Variable trust levels for authentication

US 7,086,085 B1
Filed: 06/20/2001
Issued: 08/01/2006
Est. Priority Date: 04/11/2000
Status: Active Grant

First Claim

Patent Images

1. A method for determining a level of trust in an authenticated identification, comprising:

performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;

combining the scores for the successful authentications to determine a level of trust;

responsive to the determined level of trust exceeding a first predetermined threshold, allowing a first level of access to a resource;

responsive to the determined level of trust exceeding a second predetermined threshold, allowing a second level of access to a resource; and

wherein the first level of access comprises reading the resource and the second level of access comprises modifying the resource.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A level of trust is determined based on a combination of scores for one or more successful authentications. Scores indicate relative degrees of reliability for authentications, so that differing authentication methods may correspond to different scores. The determined level of trust can then be used to allow or deny access to a resource, and can be used to specify the type of access that is allowed, if applicable.

Citations

11 Claims

1. A method for determining a level of trust in an authenticated identification, comprising:
- performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  combining the scores for the successful authentications to determine a level of trust;
  
  responsive to the determined level of trust exceeding a first predetermined threshold, allowing a first level of access to a resource;
  
  responsive to the determined level of trust exceeding a second predetermined threshold, allowing a second level of access to a resource; and
  
  wherein the first level of access comprises reading the resource and the second level of access comprises modifying the resource.

2. A method for determining a level of trust in an authenticated identification, comprising:
- performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  combining the scores for the successful authentications to determine a level of trust;
  
  receiving a request for an action, the action being associated with a predetermined minimum level of trust;
  
  responsive to the determined level of trust exceeding the predetermined minimum level of trust, allowing the requested action to proceed; and
  
  responsive to the determined level of trust not exceeding the predetermined minimum level of trust, denying the requested action.

3. A method for determining a level of trust in an authenticated identification, comprising:
- performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  combining the scores for the successful authentications to determine a level of trust; and
  
  presenting a list of allowable actions having minimum trust levels not exceeding the determined level of trust.
- View Dependent Claims (4)
- - 4. The method of claim 3, further comprising:
    - receiving input specifying one of the presented actions; and
      
      initiating the specified action.

5. A system for determining a level of trust in an authenticated identification, comprising:
- an authenticator, for performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  a score combiner, coupled to the authenticator, for combining the scores for the successful authentications to determine a level of trust;
  
  wherein the authenticator, responsive to the determined level of trust exceeding a first predetermined threshold, allows a first level of access to a resource, and, responsive to the determined level of trust exceeding a second predetermined threshold, allows a second level of access to a resource; and
  
  wherein the first level of access comprises reading the resource and the second level of access comprises modifying the resource.

6. A system for determining a level of trust in an authenticated identification, comprising:
- an authenticator, for performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  a score combiner, coupled to the authenticator, for combining the scores for the successful authentications to determine a level of trust; and
  
  an action input device, coupled to the authenticator, for receiving a request for an action, the action being associated with a predetermined minimum level of trust;
  
  wherein the authenticator, responsive to the determined level of trust exceeding the predetermined minimum level of trust, allows the requested action to proceed, and, responsive to the determined level of trust not exceeding the predetermined minimum level of trust, denies the requested action.

7. A system for determining a level of trust in an authenticated identification, comprising:
- an authenticator, for performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  a score combiner, coupled to the authenticator, for combining the scores for the successful authentications to determine a level of trust; and
  
  an output device, coupled to the authenticator, for presenting a list of allowable actions having minimum trust levels not exceeding the determined level of trust.
- View Dependent Claims (8)
- - 8. The system of claim 7, further comprising:
    - an input device, coupled to the output device, for receiving input specifying one of the presented actions; and
      
      a transaction manager, coupled to the input device, for initiating the specified action.

9. A computer-readable medium for determining a level of trust in an authenticated identification, comprising:
- computer-readable code adapted to perform authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  computer-readable code adapted to combine the scores for the successful authentications to determine a level of trust; and
  
  computer-readable code adapted to, responsive to the determined level of trust exceeding a predetermined threshold, offer a user a role for selection.

10. A computer-readable medium for determining a level of trust in an authenticated identification, comprising:
- computer-readable code adapted to perform authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful;
  
  computer-readable code adapted to combine the scores for the successful authentications to determine a level of trust; and
  
  computer-readable code adapted to, responsive to the determined level of trust exceeding a first predetermined threshold, allow a first level of access to a resource, and, responsive to the determined level of trust exceeding a second predetermined threshold, allowing a second level of access to a resource;
  
  wherein the first level of access comprises reading the resource and the second level of access comprises modifying the resource.

11. A system for determining a level of trust in an authenticated identification, comprising:
- authenticating means, for performing authentications to obtain authentication results, each authentication having a score, each result indicating whether the corresponding authentication is successful; and
  
  score combining means, coupled to the authentication means, for combining the scores for the successful authentications to determine a level of trust;
  
  wherein the authenticating means, responsive to the determined level of trust exceeding a predetermined threshold, offers a user a role for selection.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Ilumin (Broadcom, Inc.)
Original Assignee
Ilumin (Broadcom, Inc.)
Inventors
Brown, Bruce-Eric II, Brown, Aaron M, Brown, Bruce E
Primary Examiner(s)
Wright, Norman M.

Application Number

US09/886,478
Time in Patent Office

1,868 Days
Field of Search

713/182, 713/170, 713/169, 726/7, 726 3- 4, 726/26, 726/27
US Class Current

726/7
CPC Class Codes

G06F 21/31 User authentication

G06F 21/6218 to a system of files or obj...

Variable trust levels for authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Variable trust levels for authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links