Authentication frequency and challenge type based on environmental and physiological properties
First Claim
1. A method comprising:
- measuring an environmental property with an environmental sensor at a first time to yield a first environmental property measurement;
measuring the environmental property with the environmental sensor at a second time which is later than the first time to yield a second environmental property measurement;
generating, via a processor, an authentication challenge associated with a user gaining access to a computing device, wherein a type of the authentication challenge is selected from a plurality of types of authentication challenges based on a difference between the first environmental property measurement and the second environmental property measurement, wherein the type of the authentication challenge is based on a time difference between the first environmental property measurement and the second environmental property measurement; and
periodically presenting the authentication challenge to a user, where a correct response to the authentication challenge is required for the user to access the computing device.
23 Assignments
0 Petitions
Accused Products
Abstract
An apparatus and method are disclosed for determining authentication frequency (i.e., the length of time between authenticating and re-authenticating a user) and challenge type (e.g., username/password, fingerprint recognition, voice recognition, etc.) based on one or more environmental properties (e.g., ambient noise level, ambient luminosity, temperature, etc.), or one or more physiological properties of a user (e.g., heart rate, blood pressure, etc.), or both. Advantageously, the illustrative embodiment enables authentication frequency and challenge type to be adjusted based on the likelihood of malicious activity, as inferred from these properties. In addition, the illustrative embodiment enables the authentication challenge type to be tailored to particular environmental conditions (e.g., noisy environments, dark environments, etc.).
73 Citations
10 Claims
-
1. A method comprising:
-
measuring an environmental property with an environmental sensor at a first time to yield a first environmental property measurement; measuring the environmental property with the environmental sensor at a second time which is later than the first time to yield a second environmental property measurement; generating, via a processor, an authentication challenge associated with a user gaining access to a computing device, wherein a type of the authentication challenge is selected from a plurality of types of authentication challenges based on a difference between the first environmental property measurement and the second environmental property measurement, wherein the type of the authentication challenge is based on a time difference between the first environmental property measurement and the second environmental property measurement; and periodically presenting the authentication challenge to a user, where a correct response to the authentication challenge is required for the user to access the computing device. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprising:
-
measuring, with a physiological sensor, a physiological property of a user at a first time to yield a first physiological property measurement; measuring, with the physiological sensor, the physiological property of the user at a second time that is later than the first time to yield a second physiological property measurement; generating, via a processor, an authentication challenge associated with a user gaining access to a computing device, wherein a type of the authentication challenge is selected from a plurality of types of authentication challenges based on a difference in the first physiological property measurement and the second physiological property measurement, and wherein the type of the authentication challenge is based on the physiological property at the first time and at the second time; and periodically presenting the authentication challenge to the user. - View Dependent Claims (6, 7, 8)
-
-
9. A system comprising:
-
a processor; and a computer-readable storage medium storing instructions which, when executed by the processor, cause the processor to perform operations comprising; measuring, at a physiological sensor, a physiological property of a user at a first time to yield a first physiological property measurement; measuring, at the physiological sensor, the physiological property of the user at a second time that is later than the first time to yield a second physiological property measurement; generating an authentication challenge associated with the user gaining access to a computing device, wherein a type of the authentication challenge is selected from a plurality of types of authentication challenges based on a difference in the first physiological property measurement and the second physiological property measurement, and wherein the type of the authentication challenge is based on the physiological property at the first time and at the second time; and periodically presenting the authentication challenge to the user. - View Dependent Claims (10)
-
Specification