System and method for controlling user access to an electronic device
First Claim
1. A system for controlling user access to information on an electronic device, the system comprising:
- a first input device in communication with an electronic device, wherein the first input device is configured to receive non-prompted biometric security information associated with a user;
a second input device in communication with an electronic device, wherein the second input device comprises at least one of a mouse and a trackball, wherein the second input device is configured to receive a non-prompted authorization pattern, wherein the non-prompted authorization pattern is generated by user movement of the second input device;
a memory configured to store biometric security information associated with a user, a predetermined pattern associated with a user, and a predefined time interval; and
a processor coupled to the user interface and to the memory, wherein the processor is configured to receive from the first input device said non-prompted biometric security information and from the second input device a sequence of electrical signals representing the non-prompted authorization pattern within a time interval, wherein the time interval identifies a duration between the receipt of the non-prompted biometric security information and the receipt of the non-prompted authorization pattern,and wherein the processor is configured to compare the non-prompted biometric security information with the stored biometric security information, wherein the processor is further configured to compare the non-prompted authorization pattern with the predetermined pattern, and wherein the processor is configured to compare the predetermined time interval with the time interval between the receipt of the non-prompted biometric security information and the non-prompted authorization patternand if the non-prompted biometric security information matches the predetermined biometric security information, the processor is further configured to output a signal granting the user partial access to the electronic device in the event the user does not enter the non-prompted authorization pattern within the time interval or in the event that there is an unsatisfactory match between the non-prompted authorization pattern and the predetermined pattern.
10 Assignments
0 Petitions
Accused Products
Abstract
A method and system for authenticating a user to access a computer system. The method comprises communicating security information to the computer system, and providing the computer system with an implicit input. The method further comprises determining whether the security information and implicit input match corresponding information associated with the user. The method further comprises granting the user access to the computer system in the event of a satisfactory match. When authenticating the user, the method and system consider the possibility of the user being legitimate but subject to duress or force by a computer hacker.
91 Citations
47 Claims
-
1. A system for controlling user access to information on an electronic device, the system comprising:
-
a first input device in communication with an electronic device, wherein the first input device is configured to receive non-prompted biometric security information associated with a user; a second input device in communication with an electronic device, wherein the second input device comprises at least one of a mouse and a trackball, wherein the second input device is configured to receive a non-prompted authorization pattern, wherein the non-prompted authorization pattern is generated by user movement of the second input device; a memory configured to store biometric security information associated with a user, a predetermined pattern associated with a user, and a predefined time interval; and a processor coupled to the user interface and to the memory, wherein the processor is configured to receive from the first input device said non-prompted biometric security information and from the second input device a sequence of electrical signals representing the non-prompted authorization pattern within a time interval, wherein the time interval identifies a duration between the receipt of the non-prompted biometric security information and the receipt of the non-prompted authorization pattern, and wherein the processor is configured to compare the non-prompted biometric security information with the stored biometric security information, wherein the processor is further configured to compare the non-prompted authorization pattern with the predetermined pattern, and wherein the processor is configured to compare the predetermined time interval with the time interval between the receipt of the non-prompted biometric security information and the non-prompted authorization pattern and if the non-prompted biometric security information matches the predetermined biometric security information, the processor is further configured to output a signal granting the user partial access to the electronic device in the event the user does not enter the non-prompted authorization pattern within the time interval or in the event that there is an unsatisfactory match between the non-prompted authorization pattern and the predetermined pattern. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A user authentication system for maintaining the security of information stored on an electronic device, the user authentication system comprising:
-
a processor configured to receive authentication information from a first input device, the processor being further configured to receive from a second input device a non-prompted authorization pattern; a memory configured to store predetermined authentication information, a predetermined authorization pattern and at least one predefined delay interval with respect to a receipt time of the authentication information; and a compare circuit coupled to the processor and to the memory, wherein the compare circuit is configured to compare the authentication information with the predetermined authentication information, the non-prompted authorization pattern with the predetermined pattern, and timing of receipt of the non-prompted authorization pattern with the predefined delay interval, and if the authentication information matches the predetermined authentication information, the compare circuit is configured to grant the user partial access to the electronic device in the event of an unsatisfactory match between the non-prompted authorization pattern and the predetermined pattern, and between the timing of receipt of the non-prompted authorization pattern and the predefined delay interval. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. A method of controlling user access to an electronic device, the method comprising:
-
receiving security information input by a user with a first input device; receiving a non-prompted authorization pattern input by the user with a second input device, wherein the non-prompted authorization pattern is generated by user movement of a pointer; determining whether the security information matches stored security information; determining whether the non-prompted authorization pattern matches a stored pattern; measuring a duration of time between the receiving of the security information and the receiving of the non-prompted authorization pattern; comparing the measured duration of time to a predefined time interval; and if the security information entered by the user matches the stored security information, limiting the scope of user access to an electronic device in the event of an unsatisfactory match between one or more of the non-prompted authorization pattern and the stored pattern and between the measured duration of time and the predefined time interval. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29)
-
-
30. A method of controlling user access to an electronic device, the method comprising:
-
receiving non-prompted security information from the user from a first input device; receiving a non-prompted authorization pattern from the user from a second input device, wherein the non-prompted authorization pattern is a geometric pattern generated by user movement of a pointer; determining a time duration between receipt of the non-prompted security information and of receipt of the non-prompted authorization pattern; comparing the time duration to a reference delay interval; comparing the non-prompted security information and the non-prompted authorization pattern with respective information associated with the user; and if the non-prompted security information matches the information associated with the user, granting the user partial access to an electronic device in the event of an unsatisfactory match between one or more of the time interval and the reference delay interval and between the non-prompted authorization pattern and the respective information associated with the user. - View Dependent Claims (31, 32, 33, 34, 35, 36, 37, 38)
-
-
39. A system for authenticating a user of an electronic device, the system comprising:
-
means for receiving input of non-prompted biometric security information by a user from a first input device; means for receiving the input of a non-prompted authorization pattern from the user from a second input device, wherein the means for receiving the input of the non-prompted authorization pattern receives input about user movement of a pointer; means for determining a time period of receipt of the non-prompted authorization pattern; and means for comparing the non-prompted biometric security information and the non-prompted authorization pattern with respective stored information associated with the user; and means for comparing the determined time period of receipt of the non-prompted authorization pattern with a predefined delay interval, wherein if the non-prompted biometric security information matches the respective stored information about the user, the system is configured to grant the user partial access to information stored in an electronic device in the event of an unsatisfactory match between one or more of the determined time period of receipt of the non-prompted authorization pattern and the predefined delay interval and between the non-prompted authorization pattern and the respective stored information associated with the user. - View Dependent Claims (40, 41, 42, 43, 44, 45, 46, 47)
-
Specification