×

Method, system and program product for authenticating a user seeking to perform an electronic service request

  • US 8,424,061 B2
  • Filed: 09/12/2006
  • Issued: 04/16/2013
  • Est. Priority Date: 09/12/2006
  • Status: Expired due to Fees
First Claim
Patent Images

1. A processor-implemented method for authenticating a user seeking to perform at least one electronic service request, said method comprising the steps of:

  • verifying, by a processor, user identity data received from a user requesting at least one electronic service from a plurality of electronic services;

    identifying, by the processor, a risk level for said at least one electronic service requested by said user, wherein identification of said risk level is based on a set of user profile data associated with said user;

    storing, by the processor, a static challenge that comprises at least one of a plurality of subjective questions for said user, wherein said at least one subjective question requests a subjective answer that is based on a subjective opinion, about said user, from said user;

    storing, by the processor, a dynamic challenge that comprises at least one of a plurality of objective questions for said user, wherein said at least one of said plurality of objective questions requests an objective answer that is based on a past financial transaction between said user and a financial institution;

    issuing to said user, using a customer relationship management system, a challenge corresponding to said risk level identified for said at least one electronic service requested, wherein said challenge is either said static challenge if said risk level is determined to be low or said dynamic challenge if said risk level is determined to be high, wherein only one of said static challenge or said dynamic challenge is issued based on said risk level of said user, and wherein said issuing further comprises;

    checking a set of user profile data associated with said user;

    detecting whether or not any variances are found based on said set of user profile data associated with said user; and

    identifying a risk level for said at least one electronic service request received based on whether or not said any variances are found; and

    authorizing said at least one electronic service requested only if a correct response is received to either said static challenge or said dynamic challenge.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×