Methods and apparatus for knowledge-based authentication using historically-aware questionnaires
First Claim
1. A knowledge-based authentication method performed by a server for restricting access of a user to a restricted resource, comprising the steps of:
- obtaining a plurality of historically different answers from said user for each of at least one question during a registration phase with said user, wherein said plurality of historically different answers for a given question are different for at least two different periods of time;
challenging said user with at least one question that tests the historical knowledge of said user within said historically different answers to said given question for a given period of time;
receiving a response from said user to said at least one question; and
granting access to said restricted resource if said response is accurate for said given period of time based on said historically different answers, wherein at least one of said steps are performed by at least one hardware device.
9 Assignments
0 Petitions
Accused Products
Abstract
Knowledge-based authentication (KBA) is provided using historically-aware questionnaires. The KBA can obtain a plurality of historically different answers from the user to at least one question; challenge the user with the question for a given period of time; receive a response from the user to the question; and grant access to the restricted resource if the response is accurate for the given period of time based on the historically different answers. Alternatively, the KBA can be based on historically aware answers to a set of inter-related questions. The user is challenged with the inter-related questions for a given period of time. Historically different answers can comprise answers with applicable dates, or correct answers to the question over time. Historically aware answers can comprise an answer that is accurate for an indicated date or period of time. An accurate response demonstrates knowledge of multiple related personal events.
27 Citations
41 Claims
-
1. A knowledge-based authentication method performed by a server for restricting access of a user to a restricted resource, comprising the steps of:
-
obtaining a plurality of historically different answers from said user for each of at least one question during a registration phase with said user, wherein said plurality of historically different answers for a given question are different for at least two different periods of time; challenging said user with at least one question that tests the historical knowledge of said user within said historically different answers to said given question for a given period of time; receiving a response from said user to said at least one question; and granting access to said restricted resource if said response is accurate for said given period of time based on said historically different answers, wherein at least one of said steps are performed by at least one hardware device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A knowledge-based authentication method performed by a server for restricting access of a user to a restricted resource, comprising the steps of:
-
obtaining a plurality of historically aware answers from said user to a set of inter-related questions during a registration phase with said user, wherein each of said historically aware answers comprises an answer to a given question that is accurate for an indicated period of time; challenging said user with one or more of said inter-related questions for a given period of time; receiving a response from said user to said one or more inter-related questions; and granting access to said restricted resource if said response is accurate for said given period of time based on said historically aware answers, wherein at least one of said steps are performed by at least one hardware device. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A knowledge-based authentication server for restricting access of a user to a restricted resource, comprising:
-
a memory; and at least one hardware device, coupled to the memory, operative to implement the following steps; obtaining a plurality of historically different answers from said user for each of at least one question during a registration phase with said user, wherein said plurality of historically different answers for a given question are different for at least two different periods of time; challenging said user with at least one question that tests the historical knowledge of said user within said historically different answers to said given question for a given period of time; receiving a response from said user to said at least one question; and granting access to said restricted resource if said response is accurate for said given period of time based on said historically different answers. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33)
-
-
34. An article of manufacture for knowledge-based authentication by a server for restricting access of a user to a restricted resource, comprising a non-transitory machine readable recordable medium containing one or more programs which when executed implement the steps of:
-
obtaining a plurality of historically different answers from said user for each of at least one question during a registration phase with said user, wherein said plurality of historically different answers for a given question are different for at least two different periods of time; challenging said user with at least one question that tests the historical knowledge of said user within said historically different answers to said given question for a given period of time; receiving a response from said user to said at least one question; and granting access to said restricted resource if said response is accurate for said given period of time based on said historically different answers.
-
-
35. A knowledge-based authentication server for restricting access of a user to a restricted resource, comprising:
-
a memory; and at least one hardware device, coupled to the memory, operative to implement the following steps; obtaining a plurality of historically aware answers from said user to a set of inter-related questions during a registration phase with said user, wherein each of said historically aware answers comprises an answer to a given question that is accurate for an indicated period of time; challenging said user with one or more of said inter-related questions for a given period of time; receiving a response from said user to said one or more inter-related questions; and granting access to said restricted resource if said response is accurate for said given period of time based on said historically aware answers. - View Dependent Claims (36, 37, 38, 39, 40)
-
-
41. An article of manufacture for knowledge-based authentication by a server for restricting access of a user to a restricted resource, comprising a non-transitory machine readable recordable medium containing one or more programs which when executed implement the steps of:
-
obtaining a plurality of historically aware answers from said user to a set of inter-related questions during a registration phase with said user, wherein each of said historically aware answers comprises an answer to a given question that is accurate for an indicated period of time; challenging said user with one or more of said inter-related questions for a given period of time; receiving a response from said user to said one or more inter-related questions; and granting access to said restricted resource if said response is accurate for said given period of time based on said historically aware answers.
-
Specification