Location-based security system for portable electronic device

US 8,881,263 B2
Filed: 09/14/2012
Issued: 11/04/2014
Est. Priority Date: 02/17/2012
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

receiving, via an input of a portable electronic device, a request to access the electronic device;

automatically determining, by a processor without a requirement for user entry of location information, a first familiar area for the electronic device by;

receiving, via an input of the portable electronic device, a plurality of successful user authentication entries, wherein each entry corresponds to a location,saving, in a computer-readable memory, data representative of each of the entries and each entry'"'"'s corresponding location,determining that the memory contains at least a threshold number of entries for a single location, andclassifying the single location as the first familiar area; and

implementing, on the electronic device, a first security rule requiring a first authentication process when the electronic device is physically located in the first familiar area, and a second security rule requiring a second authentication process when the electronic device is located outside of any familiar area.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A location-dependent security method and system for a portable electronic device is disclosed. Without requiring that the user enter any location information, the system determines one or more familiar areas for the device based on locations where the device has received at least a threshold amount of successful user authentication entries. Thereafter, when a user attempts to access the device or an application of the device, the device will implement a first authentication process if the device is in one of the familiar areas, or a different authentication process if the device is not in one of the familiar areas.

22 Citations

View as Search Results

20 Claims

1. A method, comprising:
- receiving, via an input of a portable electronic device, a request to access the electronic device;
  
  automatically determining, by a processor without a requirement for user entry of location information, a first familiar area for the electronic device by;
  
  receiving, via an input of the portable electronic device, a plurality of successful user authentication entries, wherein each entry corresponds to a location,saving, in a computer-readable memory, data representative of each of the entries and each entry'"'"'s corresponding location,determining that the memory contains at least a threshold number of entries for a single location, andclassifying the single location as the first familiar area; and
  
  implementing, on the electronic device, a first security rule requiring a first authentication process when the electronic device is physically located in the first familiar area, and a second security rule requiring a second authentication process when the electronic device is located outside of any familiar area.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, further comprising:
    - receiving, via the input, an additional successful user authentication entry that corresponds to a location;
      
      determining whether the memory already contains at least a threshold number of successful user authentication entries;
      
      if the memory contains at least the threshold number of successful user authentication entries, purging the oldest entry from the memory;
      
      saving, in the memory, data representative of the additional successful user authentication entry;
      
      determining, based on the saved data, one or more locations where successful user authentication entries most frequently occurred; and
      
      classifying each of the determined one or more locations where successful user authentication entries most frequently occurred as a familiar area.
  - 3. The method of claim 1, wherein determining the location of the device comprises one or more of:
    - receiving global positioning system data and determining the location based on the global positioning system data; and
      
      receiving a network address corresponding to a wireless communications network that the device has detected, and determining the location based on the network address.
  - 4. The method of claim 1, wherein determining the first familiar area also comprises:
    - determining a set of successful user authentication entries that were received during a time period,grouping the entries from the set into a plurality of location-dependent subgroups,determining a size of the set and a size of each subgroup,identifying each subgroup having a size that at least equals a size threshold, wherein the size threshold corresponds to a portion of the set size, andfor any subgroup having a size that at least equals the size threshold, classifying the location for that subgroup'"'"'s entries as the first familiar area.
  - 5. The method of claim 4, wherein grouping the entries from the set into a plurality of location-dependent subgroups comprises:
    - identifying entries having locations that are within a threshold distance from each other; and
      
      grouping the identified entries into one of the subgroups.
  - 6. The method of claim 1, further comprising automatically determining, by a processor without a requirement for user entry of location information, a second familiar area for the electronic device by:
    - automatically and periodically gathering location information for the device;
      
      saving the gathered location information in the memory;
      
      accessing, by the processor, the saved location information and automatically determining a location for which the gathered location information is saved in the memory in at least a threshold amount; and
      
      setting the determined location as the second familiar area.
  - 7. The method of claim 1, further comprising automatically determining, by a processor without a requirement for user entry of location information, a second familiar area for the electronic device by:
    - automatically and periodically gathering location information for the device, wherein the location information includes global positioning system data and wireless network data;
      
      identifying, by the processor, a position where the device transitions from a global positioning system to a single wireless network; and
      
      setting the determined position as the second familiar area.
  - 8. The method of claim 1, further comprising:
    - determining a current location of the device;
      
      determining that the current location is within the first familiar area; and
      
      presenting, on a display of the device, a user prompt to perform the first authentication process.
  - 9. The method of claim 1, further comprising:
    - automatically determining, by the processor without a requirement for user entry of location information, a second familiar area based on the data; and
      
      implementing, on the electronic device, a security rule requiring a third authentication process when the device is located in the second familiar area.
  - 10. The method of claim 1, wherein the first authentication process comprises entry of a first passcode, and the second authentication process comprises entry of a second passcode.
  - 11. The method of claim 1, wherein the first authentication process comprises receiving a touch input, and the second authentication process comprises entry of a passcode.

12. A system, comprising:
- a processor, anda computer-readable memory having programming instructions that, when executed, instruct the processor to;
  
  receive a plurality of successful user authentication entries for a portable electronic device, wherein each entry corresponds to a location;
  
  save data representative of each of the entries and each successful user authentication entry'"'"'s corresponding location;
  
  determine that the memory contains at least a threshold number of successful user authentication entries for a single location;
  
  based on the determining that the memory contains at least the threshold number of entries for a single location, classify, without a requirement for user entry of location information, the single location as a first familiar area;
  
  receive a user request to access the electronic device;
  
  in response to the user request, determine a current location for the electronic device;
  
  implement a first authentication process if the current location corresponds to the first familiar area and a second authentication process if the current location does not correspond to any familiar area; and
  
  output a prompt to perform the implemented authentication process.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The system of claim 12, further comprising additional programming instructions that, when executed, instruct the processor to:
    - receive an additional successful user authentication entry that corresponds to a location;
      
      determine whether the memory already contains at least a threshold number of successful user authentication entries;
      
      if the memory contains at least the threshold number of successful user authentication entries, purge the oldest entry from the memory;
      
      save, in the memory, data representative of the additional successful user authentication entry;
      
      determine based on the saved data, one or more locations where successful user authentication entries most frequently occurred; and
      
      classify each of the determined one or more locations where successful user authentication entries most frequently occurred as a familiar area.
  - 14. The system of claim 12, wherein the programming instructions that, when executed, instruct the processor to determine the first familiar area also comprise instructions to:
    - determine a set of successful user authentication entries that were received during a time period;
      
      group the entries from the set into a plurality of location-dependent subgroups;
      
      determine a size of the set and a size of each subgroup;
      
      identify each subgroup having a size that at least equals a size threshold, wherein the size threshold corresponds to a portion of the set size; and
      
      for any subgroup having a size that at least equals the size threshold, classify the location for that subgroup'"'"'s entries as the first familiar area.
  - 15. The system of claim 14, wherein the programming instructions that, when executed, instruct the processor to group the entries from the set into a plurality of location-dependent subgroups also comprise instructions to:
    - identify entries having locations that are within a threshold distance from each other; and
      
      group the identified entries into one of the subgroups.
  - 16. The system of claim 12, further comprising additional programming instructions that, when executed, instruct the processor to determine a second familiar area for the electronic device by:
    - automatically and periodically gathering location information for the device;
      
      saving the gathered location information in the memory;
      
      accessing, by the processor, the saved location information and automatically determining a location for which the gathered location information is saved in the memory in at least a threshold amount; and
      
      setting the determined location as the second familiar area.
  - 17. The system of claim 12, further comprising additional programming instructions that, when executed, instruct the processor to determine a second familiar area for the electronic device by:
    - automatically and periodically gathering location information for the electronic device, wherein the location information includes global positioning system data and wireless network data;
      
      identifying a position where the device transitions from a global positioning system to a single wireless network; and
      
      setting the determined position as the second familiar area.
  - 18. The system of claim 12, wherein the first authentication process and the second authentication process differ from each other in at least one of the following ways:
    - length of timeout periods;
      
      number of authentication actions required; and
      
      types of authentication actions required.
  - 19. The system of claim 12, wherein the processor and the computer-readable memory comprise elements of the portable electronic device.
  - 20. The system of claim 12, wherein:
    - the portable electronic device is in wireless communication with a server; and
      
      the processor and the computer-readable memory comprise elements of the server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
Google Inc. (Alphabet Inc.)
Inventors
Hewinson, Phil
Primary Examiner(s)
LEWIS, LISA C

Application Number

US13/617,385
Publication Number

US 20130219454A1
Time in Patent Office

781 Days
Field of Search

726 1- 7, 726 16- 19, 455410-411
US Class Current

726/16
CPC Class Codes

G06F 16/29   Geographical information da...

G06F 21/31   User authentication

G06F 2221/2111   Location-sensitive, e.g. ge...

H04L 63/10   for controlling access to d...

Location-based security system for portable electronic device

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

22 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Location-based security system for portable electronic device

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

22 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links