State Management For Mobile Device Authentication

US 20160057248A1
Filed: 08/19/2015
Published: 02/25/2016
Est. Priority Date: 08/20/2014
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

creating, by a processor, a user profile;

creating, by the processor, a dynamic device profile associated with a user device, the dynamic device profile including state information for the user device;

binding, by the processor, the user profile to the dynamic device profile, wherein the binding prepares the user device to conduct one or more transactions;

in response to a request to perform a transaction with the user device, checking, by the processor, the state information in the dynamic device profile; and

performing, by the processor, one of the following steps;

(i) allowing, by the processor, the transaction with the user device when the state information indicates a trusted state,(ii) limiting, by the processor, the transaction with the user device when the state information indicates a suspended state, or(iii) preventing, by the processor, the transaction with the user device when the state information indicates an untrusted state, wherein the user device transitions among the trusted state, the suspended state and the untrusted state when a predetermined set of actions are completed.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments create and manage a device profile on a mobile device for continued authentication of the mobile device. The device profile includes a state assigned to a mobile device. The state of the device can be managed through the device profile. The mobile device is allowed to conduct payments based on the current state assigned to the mobile device. In response to a request to conduct a payment transaction using the mobile device, the state information in the mobile device profile is checked. The payment transaction using the mobile device is allowed when the state information indicates a trusted state. The payment transaction using the mobile device is limited when the state information indicates a suspended state. The payment transaction using the mobile device is prevented when the state information indicates an untrusted state.

Citations

20 Claims

1. A method comprising:
- creating, by a processor, a user profile;
  
  creating, by the processor, a dynamic device profile associated with a user device, the dynamic device profile including state information for the user device;
  
  binding, by the processor, the user profile to the dynamic device profile, wherein the binding prepares the user device to conduct one or more transactions;
  
  in response to a request to perform a transaction with the user device, checking, by the processor, the state information in the dynamic device profile; and
  
  performing, by the processor, one of the following steps;
  
  (i) allowing, by the processor, the transaction with the user device when the state information indicates a trusted state,(ii) limiting, by the processor, the transaction with the user device when the state information indicates a suspended state, or(iii) preventing, by the processor, the transaction with the user device when the state information indicates an untrusted state, wherein the user device transitions among the trusted state, the suspended state and the untrusted state when a predetermined set of actions are completed.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, further comprising:
    - performing one or more security tests on the user device, wherein the predetermined set of actions include the one or more security tests; and
      
      modifying the state information based on the one or more security tests.
  - 3. The method of claim 1, further comprising:
    - unbinding the dynamic device profile from the user profile when the state information indicates the untrusted state.
  - 4. The method of claim 1, further comprising:
    - associating a warning flag with the dynamic device profile when the state information indicates the suspended state.
  - 5. The method of claim 1, wherein, when the user device is in the trusted state, the user device remains in the trusted state when a set of trusted state actions are completed.
  - 6. The method of claim 5, further comprising:
    - continuously performing the set of trusted state actions to ensure that the user device qualifies to remain in the trusted state.
  - 7. The method of claim 1, wherein, when the user device is in the untrusted state, the user device remains in the untrusted state when a set of untrusted state actions are completed.
  - 8. The method of claim 7, further comprising:
    - continuously performing the set of untrusted state actions to ensure that the user device qualifies to remain in the untrusted state.
  - 9. The method of claim 1, wherein the dynamic device profile further includes one or more of device identification information, device behavioral history, a risk score associated with the user device, a software configuration of the user device and a hardware configuration of the user device.
  - 10. The method of claim 1, wherein the predetermined set of actions include one or more of authentication of user, verification of user device security, identification of user device, creation of the dynamic device profile, binding of the dynamic device profile to the user profile, and management of user device state and the dynamic device profile.

11. A method comprising:
- creating, by a processor, a dynamic device profile including state information for a user device, wherein the state information indicates whether the user device has a trusted state, a suspended state or an untrusted state;
  
  determining that the user device is in the trusted state;
  
  performing, by the processor, a list of actions one by one, wherein a subsequent action on the list is performed if a current action is completed;
  
  transitioning, by the processor, the user device to the suspended state if a first subset of actions of the list is completed; and
  
  transitioning, by the processor, the user device to the untrusted state if a second subset of actions of the list is completed.
- View Dependent Claims (12, 13)
- - 12. The method of claim 11, further comprising:
    - keeping the user device in the trusted state if a third subset of actions of the list is completed.
  - 13. The method of claim 11, wherein the list of actions include one or more of authentication of user, verification of user device security, identification of user device, creation of the dynamic device profile, creation of a user profile, binding of the dynamic device profile to the user profile, and management of user device state and the dynamic device profile.

14. A server computer comprising:
- a processor; and
  
  a computer readable medium coupled to the processor, the computer readable medium comprising code, executable by the processor, to implement a method comprising;
  
  creating a user profile;
  
  creating a dynamic device profile associated with a user device, the dynamic device profile including state information for the user device;
  
  binding the user profile to the dynamic device profile, wherein the binding prepares the user device to conduct one or more transactions;
  
  in response to a request to perform a transaction with the user device, checking the state information in the dynamic device profile; and
  
  performing one of the following steps;
  
  (i) allowing the transaction with the user device when the state information indicates a trusted state,(ii) limiting the transaction with the user device when the state information indicates a suspended state, or(iii) preventing the transaction with the user device when the state information indicates an untrusted state, wherein the user device transitions among the trusted state, the suspended state and the untrusted state when a predetermined set of actions are completed.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. The server computer of claim 14, wherein the method further comprises:
    - unbinding the dynamic device profile from the user profile when the state information indicates the untrusted state.
  - 16. The server computer of claim 14, wherein the method further comprises:
    - associating a warning flag with the dynamic device profile when the state information indicates the suspended state.
  - 17. The server computer of claim 14, wherein, when the user device is in the trusted state, the user device remains in the trusted state when a set of trusted state actions are completed, wherein the method further comprises:
    - continuously performing the set of trusted state actions to ensure that the user device qualifies to remain in the trusted state.
  - 18. The server computer of claim 14, wherein, when the user device is in the untrusted state, the user device remains in the untrusted state when a set of untrusted state actions are completed, wherein the method further comprises:
    - continuously performing the set of untrusted state actions to ensure that the user device qualifies to remain in the untrusted state.
  - 19. The server computer of claim 14, wherein the dynamic device profile further includes one or more of device identification information, device behavioral history, a risk score associated with the user device, a software configuration of the user device and a hardware configuration of the user device.
  - 20. The server computer of claim 14, wherein the predetermined set of actions include one or more of authentication of user, verification of user device security, identification of user device, creation of the dynamic device profile, binding of the dynamic device profile to the user profile, and management of user device state and the dynamic device profile.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Tankha, Gautam

Granted Patent

US 10,362,136 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/316   by observing the pattern of...

G06Q 20/3265   characterised by personalis...

G06Q 20/382   insuring higher security of...

H04L 63/102   Entity profiles

H04L 67/303   Terminal profiles

H04L 67/306   User profiles

H04W 12/08   Access security

H04W 12/67   Risk-dependent, e.g. select...

State Management For Mobile Device Authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

State Management For Mobile Device Authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links