CONTINUOUS AUTHENTICATION OF MOBILE DEVICE USERS

US 20160182503A1
Filed: 08/21/2015
Published: 06/23/2016
Est. Priority Date: 12/18/2014
Status: Active Grant

First Claim

Patent Images

1. A method for securing a mobile electronic device, the method comprising:

by one or more sensors in communication with the mobile electronic device, collecting sensor data from which a plurality of different biometric signatures of a user of the mobile electronic device can be derived;

based on at least some of the sensor data, determining an activity context of the mobile electronic device, the activity context relating to a current activity of the user in relation to the mobile electronic device;

selecting a biometric signature of the plurality of different biometric signatures based on the activity context of the mobile electronic device;

according to the selected biometric signature, executing a routine to verify the identity of the user; and

configuring access to one or more features of the mobile electronic device in response to execution of the routine to verify the identity of the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Technology for performing continuous authentication of a mobile device utilizes user activity context data and biometric signature data related to the user. A biometric signature can be selected based on the activity context, and the selected biometric signature can be used to verify the identity of the user.

61 Citations

View as Search Results

20 Claims

1. A method for securing a mobile electronic device, the method comprising:
- by one or more sensors in communication with the mobile electronic device, collecting sensor data from which a plurality of different biometric signatures of a user of the mobile electronic device can be derived;
  
  based on at least some of the sensor data, determining an activity context of the mobile electronic device, the activity context relating to a current activity of the user in relation to the mobile electronic device;
  
  selecting a biometric signature of the plurality of different biometric signatures based on the activity context of the mobile electronic device;
  
  according to the selected biometric signature, executing a routine to verify the identity of the user; and
  
  configuring access to one or more features of the mobile electronic device in response to execution of the routine to verify the identity of the user.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 17, 18)
- - 2. The method of claim 1, comprising selecting a different biometric signature in response to a change in the activity context of the mobile electronic device, and executing the routine to verify the identity of the user with the different biometric signature.
  - 3. The method of claim 1, comprising computing a confidence score indicative of a likelihood that the selected biometric signature is associated with the user, and selectively configuring the mobile electronic device based on the confidence score.
  - 4. The method of claim 3, comprising, over time, changing one or more access privileges of the mobile electronic device in response to changes in the confidence score.
  - 5. The method of claim 3, comprising detecting a change in the activity context and re-computing the confidence score in response to the change in the activity context.
  - 6. The method of claim 3, comprising detecting a different user carrying the mobile electronic device based on a change in the confidence score.
  - 7. The method of claim 1, wherein the plurality of different biometric signatures of the user comprises data indicative of at least two of:
    - gait signature, arm length, height, breathing rate, pulse rate, or blood pressure of a user carrying the mobile electronic device; and
      
      wherein the activity context comprises data indicative of at least one of;
      
      walking, running, sitting down, sitting still, standing up, standing still, lying down, ascending stairs, or descending stairs by a user carrying the mobile electronic device.
  - 8. The method of claim 1, wherein the activity context triggers an alert and creates an event in a log.
  - 9. The method of claim 1, comprising, in response to an unsuccessful identity verification of the user, prompting the user for another form of user-identifying information;
    - and in response to a successful identity verification of the user of the mobile electronic device based on the other form of user-identifying information, creating a biometric signature for the user.
  - 17. The user authentication subsystem of claim 1, wherein the activity context triggers an alert and creates an event in a log.
  - 18. The user authentication subsystem of claim 1, comprising, in response to an unsuccessful identity verification of the user, prompting the user for another form of user-identifying information;
    - and in response to a successful identity verification of the user of the mobile electronic device based on the other form of user-identifying information, creating a biometric signature for the user.

10. A user authentication subsystem for a mobile electronic device, the user authentication system comprising a plurality of instructions embodied in one or more non-transitory machine accessible storage media and configured to cause a computing system of the mobile electronic device to, at regular time intervals:
- by one or more sensors in communication with the mobile electronic device, collect sensor data from which a plurality of different biometric signatures of a user of the mobile electronic device can be extracted;
  
  based on at least some of the sensor data, determine an activity context of the mobile electronic device, the activity context relating to a current activity of the user in relation to the mobile electronic device;
  
  select a biometric signature of the plurality of different biometric signatures based on the activity context of the mobile electronic device;
  
  according to the selected biometric signature, execute a routine to verify the identity of the user; and
  
  configure the mobile electronic device based on output of the routine to verify the identity of the user.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The user authentication subsystem of claim 10, configured to detect a change in the activity context of the mobile electronic device, select a different biometric signature in response to a change in the activity context of the mobile electronic device, and execute the routine to verify the identity of the user with the different biometric signature.
  - 12. The user authentication subsystem of claim 10, configured to compute a confidence score indicative of a likelihood that the selected biometric signature is associated with the user, and configure the mobile electronic device based on the confidence score.
  - 13. The user authentication subsystem of claim 12, configured to, over time, adjust one or more access privileges of the mobile electronic device in response to changes in the confidence score.
  - 14. The user authentication subsystem of claim 12, configured to detect a change in the identity of the user carrying the mobile electronic device in response to a change in the confidence score.
  - 15. The user authentication subsystem of claim 12, configured to detect a change in the activity context and re-compute the confidence score in response to the change in the activity context.
  - 16. The user authentication subsystem of claim 10, wherein the plurality of different biometric signatures of the user comprises data indicative of at least two of:
    - gait signature, arm length, height, breathing rate, pulse rate, or blood pressure of the user carrying the mobile electronic device; and
      
      wherein the activity context comprises data indicative of at least one of;
      
      walking, running, sitting down, sitting still, standing up, standing still, lying down, ascending stairs, or descending stairs by the user carrying the mobile electronic device.

19. A computing system comprising at least a mobile electronic device, the computing system comprising:
- one or more hardware processors;
  
  one or more sensors coupled to the one or more processors; and
  
  memory comprising instructions executable by the one or more processors to cause the mobile electronic device to, over time;
  
  receive sensor data from which a plurality of different biometric signatures of a user of the mobile electronic device can be extracted;
  
  based on at least some of the sensor data, determine an activity context of the mobile electronic device, the activity context relating to a current activity of the user in relation to the mobile electronic device;
  
  select a biometric signature of the plurality of different biometric signatures based on the activity context of the mobile electronic device;
  
  with the selected biometric signature, execute a routine to verify the identity of the user; and
  
  adjust one or more access privileges of the mobile electronic device in response to output of the routine to verify the identity of the user.
- View Dependent Claims (20)
- - 20. The computing system of claim 19, wherein the memory comprises instructions configured to cause the mobile electronic device to compute a confidence score indicative of a likelihood that the selected biometric signature is associated with the user, configure access to the mobile electronic device based on the confidence score, detect a change in the confidence score indicative of a change in the identity of the user carrying the mobile electronic device, and re-configure access to the mobile electronic device in response to the detected change in the identity of the user carrying the mobile electronic device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SRI International, Inc.
Original Assignee
SRI International, Inc.
Inventors
Zhu, JieJie, Cheng, Hui, Javed, Omar

Granted Patent

US 9,578,024 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/316   by observing the pattern of...

G06F 21/32   using biometric data, e.g. ...

H04L 63/0861   using biometrical features,...

H04L 63/12   Applying verification of th...

H04W 12/065   Continuous authentication

H04W 12/082   using revocation of authori...

H04W 12/68   Gesture-dependent or behavi...

CONTINUOUS AUTHENTICATION OF MOBILE DEVICE USERS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

61 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

CONTINUOUS AUTHENTICATION OF MOBILE DEVICE USERS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

61 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links