Method and apparatus utilizing dynamic questioning to provide secure access control
First Claim
1. An apparatus for controlling access to a service or facility according to answers provided by a user in response to questions asked of the user, said apparatus comprising:
- a data base storing information;
a first module that generates at least one question based upon said information stored in said data base, wherein said at least one question concerns an arithmetic relationship among portions of information contained in said data base, and wherein said at least one question does not explicitly disclose said portions of information contained in said database; and
means for communicating to the user said at least one question generated by said first module.
0 Assignments
0 Petitions
Accused Products
Abstract
A method and corresponding apparatus utilizes questioning to provide secure access control including the steps of storing information in a database; generating at least one question based upon the information stored in the data base; communicating to the user the generated question(s); receiving a response associated with the question(s), interpreting the response to determine whether the response conforms to the information upon which is based the associated question(s); and outputting an authorization status indicating whether or not the user is authorized for access according to the determination. The question(s) concerns a relationship among portions of information contained in said data base. This feature is advantageous because it protects against an eavesdropper gaining access to the service or facility and provides the capability of generating a relatively large number of different questions from a small data base. Furthermore, the questions asked of the user may be based on dynamic data, which advantageously protects against eavesdroppers gaining access to the service or facility. In addition, the number and/or type of questions generated by the first module may correspond to a security level of the system. The security level may be set by the service or facility, or may be set the system control module according to user input.
-
Citations
16 Claims
-
1. An apparatus for controlling access to a service or facility according to answers provided by a user in response to questions asked of the user, said apparatus comprising:
-
a data base storing information; a first module that generates at least one question based upon said information stored in said data base, wherein said at least one question concerns an arithmetic relationship among portions of information contained in said data base, and wherein said at least one question does not explicitly disclose said portions of information contained in said database; and means for communicating to the user said at least one question generated by said first module. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for controlling access to a service or facility according to answers provided by a user in response to questions asked of the user, the method comprising the steps of:
-
controlling a first module to generate at least one question based upon data stored in a data base, wherein said at least one question concerns an arithmetic relationship among portions of information contained in said data base, and wherein said at least one question does not explicitly disclose said portions of information contained in said database; communicating to the user said at least one question; receiving a response associated with said at least one question, wherein said response is generated by the user; controlling a second module to interpret said response to determine whether said response conforms to said data upon which is based the associated at least one question; and outputting an authorization status indicating whether or not the user is authorized for access according to the determination made by said second module. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
Specification