Authentication method and apparatus
First Claim
1. A method for authenticating an identity of a user, in response to a user request to access an online service, comprising:
- obtaining records information for a valid user, where the records information indicates behaviors having been executed by the valid user;
mapping, based on an orthogonal behavior model having a plurality of mutually orthogonal dimensions, the records information to the plurality of mutually orthogonal dimensions;
generating an authentication questionnaire including a plurality of authentication questions based on the records information;
a computer system computing, responsive to answers of the user to the authentication questionnaire, a total confidence probability P for the user being the valid user, wherein the total confidence probability P is determined according to;
1 Assignment
0 Petitions
Accused Products
Abstract
An identity authentication method is provided. The method comprises obtaining records information of a valid user, where the records information indicates behaviors having been executed by the valid user; mapping, based on an orthogonal behavior model having multiple mutually orthogonal dimensions, records information to the multiple dimensions, wherein behaviors indicated by records information mapped to different dimensions do not overlap therebetween and have no logical cause and effect relationship; sampling records information mapped to different dimensions, respectively, so as to generate an authentication questionnaire including a plurality of authentication questions; computing, responsive to answers of a client to the authentication questionnaire, a total confidence P for the client being a valid user; outputting a positive authentication result, responsive to the total confidence probability P falling into a confidence interval; and outputting a negative authentication result, responsive to the total confidence probability P failing to fall into a confidence interval. The present invention further provides a corresponding identity authentication apparatus.
232 Citations
11 Claims
-
1. A method for authenticating an identity of a user, in response to a user request to access an online service, comprising:
-
obtaining records information for a valid user, where the records information indicates behaviors having been executed by the valid user; mapping, based on an orthogonal behavior model having a plurality of mutually orthogonal dimensions, the records information to the plurality of mutually orthogonal dimensions; generating an authentication questionnaire including a plurality of authentication questions based on the records information; a computer system computing, responsive to answers of the user to the authentication questionnaire, a total confidence probability P for the user being the valid user, wherein the total confidence probability P is determined according to; - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for authenticating an identity of a user, in response to a request to access an online service, comprising:
-
obtaining records information for a valid user, where the records information indicates behaviors having been executed by the valid user; mapping, based on an orthogonal behavior model having a plurality of mutually orthogonal dimensions, the records information to the plurality of mutually orthogonal dimensions, wherein the behaviors indicated by the records information mapped to the different dimensions do not overlap therebetween and have no logical cause and effect relationship with respect to one another; generating an authentication questionnaire including a plurality of authentication questions based on the records information, wherein the generating step comprises sampling the records information mapped to different dimensions of the orthogonal behavior model, wherein each dimension of the different dimensions is sampled simultaneously so as to generate authentication questions of the authentication questionnaire; a computer system computing, responsive to answers of the user to the authentication questionnaire, a total confidence probability P for the user being the valid user; outputting a positive authentication result, responsive to the total confidence probability P falling into a confidence interval; and outputting a negative authentication result, responsive to the total confidence probability P failing to fall into the confidence interval, wherein a confidence probability weight w is assigned to behaviors indicated by the records information mapped to the different dimensions, and wherein; if given ones of the authentication questions in the authentication questionnaire belong to a same dimension, a modified confidence probability pk′
of a kth question originating from the ith dimension is computed according to the following expression;
-
Specification