SYSTEM FOR ELECTRONIC AUTHENTICATION WITH BOT DETECTION AND DENIAL

US 20180336326A1
Filed: 05/17/2017
Published: 11/22/2018
Est. Priority Date: 05/17/2017
Status: Active Application

First Claim

Patent Images

1. A system for bot detection and denial during electronic authentication, the system comprising:

one or more memory devices having computer readable code store thereon; and

one or more processing devices operatively coupled to the one or more memory devices, wherein the one or more processing devices are configured to execute the computer readable code to;

receive a request from a user application to provide bot detection for electronic authentications;

access a user device associated with the user application and link, via a communicable linkage into the user device;

identify the user device movements and store the movements as regular movements associated with the user device;

trigger one or more bot detection identifiers upon indication of authorization request processing, wherein the one or more bot detection identifiers includes requiring at least a verified liveness of a user associated with the authorization request processing;

extract and retrieve the verified liveness from the user application via the communicable linkage;

determine liveness of generation of the authorization request processing based on a non-irregularity determination of the one or more bot detection identifiers; and

authorize authentication request as human and not bot generated.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems, computer products, and methods are described herein for electronic authentication with bot detection and denial. In this way, the system utilizes user device information to discern an authorization or authentication is being requested by a human as part of either an authentication process or authorization process. As such, the system identifies that the user is a human and not a bot or other device attempting to gain authorization. In some embodiments, the system links to a user device and in one or more embodiments reviews live video in the form of a real-time video stream, requires human movement of a user device, identifies device irregularities, and/or device networking interactions to prove the request for authorization is a human request.

Citations

20 Claims

1. A system for bot detection and denial during electronic authentication, the system comprising:
- one or more memory devices having computer readable code store thereon; and
  
  one or more processing devices operatively coupled to the one or more memory devices, wherein the one or more processing devices are configured to execute the computer readable code to;
  
  receive a request from a user application to provide bot detection for electronic authentications;
  
  access a user device associated with the user application and link, via a communicable linkage into the user device;
  
  identify the user device movements and store the movements as regular movements associated with the user device;
  
  trigger one or more bot detection identifiers upon indication of authorization request processing, wherein the one or more bot detection identifiers includes requiring at least a verified liveness of a user associated with the authorization request processing;
  
  extract and retrieve the verified liveness from the user application via the communicable linkage;
  
  determine liveness of generation of the authorization request processing based on a non-irregularity determination of the one or more bot detection identifiers; and
  
  authorize authentication request as human and not bot generated.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The system of claim 1, wherein one or more bot detection identifiers comprise a device movement bot detection identifier, wherein the device movement bot detection further comprises requesting the user to move the user device in a specific pattern or during a time period for confirmation of liveness.
  - 3. The system of claim 1, wherein one or more bot detection identifiers comprise a device motion irregularity bot detection identifier, wherein the device motion irregularity bot detection identifier further comprises comparing the regular movements associated with the user device with movements at the time of the authorization request and a period of time before the authorization request to identify a regularity in the movements associated with the user device for confirmation of liveness.
  - 4. The system of claim 1, wherein one or more bot detection identifiers comprise a network interaction bot detection identifier, wherein the network interaction bot detection identifier further comprises identifying a name associated with the authorization request and comparing the name to network interactions under that name for confirmation of liveness.
  - 5. The system of claim 1, wherein one or more bot detection identifiers comprise a real-time video stream bot detection identifier, wherein the real-time video stream bot detection identifier further comprises requesting the user to generate a real-time video stream of the user or user surroundings for confirmation of liveness.
  - 6. The system of claim 1, further comprising denying the authorization request based on irregularities determined from one or more of the one or more bot detection identifiers.
  - 7. The system of claim 1, wherein liveness further comprises human activity or human generation of the authorization request processing, wherein liveness is not a generation of authorization request processing by software.

8. A computer program product for bot detection and denial during electronic authentication, comprising at least one non-transitory computer-readable medium having computer-readable program code portions embodied therein, the computer-readable program code portions comprising:
- an executable portion configured for receiving a request from a user application to provide bot detection for electronic authentications;
  
  an executable portion configured for accessing a user device associated with the user application and link, via a communicable linkage into the user device;
  
  an executable portion configured for identifying the user device movements and store the movements as regular movements associated with the user device;
  
  an executable portion configured for triggering one or more bot detection identifiers upon indication of authorization request processing, wherein the one or more bot detection identifiers includes requiring at least a verified liveness of a user associated with the authorization request processing;
  
  an executable portion configured for extracting and retrieving the verified liveness from the user application via the communicable linkage;
  
  an executable portion configured for determining liveness of generation of the authorization request processing based on a non irregularity determination of the one or more bot detection identifiers; and
  
  an executable portion configured for authorizing authentication request as human and not bot generated.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The computer program product of claim 8, wherein one or more bot detection identifiers comprise a device movement bot detection identifier, wherein the device movement bot detection further comprises requesting the user to move the user device in a specific pattern or during a time period for confirmation of liveness.
  - 10. The computer program product of claim 8, wherein one or more bot detection identifiers comprise a device motion irregularity bot detection identifier, wherein the device motion irregularity bot detection identifier further comprises comparing the regular movements associated with the user device with movements at the time of the authorization request and a period of time before the authorization request to identify a regularity in the movements associated with the user device for confirmation of liveness.
  - 11. The computer program product of claim 8, wherein one or more bot detection identifiers comprise a network interaction bot detection identifier, wherein the network interaction bot detection identifier further comprises identifying a name associated with the authorization request and comparing the name to network interactions under that name for confirmation of liveness.
  - 12. The computer program product of claim 8, wherein one or more bot detection identifiers comprise a real-time video stream bot detection identifier, wherein the real-time video stream bot detection identifier further comprises requesting the user to generate a real-time video stream of the user or user surroundings for confirmation of liveness.
  - 13. The computer program product of claim 8, further comprising an executable portion configured for denying the authorization request based on irregularities determined from one or more of the one or more bot detection identifiers.
  - 14. The computer program product of claim 8, wherein liveness further comprises human activity or human generation of the authorization request processing, wherein liveness is not a generation of authorization request processing by software.

15. A computer-implemented method for bot detection and denial during electronic authentication, the method comprising:
- providing a computing system comprising a computer processing device and a non-transitory computer readable medium, where the computer readable medium comprises configured computer program instruction code, such that when said instruction code is operated by said computer processing device, said computer processing device performs the following operations;
  
  receiving a request from a user application to provide bot detection for electronic authentications;
  
  accessing a user device associated with the user application and link, via a communicable linkage into the user device;
  
  identifying the user device movements and store the movements as regular movements associated with the user device;
  
  triggering one or more bot detection identifiers upon indication of authorization request processing, wherein the one or more bot detection identifiers includes requiring at least a verified liveness of a user associated with the authorization request processing;
  
  extracting and retrieving the verified liveness from the user application via the communicable linkage;
  
  determining liveness of generation of the authorization request processing based on a non-irregularity determination of the one or more bot detection identifiers; and
  
  authorizing authentication request as human and not bot generated.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The computer-implemented method of claim 15, wherein one or more bot detection identifiers comprise a device movement bot detection identifier, wherein the device movement bot detection further comprises requesting the user to move the user device in a specific pattern or during a time period for confirmation of liveness.
  - 17. The computer-implemented method of claim 15, wherein one or more bot detection identifiers comprise a device motion irregularity bot detection identifier, wherein the device motion irregularity bot detection identifier further comprises comparing the regular movements associated with the user device with movements at the time of the authorization request and a period of time before the authorization request to identify a regularity in the movements associated with the user device for confirmation of liveness.
  - 18. The computer-implemented method of claim 15, wherein one or more bot detection identifiers comprise a network interaction bot detection identifier, wherein the network interaction bot detection identifier further comprises identifying a name associated with the authorization request and comparing the name to network interactions under that name for confirmation of liveness.
  - 19. The computer-implemented method of claim 15, wherein one or more bot detection identifiers comprise a real-time video stream bot detection identifier, wherein the real-time video stream bot detection identifier further comprises requesting the user to generate a real-time video stream of the user or user surroundings for confirmation of liveness.
  - 20. The computer-implemented method of claim 15, further comprising denying the authorization request based on irregularities determined from one or more of the one or more bot detection identifiers.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Wallace, Matthew Joseph, Cantley, Kerry Michelle, Correro, Greg M., Funk, Michael Lee, DeGrammont, Jeantou Alphonse, Hupfer, Glenn Edward, Sampath, Murali, Shannon, Donna Lynne

Application Number

US15/597,481
Publication Number

US 20180336326A1
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/316   by observing the pattern of...

G06F 21/577   Assessing vulnerabilities a...

G06F 2221/2133   Verifying human interaction...

H04L 2463/144   Detection or countermeasure...

H04L 63/08   for authentication of entit...

SYSTEM FOR ELECTRONIC AUTHENTICATION WITH BOT DETECTION AND DENIAL

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM FOR ELECTRONIC AUTHENTICATION WITH BOT DETECTION AND DENIAL

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links