Network acquired behavioral fingerprint for authentication

US 8,869,241 B2
Filed: 06/29/2012
Issued: 10/21/2014
Est. Priority Date: 09/24/2011
Status: Active Grant

First Claim

Patent Images

1. A computationally-implemented system, comprising:

(A) circuitry for identifying a network connection coupling a computer server to a computing device; and

(B) circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device, including at least;

(1) circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network, including at least;

(a) circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key; and

(b) circuitry for producing one or more derivations of the at least one cryptographic key to enable distribution of the one or more derivations of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via the data gathered from the at least one social network.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computationally-implemented method, for certain example embodiments, may include, but is not limited to: identifying a network connection coupling a computer server to a computing device; and transmitting, via the network connection, a behavioral fingerprint associated with an authorized user of the computing device, the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device. In addition to the foregoing, other example aspects are presented in the claims, drawings, and written description forming a part of the present disclosure.

146 Citations

View as Search Results

53 Claims

1. A computationally-implemented system, comprising:
- (A) circuitry for identifying a network connection coupling a computer server to a computing device; and
  
  (B) circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device, including at least;
  
  (1) circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network, including at least;
  
  (a) circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key; and
  
  (b) circuitry for producing one or more derivations of the at least one cryptographic key to enable distribution of the one or more derivations of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via the data gathered from the at least one social network.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51)
- - 2. The computationally-implemented system of claim 1, further comprising:
    - (C) circuitry for transmitting, via the network connection, a level of authentication of the authorized user for network-accessible functions relating to at least a portion of the behavioral fingerprint; and
      
      (D) circuitry for enabling one or more tasks to be performed automatically as a function of the level of authentication of the authorized user.
  - 3. The computationally-implemented system of claim 1, wherein the circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device comprises:
    - circuitry for determining at least a portion of the behavioral fingerprint via confirming at least one internet presence of the authorized user of the computing device.
  - 4. The computationally-implemented system of claim 3, wherein the circuitry for determining at least a portion of the behavioral fingerprint via confirming at least one internet presence of the authorized user of the computing device comprises:
    - circuitry for sensing one or more actions of the authorized user and two or more designated internet available entities; and
      
      circuitry for applying at least one reliability criterion to the sensed one or more actions of the authorized user and the two or more designated internet available entities to generate at least a portion of the behavioral fingerprint associated with the authorized user.
  - 5. The computationally-implemented system of claim 4, wherein the circuitry for sensing one or more actions of the authorized user and two or more designated internet available entities comprises:
    - circuitry for storing the sensed one or more actions of the authorized user and the two or more designated internet available entities.
  - 6. The computationally-implemented system of claim 4, wherein the circuitry for sensing one or more actions of the authorized user and two or more designated internet available entities comprises:
    - circuitry for detecting the authorized user logging into one or more social networks.
  - 7. The computationally-implemented system of claim 4, wherein the circuitry for sensing one or more actions of the authorized user and two or more designated internet available entities comprises:
    - circuitry for mapping one or more locations of the authorized user in conjunction with interaction with the two or more designated internet available entities.
  - 8. The computationally-implemented system of claim 4, wherein the circuitry for sensing one or more actions of the authorized user and two or more designated internet available entities comprises:
    - circuitry for detecting at least one contact pattern between or among the authorized user and the two or more designated internet available entities.
  - 9. The computationally-implemented system of claim 4, wherein the circuitry for sensing one or more actions of the authorized user and two or more designated internet available entities comprises:
    - circuitry for detecting one or more contacts interacted with by the authorized user via one or more social networks to determine at least one interaction pattern associated with the authorized user.
  - 10. The computationally-implemented system of claim 4, wherein the circuitry for sensing one or more actions of the authorized user and two or more designated internet available entities comprises:
    - circuitry for storing one or more locations visited by the authorized user, the one or more locations including at least one or more physical locations or one or more virtual locations.
  - 11. The computationally-implemented system of claim 4, wherein the circuitry for applying at least one reliability criterion to the sensed one or more actions of the authorized user and the two or more designated internet available entities to generate at least a portion of the behavioral fingerprint associated with the authorized user comprises:
    - circuitry for altering at least a portion of the behavioral fingerprint associated with the authorized user as a function of one or more sensed actions of a device user and the two or more designated internet available entities.
  - 12. The computationally-implemented system of claim 11, wherein the circuitry for altering at least a portion of the behavioral fingerprint associated with the authorized user as a function of one or more sensed actions of a device user and the two or more designated internet available entities comprises:
    - circuitry for generating at least one alert as part of at least a portion of the behavioral fingerprint if the one or more sensed actions of the device user include at least one detected anomalous action.
  - 13. The computationally-implemented system of claim 12, wherein the circuitry for generating at least one alert as part of at least a portion of the behavioral fingerprint if the one or more sensed actions of the device user include at least one detected anomalous action comprises:
    - circuitry for transmitting the at least one alert to the computing device.
  - 14. The computationally-implemented system of claim 12, wherein the circuitry for generating at least one alert as part of at least a portion of the behavioral fingerprint if the one or more sensed actions of the device user include at least one detected anomalous action comprises:
    - circuitry for transmitting the at least one alert to one or more applications running on at least one cloud computing system.
  - 15. The computationally-implemented system of claim 14, wherein the circuitry for transmitting the at least one alert to one or more applications running on at least one cloud computing system comprises:
    - circuitry for transmitting the at least one alert to the two or more designated internet available entities via the at least one cloud computing system.
  - 16. The computationally-implemented system of claim 11, wherein the circuitry for altering at least a portion of the behavioral fingerprint associated with the authorized user as a function of one or more sensed actions of a device user and the two or more designated internet available entities comprises:
    - circuitry for notifying multiple contacts via at least one social network if at least one alert is initiated by the authorized user.
  - 17. The computationally-implemented system of claim 11, wherein the circuitry for altering at least a portion of the behavioral fingerprint associated with the authorized user as a function of one or more sensed actions of a device user and the two or more designated internet available entities comprises:
    - circuitry for disabling at least partially one or more devices of the authorized user if an alteration to at least a portion of the behavioral fingerprint is indicative that the one or more devices of the authorized user have been compromised with respect to authentication.
  - 18. The computationally-implemented system of claim 11, wherein the circuitry for altering at least a portion of the behavioral fingerprint associated with the authorized user as a function of one or more sensed actions of a device user and the two or more designated internet available entities comprises:
    - circuitry for disabling at least partially, via the computer server, at least one mobile device of the authorized user if at least a portion of the behavioral fingerprint is indicative that a level of authentication for the at least one mobile device is to be at least one of lowered to a predetermined level or lowered by a predetermined amount.
  - 19. The computationally-implemented system of claim 1, wherein the circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network comprises:
    - circuitry for determining at least one cryptographic key pair including at least one private key and at least one public key;
      
      circuitry for partitioning the at least one private key into two or more components of the at least one private key to enable distribution of at least one component of the two or more components of the at least one private key, the two or more components of the at least one private key usable to form the reconstructed key; and
      
      circuitry for distributing the at least one component of the two or more components of the at least one private key to one or more members of the at least one social network.
  - 20. The computationally-implemented system of claim 1, wherein the circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network comprises:
    - circuitry for obtaining the data gathered from the at least one social network via retrieving from one or more members of the at least one social network one or more components that are derived from at least one private key and that are usable to form the reconstructed key.
  - 21. The computationally-implemented system of claim 20, wherein the circuitry for obtaining the data gathered from the at least one social network via retrieving from one or more members of the at least one social network one or more components that are derived from at least one private key and that are usable to form the reconstructed key comprises:
    - circuitry for requesting from two or more members of the at least one social network the one or more components that are derived from the at least one private key, the two or more members of the at least one social network previously-identified by the authorized user as corresponding to a particular level of trust.
  - 22. The computationally-implemented system of claim 1, wherein the circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network comprises:
    - circuitry for determining one or more members of the at least one social network from which to obtain the data gathered from the at least one social network, the one or more members capable of providing at least one component that is usable to form the reconstructed key.
  - 23. The computationally-implemented system of claim 22, wherein the circuitry for determining one or more members of the at least one social network from which to obtain the data gathered from the at least one social network, the one or more members capable of providing at least one component that is usable to form the reconstructed key comprises:
    - circuitry for determining the one or more members of the at least one social network based at least partially on at least a portion of the behavioral fingerprint associated with the authorized user.
  - 24. The computationally-implemented system of claim 22, wherein the circuitry for determining one or more members of the at least one social network from which to obtain the data gathered from the at least one social network, the one or more members capable of providing at least one component that is usable to form the reconstructed key comprises:
    - circuitry for determining the one or more members of the at least one social network using at least one feature provided by the at least one social network.
  - 25. The computationally-implemented system of claim 1, wherein the circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device comprises:
    - circuitry for receiving for at least a portion of the behavioral fingerprint at least one indicator corresponding to another device that is associated with the authorized user of the computing device.
  - 26. The computationally-implemented system of claim 1, wherein the circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device comprises:
    - circuitry for transmitting, via the network connection, at least a portion of the behavioral fingerprint associated with the authorized user of the computing device responsive at least in part to at least one indicator corresponding to another device that is associated with the authorized user of the computing device.
  - 27. The computationally-implemented system of claim 1, wherein the circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device comprises:
    - circuitry for transmitting, via the network connection, at least an update to at least a portion of the behavioral fingerprint associated with the authorized user of the computing device.
  - 28. The computationally-implemented system of claim 1, wherein the circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device comprises:
    - circuitry for transmitting, via the network connection, at least a most-recent change to at least a portion of the behavioral fingerprint associated with the authorized user of the computing device.
  - 29. The computationally-implemented system of claim 11, wherein the circuitry for altering at least a portion of the behavioral fingerprint associated with the authorized user as a function of one or more sensed actions of a device user and the two or more designated internet available entities comprises:
    - circuitry for altering at least a portion of the behavioral fingerprint associated with the authorized user as a function of one or more sensed actions of a device user, wherein the device user includes but is not limited to an authorized user of the computing device or is not authorized to use the computing device.
  - 30. The computationally-implemented system of claim 17, wherein the circuitry for disabling at least partially one or more devices of the authorized user if an alteration to at least a portion of the behavioral fingerprint is indicative that the one or more devices of the authorized user have been compromised with respect to authentication comprises:
    - circuitry for disabling at least partially one or more devices of the authorized user, the one or more devices including the computing device.
  - 31. The computationally-implemented system of claim 18, wherein the circuitry for disabling at least partially, via the computer server, at least one mobile device of the authorized user if at least a portion of the behavioral fingerprint is indicative that a level of authentication for the at least one mobile device is to be at least one of lowered to a predetermined level or lowered by a predetermined amount comprises:
    - circuitry for disabling at least partially, via the computer server, at least one mobile device of the authorized user, the at least one mobile device including the computing device.
  - 32. The computationally-implemented system of claim 1, wherein the circuitry for identifying a network connection coupling a computer server to a computing device comprises:
    - circuitry for recognizing at least one existing network connection over one or more networks.
  - 33. The computationally-implemented system of claim 1, wherein the circuitry for identifying a network connection coupling a computer server to a computing device comprises:
    - circuitry for establishing at least one network connection over at least one network.
  - 34. The computationally-implemented system of claim 1, wherein the circuitry for identifying a network connection coupling a computer server to a computing device comprises:
    - circuitry for identifying at least one network connection having one or more nodes communicatively coupling the computer server and the computing device.
  - 35. The computationally-implemented system of claim 1, wherein the circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device comprises:
    - circuitry for transmitting at least a portion of the behavioral fingerprint to at least one other server.
  - 36. The computationally-implemented system of claim 1, wherein the circuitry for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device comprises:
    - circuitry for transmitting to the computing device the at least one status of the authorized user with respect to the computing device.
  - 37. The computationally-implemented system of claim 1, wherein the circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network comprises:
    - circuitry for reacquiring at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key.
  - 38. The computationally-implemented system of claim 1, wherein the circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network comprises:
    - circuitry for reactivating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a recreated key that is at least partially formed via data gathered from at least one social network.
  - 39. The computationally-implemented system of claim 1, wherein the circuitry for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network comprises:
    - circuitry for rebuilding at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on one or more observations.
  - 40. The computationally-implemented system of claim 1, wherein the circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key comprises:
    - circuitry for generating a security certificate associated with the authorized user based at least partially on at least one secret key.
  - 41. The computationally-implemented system of claim 1, wherein the circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key comprises:
    - circuitry for generating a security certificate associated with the authorized user based at least partially on at least one symmetric key.
  - 42. The computationally-implemented system of claim 1, wherein the circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key comprises:
    - circuitry for generating a security certificate associated with the authorized user based at least partially on at least one private key of a public-private key pair.
  - 43. The computationally-implemented system of claim 1, wherein the circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key comprises:
    - circuitry for generating a public-key infrastructure (PKI) certificate associated with the authorized user based at least partially on at least one cryptographic key.
  - 44. The computationally-implemented system of claim 1, wherein the circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key comprises:
    - circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key in conjunction with at least one other entity.
  - 45. The computationally-implemented system of claim 44, wherein the circuitry for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key in conjunction with at least one other entity comprises:
    - circuitry for requesting a security certificate associated with the authorized user from at least one other entity.
  - 46. The computationally-implemented system of claim 45, wherein the circuitry for requesting a security certificate associated with the authorized user from at least one other entity comprises:
    - circuitry for requesting a security certificate associated with the authorized user from at least one certificate authority.
  - 47. The computationally-implemented system of claim 1, wherein the circuitry for producing one or more derivations of the at least one cryptographic key to enable distribution of the one or more derivations of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via the data gathered from the at least one social network comprises:
    - circuitry for producing one or more portions of the at least one cryptographic key to enable electronic transmission of the one or more portions of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via the data gathered from the at least one social network.
  - 48. The computationally-implemented system of claim 1, wherein the circuitry for producing one or more derivations of the at least one cryptographic key to enable distribution of the one or more derivations of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via the data gathered from the at least one social network comprises:
    - circuitry for producing one or more encoded fragments of the at least one cryptographic key to enable distribution of the one or more encoded fragments of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via data gathered via at least one of a social network protocol or a social network application programming interface (API).
  - 49. The computationally-implemented system of claim 19, wherein the one or more derivations of the at least one cryptographic key include but are not limited to the two or more components of the at least one private key.
  - 50. The computationally-implemented system of claim 20, wherein the one or more derivations of the at least one cryptographic key include but are not limited to the one or more components that are derived from the at least one private key.
  - 51. The computationally-implemented system of claim 22, wherein the one or more derivations of the at least one cryptographic key include but are not limited to the at least one component that is usable to form the reconstructed key.

52. A computationally-implemented system, comprising:
- (A) means for identifying a network connection coupling a computer server to a computing device; and
  
  (B) means for transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device, including at least;
  
  (1) means for regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network, including at least;
  
  (a) means for generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key; and
  
  (b) means for producing one or more derivations of the at least one cryptographic key to enable distribution of the one or more derivations of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via the data gathered from the at least one social network.

53. A computationally-implemented method, comprising:
- (A) identifying a network connection coupling a computer server to a computing device; and
  
  (B) transmitting, via the network connection, at least a portion of a behavioral fingerprint associated with an authorized user of the computing device, at least a portion of the behavioral fingerprint providing at least one status of the authorized user with respect to the computing device, including at least;
  
  (1) regenerating at least a portion of the behavioral fingerprint associated with the authorized user based at least partially on a reconstructed key that is at least partially formed via data gathered from at least one social network, including at least;
  
  (a) generating a security certificate associated with the authorized user based at least partially on at least one cryptographic key; and
  
  (b) producing one or more derivations of the at least one cryptographic key to enable distribution of the one or more derivations of the at least one cryptographic key to enable reconstruction of the at least one cryptographic key via the data gathered from the at least one social network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
RPX Corporation
Original Assignee
Elwha LLC (Intellectual Ventures LLC)
Inventors
Huang, Xuedong, Hyde, Roderick A., Gerrity, Daniel A., Dyor, Matthew G., Tegreene, Clarence T., Davis, Marc E., Myhrvold, Nathan P., Malamud, Mark A., Lord, Robert W., Lord, Richard T., Levien, Royce A.
Primary Examiner(s)
Cervetti, David Garcia
Assistant Examiner(s)
ABEDIN, SHANTO

Application Number

US13/538,385
Publication Number

US 20130167207A1
Time in Patent Office

844 Days
Field of Search

713/182, 713/168, 713/175, 726 1- 5, 726 26- 30
US Class Current

726/3
CPC Class Codes

G06F 21/316 by observing the pattern of...

Network acquired behavioral fingerprint for authentication

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

146 Citations

53 Claims

Specification

Solutions

Use Cases

Quick Links

Network acquired behavioral fingerprint for authentication

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

146 Citations

53 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links