Method and system for authenticating a user using media objects
First Claim
Patent Images
1. A method for authenticating a user, comprising:
- creating an account, wherein creating the account comprises;
presenting a category prompt to the user,receiving a selection of a category from the user,obtaining, from a media library, a plurality of stock media objects classified into the category, andreceiving, from the user, a selection of a valid media object from the plurality of stock media objects classified into the category, wherein the valid media object is one of the plurality of valid stock media objects;
receiving an account identifier from the user;
obtaining, based on the account identifier, a plurality of valid media objects;
presenting, to the user, a plurality of media objects comprising the plurality of valid media objects and a plurality of invalid media objects,receiving, from the user, a selection of a subset of the plurality of media objects to obtain a selected subset;
obtaining user metrics for risk analysis;
performing, by a computer hardware processor of a device, risk analysis to identify a risk level for authentication based on user metrics, wherein the risk level defines a number of attempts that the user is permitted to select the plurality of valid media objects;
authenticating, after receiving the selection, the user when a selected number of valid media objects in the selected subset satisfies a minimum number specified by the risk level, wherein the selected subset comprises at least one valid media object and at least one invalid media object; and
authorizing the user to access a resource when the user is authenticated.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for authenticating a user includes receiving an account identifier from the user, obtaining, based on the account identifier, a valid media objects, and presenting, to the user, media objects that include valid media objects and a invalid media objects. A selection of a subset of the media objects is received. The method further includes obtaining user metrics for risk analysis, performing, by a computer processor, risk analysis to identify a risk level based on user metrics, authenticating, based on the risk level and the selection of the subset, the user, and authorizing the user to access a resource when the user is authenticated.
-
Citations
24 Claims
-
1. A method for authenticating a user, comprising:
-
creating an account, wherein creating the account comprises; presenting a category prompt to the user, receiving a selection of a category from the user, obtaining, from a media library, a plurality of stock media objects classified into the category, and receiving, from the user, a selection of a valid media object from the plurality of stock media objects classified into the category, wherein the valid media object is one of the plurality of valid stock media objects; receiving an account identifier from the user; obtaining, based on the account identifier, a plurality of valid media objects; presenting, to the user, a plurality of media objects comprising the plurality of valid media objects and a plurality of invalid media objects, receiving, from the user, a selection of a subset of the plurality of media objects to obtain a selected subset; obtaining user metrics for risk analysis; performing, by a computer hardware processor of a device, risk analysis to identify a risk level for authentication based on user metrics, wherein the risk level defines a number of attempts that the user is permitted to select the plurality of valid media objects; authenticating, after receiving the selection, the user when a selected number of valid media objects in the selected subset satisfies a minimum number specified by the risk level, wherein the selected subset comprises at least one valid media object and at least one invalid media object; and authorizing the user to access a resource when the user is authenticated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for authenticating a user, comprising:
-
a computer hardware processor; a data repository for storing an account comprising a plurality of valid media object identifiers; and an authentication engine connected to the data repository, executing on the computer hardware processor, and comprising; a plurality of software instructions configured to; create an account, wherein creating the account comprises; presenting a category prompt to the user, receiving a selection of a category from the user, obtaining, from a media library, a plurality of stock media objects classified into the category, and receiving, from the user, a selection of a valid media object from the plurality of stock media objects classified into the category, wherein the valid media object is one of the plurality of valid stock media objects; obtain user metrics for risk analysis, perform risk analysis to identify a risk level for authentication based on the user metrics, wherein the risk level defines a number of attempts that the user is permitted to select the plurality of valid media objects, receive, from a user, an account identifier identifying the account, obtain, based on the account identifier, a plurality of valid media objects identified by the plurality of valid media object identifiers, present, to the user, a plurality of media objects comprising the plurality of valid media objects and a plurality of invalid media objects, receive, from the user, a selection of a subset of the plurality of media objects to obtain a selected subset, authenticate, after receiving the selection, the user when a selected number of valid media objects in the selected subset satisfies a minimum number specified by the risk level, wherein the selected subset comprises at least one valid media object and at least one invalid media object, and authorize the user to access a resource when the user is authenticated. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A non-transitory computer readable medium comprising computer readable program code for authenticating a user, the computer readable program code for:
-
creating an account, wherein creating the account comprises; presenting a category prompt to the user, receiving a selection of a category from the user, obtaining, from a media library, a plurality of stock media objects classified into the category, and receiving, from the user, a selection of a valid media object from the plurality of stock media objects classified into the category, wherein the valid media object is one of the plurality of valid stock media objects; receiving an account identifier from the user; obtaining, based on the account identifier, a plurality of valid media objects; presenting, to the user, a plurality of media objects comprising the plurality of valid media objects and a plurality of invalid media objects, receiving, from the user, a selection of a subset of the plurality of media objects to obtain a selected subset; obtaining user metrics for risk analysis; performing risk analysis to identify a risk level for authentication based on user metrics, wherein the risk level defines a number of attempts that the user is permitted to select the plurality of valid media objects; authenticating, after receiving the selection, the user when a selected number of valid media objects in the selected subset satisfies a minimum number specified by the risk level, wherein the selected subset comprises at least one valid media object and at least one invalid media object; and authorizing the user to access a resource when the user is authenticated. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24)
-
Specification