of claim 9, wherein determining the level of authentication further comprises determining, by a computing device processor, the level of authentication required based on the proximity in distance and time of the current physical location of the user and the current time to the predetermined travel route, wherein each level of authentication is defined by at least one of a predetermined distance threshold or a predetermined time threshold.
  - 13. The method of claim 9, wherein the plurality of levels of authentication further include a partial authentication level based on one of either (a) the user currently being physically located within predetermined boundaries of the travel route or (b) the user currently being physically located outside of the travel route by a predetermined distance and the current time being within a predetermined time period for the user to be travelling on the travel route, wherein the partial authentication requires the user to provide less than full authentication credentials to access the service.
  - 14. The method of claim 9, wherein the plurality of levels of authentication further include a full authentication level based on one of (1) the user currently being physically located outside of the travel route by a predetermined distance, or (2) the current time being outside of a predetermined time period for the user to be travelling on the travel route.
  - 15. The method of claim 9, wherein determining the authentication requirements further comprises determining, by the computing device processor, a point along an authentication continuum based on the proximity in distance and time of the current physical location of the user and the current time to the predetermined travel route, wherein the point along the authentication continuum corresponds to predetermined authentication requirements.

10. (canceled)

12. (canceled)

16. (canceled)

17. A computer program product comprising:
- a non-transitory computer-readable medium comprising;
  
  a first set of codes for causing a computer to receive a request for a user to access a service requiring authentication;
  
  a second set of codes for causing a computer to, in response to receiving the request, determine (1) a current physical location of the user and a current time and (2) that the user is associated with a predetermined travel route having location boundaries and a time period, wherein the current physical location of the user is determined by a location-determining mechanism in a mobile communication device in possession of the user;
  
  a third set of codes for causing a computer to determine proximity in distance and time of the current physical location of the user and current time to a predetermined travel route;
  
  a fourth set of codes for causing a computer to determine, from amongst a plurality of levels of authentication, a level of authentication required for the user to access the service, wherein the level is based on the proximity in distance and time of the current physical location of the user to the predetermined travel route,wherein the plurality of levels of authentication include a no-authentication-required level that is defined by the user being physically located within predetermined boundaries of the travel route and the current time being within a predetermined time period for the user to be travelling on the travel route, and wherein the no-authentication-required level is configured to allow the user to access the service absent authentication, andwherein the user is provided access to the service in response to the user meeting authentication requirements associated with the determined level of authentication; and
  
  a fifth set of codes for causing a computer to determine, a level of access available to the user of the service upon the user meeting the authentication requirements associated with the determined level of authentication, wherein the level of access defines functionality available to the user within the service based on the determined level of authentication and is granted to the user in response to the user meeting the authentication requirements, wherein functionality is defined as transactions that the user is authorized to conduct and information that the user is authorized to access.
- View Dependent Claims (19, 21, 22, 23)
- - 19. The computer program product of claim 17, wherein the fourth set of codes is further configured to cause the computer to determine the level of authentication required based on the proximity in distance and time of the current physical location of the user and the current time to the predetermined travel route, wherein each level of authentication is defined by at least one of a predetermined distance threshold or a predetermined time threshold.
  - 21. The computer program product of claim 17, wherein the fourth set of codes is further configured to cause the computer to determine the level of authentication, wherein the plurality of levels include a partial authentication level based on one of either (a) the user currently being physically located within predetermined boundaries of the travel route, or (b) the user currently being physically located outside of the travel route by a predetermined distance and the current time being within a predetermined time period for the user to be travelling on the travel route, wherein the partial authentication requires the user to provide less than full authentication credentials to access the service.
  - 22. The computer program product of claim 17, wherein the fourth set of codes is further configured to cause the computer to determine the level of authentication, wherein the plurality of levels include a full authentication level based on one of (1) the user currently being physically located outside of the travel route by a predetermined distance, or (2) the current time being outside of a predetermined time period for the user to be travelling on the travel route.
  - 23. The computer program product of claim 17, wherein the fourth set of codes is further configured to cause the computer to determine a point along an authentication continuum based on the proximity in distance and time of the current physical location of the user and the current time to the predetermined travel route, wherein the point along the authentication continuum corresponds to predetermined authentication requirements.

18. (canceled)

20. (canceled)

24. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Grigg, David M., Bertanzetti, Peter John, Burrell, Charles Jason, Hanson, Carrie Anne, Johansen, Joseph Neil, Toth, Michael E.

Application Number

US14/175,639
Publication Number

US 20150227926A1
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06Q 20/40 Authorisation, e.g. identif...

DETERMINING USER AUTHENTICATION REQUIREMENTS BASED ON THE CURRENT LOCATION OF THE USER IN COMPARISON TO A USER'S TRAVEL ROUTE

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

44 Citations

24 Claims

Specification

Use Cases

Quick Links

Others

DETERMINING USER AUTHENTICATION REQUIREMENTS BASED ON THE CURRENT LOCATION OF THE USER IN COMPARISON TO A USER'S TRAVEL ROUTE

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

44 Citations

24 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others