Authentication using geographic location and physical gestures

US 9,119,068 B1
Filed: 01/09/2013
Issued: 08/25/2015
Est. Priority Date: 01/09/2013
Status: Active Grant

First Claim

Patent Images

1. A method of determining authentication information on a mobile device, said method comprising:

prompting a user to perform a gesture with said mobile device, wherein the user is prompted to perform the gesture multiple times;

recording a geographic location of said mobile device proximate in time of each instance when the user performs the gesture multiple times;

detecting, using at least one sensor of said mobile device, a plurality of movements of said mobile device caused by said user performing said gesture multiple times with said mobile device at the recorded geographic location;

recording, during said movements, a plurality of data sets describing said movements, each data set describing one of said movements when said gesture is performed;

determining a tolerance range of said gesture based upon differences between said plurality of data sets, wherein the tolerance range of said gesture is customized based on an accuracy of the user performing said gesture multiple times;

determining a single set of data from said plurality of data sets as describing said gesture;

determining a geographic tolerance range for said geographic location; and

storing said single set of data describing said gesture together with said recorded geographic location and said geographic tolerance range and said gesture tolerance range as said authentication information in persistent storage of said mobile device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A gesture with a mobile device by the user is required for authorized access to the mobile device. An activating motion is performed to trigger authentication mode. Sensors detect the current geographic location of the device and a gesture performed by the user. Geographic location and a gesture are matched against stored data. Optionally, the detected data may fall within a tolerance range for both the geographic location and a gesture to be authorized access. Various techniques to permit different access levels are implemented based upon the type of gesture performed or the location where performed. During authentication setup a performed gesture at a particular geographic location is stored in the device. Performance of the same gesture multiple times allows for tolerance ranges to be established.

35 Citations

View as Search Results

10 Claims

1. A method of determining authentication information on a mobile device, said method comprising:
- prompting a user to perform a gesture with said mobile device, wherein the user is prompted to perform the gesture multiple times;
  
  recording a geographic location of said mobile device proximate in time of each instance when the user performs the gesture multiple times;
  
  detecting, using at least one sensor of said mobile device, a plurality of movements of said mobile device caused by said user performing said gesture multiple times with said mobile device at the recorded geographic location;
  
  recording, during said movements, a plurality of data sets describing said movements, each data set describing one of said movements when said gesture is performed;
  
  determining a tolerance range of said gesture based upon differences between said plurality of data sets, wherein the tolerance range of said gesture is customized based on an accuracy of the user performing said gesture multiple times;
  
  determining a single set of data from said plurality of data sets as describing said gesture;
  
  determining a geographic tolerance range for said geographic location; and
  
  storing said single set of data describing said gesture together with said recorded geographic location and said geographic tolerance range and said gesture tolerance range as said authentication information in persistent storage of said mobile device.
- View Dependent Claims (2, 3)
- - 2. The method as recited in claim 1 wherein each of said movements begins with said mobile device being oriented in an initial position in three dimensions and each of said movements ends with said mobile device being oriented in said initial position, said method further comprising:
    - said mobile device detecting non-movement of said mobile device in said initial position for a predetermined number of seconds as indicating the end of each of said movements.
  - 3. The method as recited in claim 1 wherein said movement of said mobile device includes a change in orientation of said mobile device and a change in displacement of said mobile device caused by said user.

4. A method of authenticating a user on a mobile device, said method comprising:
- performing a setup procedure including;
  
  prompting the user to perform a gesture with said mobile device, wherein the user is prompted to perform the gesture multiple times;
  
  recording a geographic location of said mobile device proximate in time of each instance when the user performs the gesture multiple times;
  
  detecting, using at least one sensor of said mobile device, a plurality of movements of said mobile device caused by said user performing said gesture multiple times with said mobile device at the recorded geographic location;
  
  recording, during said movements, a plurality of data sets describing said movements, each data set describing one of said movements when said gesture is performed;
  
  determining a tolerance range of said gesture based upon differences between said plurality of data sets, wherein the tolerance range of said gesture is customized based on an accuracy of the user performing said gesture multiple times;
  
  determining a single set of data from said plurality of data sets as describing said gesture;
  
  determining a geographic tolerance range for said geographic location; and
  
  storing said single set of data describing said gesture together with said recorded geographic location and said geographic tolerance range and said gesture tolerance range as authentication information in persistent storage of said mobile device; and
  
  authenticating the user on the mobile device, including;
  
  outputting, from said mobile device, a signal indicating that said mobile device is ready to begin authentication;
  
  detecting after said outputting, using at least one sensor of said mobile device, a movement of said mobile device caused by said user performing the gesture with said mobile device;
  
  recording, during said movement, current data describing said movement associated with said gesture;
  
  recording a geographic location of said mobile corresponding to a time when said current data describing said movement is detected to generate a recorded geographic location;
  
  retrieving from persistent storage of said mobile device the authentication information;
  
  determining whether said current data matches the single set of data within said allowed gesture tolerance range;
  
  determining whether the recorded geographic location of said mobile device matches the stored geographic location associated with said gesture within the geographic tolerance range; and
  
  taking an action on said mobile device in response to detecting a match for both the gesture and the geographic location.
- View Dependent Claims (5, 6, 7)
- - 5. The method as recited in claim 4 further comprising:
    - detecting an input on said mobile device by said user to activate said mobile device for authentication;
      
      determining whether said input data matches stored data, said stored data describing said input; and
      
      outputting said signal from said mobile device only when it is determined that said input data matches said stored data.
  - 6. The method as recited in claim 4 wherein said movement of said mobile device includes a change in orientation of said mobile device and a change in displacement of said mobile device caused by said user.
  - 7. The method as recited in claim 4 wherein said taking an action includes authenticating said user to said mobile device or authenticating said user to a software application of said mobile device.

8. A method of authenticating a user on a mobile device, said method comprising:
- performing a first setup procedure to generate a first set of authentication information including;
  
  prompting the user to perform a first gesture with said mobile device, wherein the user is prompted to perform the first gesture multiple times in a first geographic location;
  
  detecting, using at least one sensor of said mobile device, a plurality of movements of said mobile device caused by said user performing said first gesture multiple times with said mobile device at the first geographic location;
  
  recording, during said movements, a plurality of data sets describing said movements, each data set describing one of said movements when said first gesture is performed;
  
  determining a tolerance range of said first gesture based upon differences between said plurality of data sets, wherein the tolerance range of said first gesture is customized based on an accuracy of the user performing said first gesture multiple times;
  
  determining a first single set of data from said plurality of data sets as describing said first gesture;
  
  determining a first geographic location and a first geographic tolerance range customized based on recording the geographic location each time the user performed said first gesture multiple times;
  
  storing said first single set of data describing said first gesture together with said first geographic location, said first geographic tolerance range and said first gesture tolerance range as first authentication information in persistent storage of said mobile device; and
  
  performing a second setup procedure to generate a second set of authentication information including;
  
  prompting the user to perform a second gesture with said mobile device, wherein the user is prompted to perform the second gesture multiple times in a second geographic location;
  
  detecting, using at least one sensor of said mobile device, a plurality of movements of said mobile device caused by said user performing said second gesture multiple times with said mobile device at the second geographic location;
  
  recording, during said movements, a plurality of second data sets describing said movements, each data set describing one of said movements when said second gesture is performed;
  
  determining a second tolerance range of said second gesture based upon differences between said second plurality of data sets, wherein the tolerance range of said second gesture is customized based on an accuracy of the user performing said second gesture multiple times;
  
  determining a second single set of data from said plurality of data sets as describing said gesture;
  
  determining a second geographic location and a second geographic tolerance range customized based on recording the geographic location each time the user performed said second gesture multiple times andstoring said second single set of data describing said gesture together with said second geographic location, said second geographic tolerance range and said second gesture tolerance range as second authentication information in persistent storage of said mobile device; and
  
  authentication the user on the mobile device, including;
  
  associating a first set of access privileges with said first gesture and said first location;
  
  associating a second set of access privileges with said second gesture and said second location;
  
  outputting, from said mobile device, a signal indicating that said mobile device is ready to begin authentication;
  
  detecting after said outputting, using at least one sensor of said mobile device, a movement of said mobile device caused by said user performing a gesture with said mobile device;
  
  recording, during said movement, current data describing said movement;
  
  determining a geographic location of said mobile device during said movement;
  
  using said determined geographic location as a key to select said first authentication information responsive to said determined geographic location being said first geographic location and to select said second authentication information responsive to said determined geographic location being said second geographic location;
  
  retrieving from said persistent storage of said mobile device said selected authentication information;
  
  determining whether said current data matches said selected authentication information within said allowed gesture tolerance range of said selected authentication information; and
  
  in response to a match authenticating said mobile device, providing access according to the access privileges associated with the selected set of authentication information.
- View Dependent Claims (9, 10)
- - 9. The method as recited in claim 8 further comprising:
    - detecting an input on said mobile device by said user to activate said mobile device for authentication;
      
      determining whether said input data matches stored data, said stored data describing said input; and
      
      outputting said signal from said mobile device only when it is determined that said input data matches said stored data.
  - 10. The method as recited in claim 8 wherein said movement of said mobile device includes a change in orientation of said mobile device and a change in displacement of said mobile device caused by said user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Trend Micro Inc.
Original Assignee
Trend Micro Inc.
Inventors
Hubble, Jeremy
Primary Examiner(s)
Eng, George
Assistant Examiner(s)
Ahsan, Umair

Application Number

US13/737,825
Time in Patent Office

958 Days
Field of Search

455/411, 455/410, 455/418, 4554561-457, 455/565, 455/567, 380/247, 380/249, 380/250, 726/2, 726 16- 17, 726 26- 30, 726/35
US Class Current

1/1
CPC Class Codes

H04W 12/06   Authentication

H04W 12/30   Security of mobile devices;...

H04W 12/63   Location-dependent; Proximi...

H04W 12/68   Gesture-dependent or behavi...

H04W 4/027   using movement velocity, ac...

H04W 88/02   Terminal devices

Authentication using geographic location and physical gestures

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

35 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication using geographic location and physical gestures

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

35 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links