Authentication based on a current location of a communications device associated with an entity

US 8,904,496 B1
Filed: 03/30/2012
Issued: 12/02/2014
Est. Priority Date: 03/30/2012
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for use in authentication, the method comprising:

storing a location history in connection with a communications device associated with an entity, wherein the location history comprises locations visited by the communications device and times associated with the visits to those locations;

receiving an authentication request to authenticate the identity of the entity requiring access to a computerized resource;

receiving a current location of the communications device associated with the entity and a current time;

based on the location history, the current location, and the current time, performing an analysis;

based on the analysis, determining a challenge to issue to the entity; and

based on the challenge, generating an authentication result, wherein the authentication result can be used for granting the entity access to the computerized resource.

View all claims

9 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

There is disclosed a method and system for use in authenticating an entity in connection with a computerized resource. An authentication request is received from entity for access to computerized resource. An input signal is received from a communications device associated with entity. The input signal comprises current location of communications device. The current location of communications device is derived from input signal. A location history in connection with communications device is captured. The location history comprises a record of discrete locations visited by communications device over a period of time. An analysis is performed between current location of the communications device and location history in connection with communications device. An authentication result is generated based on analysis between current location of communications device and location history in connection with communications device. The authentication result can be used for authenticating entity.

32 Citations

View as Search Results

18 Claims

1. A computer-implemented method for use in authentication, the method comprising:
- storing a location history in connection with a communications device associated with an entity, wherein the location history comprises locations visited by the communications device and times associated with the visits to those locations;
  
  receiving an authentication request to authenticate the identity of the entity requiring access to a computerized resource;
  
  receiving a current location of the communications device associated with the entity and a current time;
  
  based on the location history, the current location, and the current time, performing an analysis;
  
  based on the analysis, determining a challenge to issue to the entity; and
  
  based on the challenge, generating an authentication result, wherein the authentication result can be used for granting the entity access to the computerized resource.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method as claimed in claim 1, further comprising:
    - capturing further records of discrete locations visited by the communications device; and
      
      updating the location history in response to capturing further records.
  - 3. The method as claimed in claim 1, wherein the current location comprises the current geolocation co-ordinates of the communications device.
  - 4. The method as claimed in claim 1, wherein the current location comprises the location of the communications device with respect to at least one other device.
  - 5. The method as claimed in claim 1, wherein the location history comprises multiple records with each record including a communications device identifier, a location of the communications device and a timestamp.
  - 6. The method as claimed in claim 1, wherein generating the authentication result comprises outputting, as an authentication signal, a risk score.
  - 7. The method as claimed in claim 6, further comprising:
    - granting access to the computerized resource in response to the risk score exceeding a predefined threshold; and
      
      denying access to the computerized resource in response to the risk score not exceeding the predefined threshold.
  - 8. The method as claimed in claim 1, wherein the communications device comprises a mobile wireless communications device with GPS capability.
  - 9. The method as claimed in claim 8, wherein the communications device comprises a mobile phone.

10. A system for use in authentication, the system comprising a processor and memory, wherein the system is configured to:
- store a location history in connection with a communications device associated with an entity, wherein the location history comprises locations visited by the communications device and times associated with the visits to those locations;
  
  receive an authentication request to authenticate the identity of the entity requiring access to a computerized resource;
  
  receive a current location of the communications device associated with the entity, and a current time;
  
  based on the location history, the current location, and the current time, perform an analysis;
  
  based on the analysis, determine a challenge to issue to the entity; and
  
  based on the challenge, generate an authentication wherein the authentication result can be used for granting the entity access to the computerized resource.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The system as claimed in claim 10, wherein the system is further configured to:
    - capture further records of discrete locations visited by the communications device; and
      
      update the location history in response to capturing further records.
  - 12. The system as claimed in claim 10, wherein the current location comprises the current geolocation co-ordinates of the communications device.
  - 13. The system as claimed in claim 10, wherein the current location comprises the location of the communications device with respect to at least one other device.
  - 14. The system as claimed in claim 10, wherein the location history comprises multiple records with each record including a communications device identifier, a location of the communications device and a timestamp.
  - 15. The system as claimed in claim 10, wherein generating the authentication result comprises outputting, as an authentication signal, a risk score.
  - 16. The system as claimed in claim 15, wherein the system is further configured to:
    - grant access to the computerized resource in response to the risk score exceeding a predefined threshold; and
      
      deny access to the computerized resource in response to the risk score not exceeding the predefined threshold.
  - 17. The system as claimed in claim 10, wherein the communications device comprises a mobile wireless communications device with GPS capability.
  - 18. The system as claimed in claim 17, wherein the communications device comprises a mobile phone.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Emc IP Holding Company LLC (Dell Technologies Inc.)
Original Assignee
EMC Corporation (Dell Technologies Inc.)
Inventors
Bailey, Daniel V., Friedman, Lawrence N., Dotan, Yedidya, Curry, Samuel, Zolfonoon, Riaz
Primary Examiner(s)
Armouche, Hadi
Assistant Examiner(s)
Wright, Bryan

Application Number

US13/435,951
Time in Patent Office

977 Days
Field of Search

713/155, 726/5
US Class Current

726/5
CPC Class Codes

G06F 21/44   Program or device authentic...

G06F 21/552   involving long-term monitor...

G06F 2221/2111   Location-sensitive, e.g. ge...

G06F 2221/2151   Time stamp

H04L 2209/80   Wireless network architectu...

H04L 9/3271   using challenge-response

H04L 9/3297   involving time stamps, e.g....

H04W 12/06   Authentication

H04W 12/63   Location-dependent; Proximi...

H04W 12/67   Risk-dependent, e.g. select...

Authentication based on a current location of a communications device associated with an entity

First Claim

9 Assignments

0 Petitions

Accused Products

Abstract

32 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication based on a current location of a communications device associated with an entity

First Claim

9 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

32 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links