Advanced authentication techniques

US 9,258,301 B2
Filed: 12/02/2013
Issued: 02/09/2016
Est. Priority Date: 10/29/2013
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving at least one request to access at least one resource;

receiving at least one composite authentication credential, the at least one composite authentication credential comprising a first credential component and a second credential component, the first credential component comprising a sequential component indicating an order of input for a plurality of biometric signature elements and the second credential component comprising the plurality of biometric signature elements;

determining whether the first credential component is valid;

determining whether the second credential component is valid;

permitting, when the first credential component and the second credential component are valid, access to the at least one resource;

performing, when the first credential component is not valid, a first remedial action; and

performing, when the second credential component is not valid, a second remedial action, the second remedial action preventing further authentication attempts until at least one alternative authentication credential is validated, wherein the first remedial action is different from the second remedial action.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system, apparatus, and computer program product are provided for facilitating advanced authentication techniques. For example, a method is provided that includes receiving at least one request to access at least one resource and receiving at least one composite authentication credential, the composite authentication credential comprising a first credential component and a second credential component. The method further includes determining whether the first credential component is valid, determining whether the second credential component is valid and, in an instance in which it is determined that the first and second credential components are valid, causing access to the at least one resource to be permitted.

Citations

20 Claims

1. A method comprising:
- receiving at least one request to access at least one resource;
  
  receiving at least one composite authentication credential, the at least one composite authentication credential comprising a first credential component and a second credential component, the first credential component comprising a sequential component indicating an order of input for a plurality of biometric signature elements and the second credential component comprising the plurality of biometric signature elements;
  
  determining whether the first credential component is valid;
  
  determining whether the second credential component is valid;
  
  permitting, when the first credential component and the second credential component are valid, access to the at least one resource;
  
  performing, when the first credential component is not valid, a first remedial action; and
  
  performing, when the second credential component is not valid, a second remedial action, the second remedial action preventing further authentication attempts until at least one alternative authentication credential is validated, wherein the first remedial action is different from the second remedial action.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 10, 11, 12, 13)
- - 2. The method of claim 1, wherein receiving the at least one composite authentication credential comprises receiving the plurality of biometric signature elements in an order specified by the sequential component.
  - 3. The method of claim 1, wherein the sequential component further comprises a plurality of sequential elements, at least one of the sequential elements indicating a pause for a specified duration between two of the plurality of biometric signature elements.
  - 4. The method of claim 1, wherein the at least one of the plurality of biometric signature elements comprises at least one fingerprint.
  - 5. The method of claim 1, wherein at least one of the plurality of biometric signature elements comprises at least one iris image.
  - 6. The method of claim 1, wherein the first credential component is user-definable.
  - 7. The method of claim 1, wherein the first remedial action comprises an authentication assistance action.
  - 10. The method of claim 1, wherein the first and second credential components are received concurrently.
  - 11. The method of claim 1, wherein the second remedial action further comprises transmitting instructions to a user device to invoke an access restriction procedure on the user device.
  - 12. The method of claim 11, wherein the instructions transmitted to the user device include at least one of locking the user device, encrypting at least a portion of memory on the user device, or wiping at least a portion of memory on the user device.
  - 13. The method of claim 11, wherein the instructions transmitted to the user device include directing the user device to determine a location of the user device, and the second remedial action further comprises receiving the location of the user device.

8. The method of claim the second remedial action further comprises an access restricting action.

9. The method of claim the second remedial action further comprises contacting one or more persons.

14. An apparatus comprising at least one processor and at least one memory storing program code instructions, the at least one memory and program code instructions being configured to, with the at least one processor, direct the apparatus to at least:
- receive at least one request to access at least one resource;
  
  receive at least one composite authentication credential, the at least one composite authentication credential comprising a first credential component and a second credential component, the first credential component comprising a sequential component indicating an order of input a plurality of biometric signature elements and the second credential component comprising the plurality of biometric signature elements;
  
  determine whether the first credential component is valid;
  
  determine whether the second credential component is valid;
  
  permitting, when the first credential component and the second credential component are valid, access to the at least one resource to be permitted;
  
  performing, when the first credential component is not valid, a first remedial action to be performed; and
  
  performing, when the second credential component is not valid, a second remedial action to be performed, the second remedial action locking a user device associated with the at least one request to access the at least one resource, wherein the first remedial action is different from the second remedial action.
- View Dependent Claims (15, 16)
- - 15. The apparatus of claim 14, wherein at least one of the plurality of biometric signature elements comprises at least one fingerprint.
  - 16. The apparatus of claim 14, wherein the first remedial action comprises an authentication assistance action.

17. A computer program product comprising a non-transitory computer-readable storage medium having program code portions embodied therein, the program code portions being configured to, upon execution, direct an apparatus to at least:
- receive at least one request to access at least one resource;
  
  receive at least one composite authentication credential, the at least one composite authentication credential comprising a first credential component and a second credential component, the first credential component comprising a sequential component indicating an order of input for respective ones of the plurality of biometric signature elements and the second credential component comprising a plurality of biometric signature elements;
  
  determine whether the first credential component is valid;
  
  determine whether the second credential component is valid;
  
  permitting, when the first and second credential components are valid, access to the at least one resource;
  
  performing, when the first credential component is not valid, a first remedial action; and
  
  performing, when the second credential component is not valid, a second remedial action, the second remedial action comprising monitoring a location of a user device associated with the request, wherein the first remedial action is different from the second remedial action.
- View Dependent Claims (18, 19, 20)
- - 18. The computer program product of claim 17, wherein the sequential component further comprises a plurality of sequential elements, and at least one of the sequential elements indicates a pause for a specified duration between two of the plurality of biometric signature elements.
  - 19. The computer program product of claim 17, wherein at least one of the plurality of biometric signature elements comprises at least one iris image.
  - 20. The computer program product of claim 17, wherein the first remedial action comprises an authentication assistance action.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Omnissa, LLC
Original Assignee
AirWatch LLC (Broadcom, Inc.)
Inventors
Dabbiere, Alan
Primary Examiner(s)
CHAO, MICHAEL W

Application Number

US14/094,331
Publication Number

US 20140096210A1
Time in Patent Office

799 Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/316   by observing the pattern of...

G06F 21/32   using biometric data, e.g. ...

H04L 63/0861   using biometrical features,...

H04L 63/10   for controlling access to d...

Advanced authentication techniques

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Advanced authentication techniques

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links