PERSONAL ASSISTANT AUTHENTICATION

US 20160262017A1
Filed: 03/04/2015
Published: 09/08/2016
Est. Priority Date: 03/04/2015
Status: Abandoned Application

First Claim

Patent Images

1. A mobile computing device comprising a computer memory and a computer processor that is configured to allow a personal digital assistant to perform tasks with an online service upon validating a user instruction, the mobile computing device comprising:

the personal digital assistant that is a computer program stored on the computer memory having code configured to;

(1) receive an audible request for the personal digital assistant to perform a task through the online service, the online service accessible to the mobile computing device through a network connection;

(2) determine that a security-challenge authentication procedure required for the personal digital assistant to perform the task through the online service requires a user to respond to a user interrogation to authenticate the user;

(3) generate the user interrogation which comprises a question having a correct answer by retrieving a fact from a set of semantic knowledge associated with the user and forming the question where the fact is the correct answer to the question;

(4) provide the question to the user;

(5) receive a response to the question from the user;

(6) determine that the security-challenge authentication procedure is satisfied because the response is the correct answer; and

(7) instruct the online service to perform the task by communicating security credentials to the online service that confirm that the security-challenge authentication procedure has been satisfied and providing instructions about the task to the online service.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Aspects of the technology described herein provide a mechanism to authenticate a task request received by a personal digital assistant. The authentication mechanism improves security for transactions facilitated by the personal digital assistant. The authentication mechanism can also improve machine and user efficiency by streamlining a transaction process. In one aspect, the request is a verbal request made by a person and received by the personal digital assistant through a microphone. The personal assistant can generate an authentication questions using data from a semantic knowledge base accessible to the personal digital assistant.

Citations

20 Claims

1. A mobile computing device comprising a computer memory and a computer processor that is configured to allow a personal digital assistant to perform tasks with an online service upon validating a user instruction, the mobile computing device comprising:
- the personal digital assistant that is a computer program stored on the computer memory having code configured to;
  
  (1) receive an audible request for the personal digital assistant to perform a task through the online service, the online service accessible to the mobile computing device through a network connection;
  
  (2) determine that a security-challenge authentication procedure required for the personal digital assistant to perform the task through the online service requires a user to respond to a user interrogation to authenticate the user;
  
  (3) generate the user interrogation which comprises a question having a correct answer by retrieving a fact from a set of semantic knowledge associated with the user and forming the question where the fact is the correct answer to the question;
  
  (4) provide the question to the user;
  
  (5) receive a response to the question from the user;
  
  (6) determine that the security-challenge authentication procedure is satisfied because the response is the correct answer; and
  
  (7) instruct the online service to perform the task by communicating security credentials to the online service that confirm that the security-challenge authentication procedure has been satisfied and providing instructions about the task to the online service.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The mobile computing device of claim 1, wherein the security-challenge authentication procedure is specific to the online service, with different online services having different security-challenge authentication procedures.
  - 3. The mobile computing device of claim 1, wherein the security-challenge authentication procedure is specific to an amount of money required to complete the task falling into a first range, wherein different security-challenge authentication procedures are used with different money ranges.
  - 4. The mobile computing device of claim 1, wherein the set of semantic knowledge is not explicitly provided by the user for generating the user interrogation.
  - 5. The mobile computing device of claim 1, wherein the set of semantic knowledge is generated by the personal digital assistant.

6. One or more computer storage media storing computer-executable instructions that, when executed by a computing device having a processor, cause the computing device to perform a method of authenticating a request received by a personal digital assistant, the method comprising:
- receiving from a user a verbal request for the personal digital assistant running on a user device to perform a task through an online service;
  
  determining that a security-challenge authentication procedure is required for the personal digital assistant to perform the task through the online service;
  
  determining that the security-challenge authentication procedure requires the user to respond to a user interrogation to authenticate the user;
  
  generating by the personal digital assistant the user interrogation by retrieving a fact from a set of semantic knowledge associated with the user and forming a question where the fact is a correct answer to the question;
  
  providing the user interrogation to the user audibly through a speaker in the user device;
  
  receiving an audible response to the user interrogation from the user through a microphone associated with the user device;
  
  determining that the security-challenge authentication procedure is satisfied by comparing the audible response to the fact; and
  
  upon determining that the security-challenge authentication procedure is satisfied, communicating an instruction to the online service to perform the task.
- View Dependent Claims (7, 8, 9, 10, 11, 12)
- - 7. The media of claim 6, wherein the method further comprises:
    - providing an interface configured to enable the user to associate one of at least two different authentication levels with the task;
      
      receiving an instruction to associate the task with a first authentication level; and
      
      assigning the first authentication level to the task within a security component.
  - 8. The media of claim 6, wherein the online service requires a password for an account associated with the user to complete the task, and wherein said carrying out the task comprises retrieving the password from a security component that stores user credentials for a plurality of online services and communicating the password to the online service without receiving the password from the user subsequent to receiving said request.
  - 9. The media of claim 6, wherein the method further comprises retrieving the question from a corpus of question/answer pairs that comprise a textual question and type of fact that answers the question.
  - 10. The media of claim 6, wherein a level of the security-challenge authentication procedure is specified by the online service.
  - 11. The media of claim 10, wherein the instruction to the online service comprises a confirmation that the security-challenge authentication procedure has been satisfied.
  - 12. The media of claim 6, wherein the security-challenge authentication procedure further comprises performing voice recognition on the audible response.

13. A method for authorizing a digital personal assistant to conduct a transaction with a third party comprising:
- receiving from a user a request for a computing application running on a user device to perform a task through an online service that requires security credentials from the user to complete the task, the online service is accessible to the user device through a network connection;
  
  determining that a security-challenge authentication procedure required for the computing application to perform the task through the online service requires the user to respond to a user interrogation to authenticate the user;
  
  generating the user interrogation by retrieving a fact from a set of semantic knowledge associated with the user and forming a question where the fact is a correct answer to the question;
  
  providing the question to the user;
  
  receiving a response to the question from the user;
  
  based on the response, determining that the security-challenge authentication procedure is satisfied because the response is the fact; and
  
  upon determining that the security-challenge authentication procedure is satisfied, instructing the online service to perform the task by communicating the security credentials to the online service and providing instructions about the task to the online service.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
- - 14. The method of claim 13, wherein the set of semantic knowledge is generated by a personal digital assistant.
  - 15. The method of claim 13, wherein the security-challenge authentication procedure is specific to the task, with different tasks having different security-challenge authentication procedures.
  - 16. The method of claim 13, wherein the security-challenge authentication procedure is specific to the online service, with different online services having different security-challenge authentication procedures.
  - 17. The method of claim 13, wherein the security-challenge authentication procedure is specific to an amount of money required to complete the task falling into a first range, wherein different security-challenge authentication procedures are used with different money ranges.
  - 18. The method of claim 13, wherein the fact was added to the set of semantic knowledge within a threshold period of time from a point in time when the request is received.
  - 19. The method of claim 13, wherein the fact is a location visited by the user as determined by a location service running on the user device.
  - 20. The method of claim 13, wherein the set of semantic knowledge is not explicitly provided by the user for generating the user interrogation.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Inventors
LAVEE, GAL, RONEN, ROYI, YAARI, RONEN

Application Number

US14/637,526
Publication Number

US 20160262017A1
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/31   User authentication

G06F 21/316   by observing the pattern of...

G06F 2221/2103   Challenge-response

G06Q 20/12   specially adapted for elect...

G06Q 20/388   using mutual authentication...

G06Q 20/4014   Identity check for transact...

G06Q 20/405   Establishing or using trans...

G06Q 30/0609   Buyer or seller confidence ...

G06Q 30/0641   Shopping interfaces

H04L 63/083   using passwords cryptograph...

H04L 67/10   in which an application is ...

H04W 12/068   using credential vaults, e....

H04W 12/069   using certificates or pre-s...

H04W 88/02   Terminal devices

PERSONAL ASSISTANT AUTHENTICATION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

PERSONAL ASSISTANT AUTHENTICATION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links