Identity verification and authentication

US 9,294,465 B2
Filed: 12/31/2014
Issued: 03/22/2016
Est. Priority Date: 11/07/2011
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, at a first computing device associated with a social-networking system from a second computing device, a first request to verify a claimed identity of a first user of the social-networking system, the social networking system maintaining information relating to one or more social connections of the first user with additional users of the social-networking system;

in response to receiving the first request from the second computing device, sending, by the first computing device associated with the social-networking system to a mobile computing device associated with the first user, a second request for information associated with the first user of the social-networking system;

receiving, at the first computing device associated with the social-networking system, the information associated with the first user of the social-networking system, the information collected or maintained by the mobile device associated with the first user, wherein the information is received at the first computing device from the mobile device associated with the first user;

sending, by the first computing device associated with the social-networking system, a third request to a second user of the social networking system, the third request requesting information about the first user, the second user and the first user having a social connection maintained by the social networking system;

determining, by the first computing device, a confidence score indicating a confidence level of the claimed identity of the first user, based at least in part on;

the information associated with the first user of the social-networking system as received from the mobile computing device;

information stored by the social-networking system; and

the information from the second user having a social connection to the first user; and

sending, by the first computing device associated with the social-networking system to the second computing device, the confidence score for verifying the claimed identity of the first user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In one embodiment, receiving, at a first computing device associated with a social-networking system and from a second computing device, a first request to verify an identity of a user of the social-networking system; sending, by the first computing device and to a mobile device associated with the user, a second request for information about the user; receiving, at the first computing device and from the mobile device, the information about the user; determining, by the first computing device, a confidence score indicating a probability that the identity of the user is true based on the information about the user received from the mobile device and information available to the social-networking system; and sending, by the first computing device and to the second computing device, the confidence score.

8 Citations

View as Search Results

21 Claims

1. A method comprising:
- receiving, at a first computing device associated with a social-networking system from a second computing device, a first request to verify a claimed identity of a first user of the social-networking system, the social networking system maintaining information relating to one or more social connections of the first user with additional users of the social-networking system;
  
  in response to receiving the first request from the second computing device, sending, by the first computing device associated with the social-networking system to a mobile computing device associated with the first user, a second request for information associated with the first user of the social-networking system;
  
  receiving, at the first computing device associated with the social-networking system, the information associated with the first user of the social-networking system, the information collected or maintained by the mobile device associated with the first user, wherein the information is received at the first computing device from the mobile device associated with the first user;
  
  sending, by the first computing device associated with the social-networking system, a third request to a second user of the social networking system, the third request requesting information about the first user, the second user and the first user having a social connection maintained by the social networking system;
  
  determining, by the first computing device, a confidence score indicating a confidence level of the claimed identity of the first user, based at least in part on;
  
  the information associated with the first user of the social-networking system as received from the mobile computing device;
  
  information stored by the social-networking system; and
  
  the information from the second user having a social connection to the first user; and
  
  sending, by the first computing device associated with the social-networking system to the second computing device, the confidence score for verifying the claimed identity of the first user.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising:
    - based on the information associated with the first user of the social-networking system as received from the mobile device, authenticating, by the first computing device, the mobile device; and
      
      based on the information associated with the first user of the social-networking system as received from the mobile device, authenticating, by the first computing device, the claimed identity of the first user of the mobile device.
  - 3. The method of claim 2, wherein authenticating, by the first computing device, the mobile device comprises:
    - sending, to the mobile device, a challenge;
      
      receiving, from the mobile device, a response to the challenge, wherein the response has been cryptographically computed by the mobile device; and
      
      authenticating the mobile device based on the challenge and the response.
  - 4. The method of claim 1, wherein the information associated with the first user of the social-networking system as received from the mobile device comprises one or more of:
    - an identifier of a user account with the social-networking system that the first user logs into from the mobile device;
      
      an identifier of the mobile device;
      
      a current location of the mobile device;
      
      an image of the first user'"'"'s face;
      
      a recording of the first user'"'"'s voice;
      
      a finger print of the first user;
      
      ora signal from a Bluetooth device associated with the mobile device.
  - 5. The method of claim 1, wherein the information available to the social-networking system comprises one or more of:
    - one or more social connections of the first user;
      
      one or more messages posted by the first user;
      
      one or more images uploaded by the first user;
      
      orone or more check-ins made by the first user.
  - 6. The method of claim 5, further comprising:
    - receiving, at the first computing device and from a mobile device associated with the second user, the information about the first user;
      
      wherein the confidence score is determined further based on the information about the first user received from the at least one mobile device associated with the second user having the social connection with the first user.
  - 7. The method of claim 1, wherein:
    - the second computing device is associated with a merchant affiliated with the social-networking system; and
      
      the first user is purchasing merchandise from the merchant.
  - 8. The method of claim 7, further comprising:
    - determining, by the first computing device, a second confidence score indicating a probability that the identity of the merchant is true based on information available to the social-networking system; and
      
      sending, by the first computing device and to the mobile device, the second confidence score.
  - 9. The method of claim 1, further comprising:
    - based on the information associated with the first user of the social-networking system as received from the mobile device, authenticating, by the first computing device associated with the social-networking system, the mobile device associated with the first user; and
      
      based on the information associated with the first user of the social-networking system as received from the mobile device, authenticating, by the first computing device associated with the social-networking system, the claimed identity of the first user of the mobile device.

10. A first computing device associated with a social-networking system comprising:
- a memory comprising instructions executable by one or more processors; and
  
  the one or more processors coupled to the memory and operable to execute the instructions, the one or more processors being operable when executing the instructions to;
  
  receive, from a second computing device, a first request to verify a claimed identity of a first user of the social-networking system, the social networking system maintaining information relating to one or more social connections of the first user with additional users of the social-networking system;
  
  in response to receiving the first request from the second computing device, send, to a mobile computing device associated with the first user, a second request for information associated with the first user of the social-networking system;
  
  receive the information associated with the first user of the social-networking system, the information collected or maintained by the mobile device associated with the first user, wherein the information is received at the first computing device from the mobile device associated with the first user;
  
  send a third request to a second user of the social networking system, the third request requesting information about the first user, the second user and the first user having a social connection maintained by the social networking system;
  
  determine a confidence score indicating a confidence level of the claimed identity of the user, based at least in part on;
  
  the information associated with the first user of the social-networking system as received from the mobile computing device;
  
  information stored by the social-networking system; and
  
  the information from the second user having a social connection to the first user; and
  
  send, to the second computing device, the confidence score for verifying the claimed identity of the user.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
- - 11. The first computing device of claim 10, wherein the one or more processors are further operable when executing the instructions to:
    - based on the information associated with the first user of the social-networking system as received from the mobile device, authenticate the mobile device; and
      
      based on the information associated with the first user of the social-networking system as received from the mobile device, authenticate the claimed identity of the first user of the mobile device.
  - 12. The first computing device of claim 11, wherein to authenticate the mobile device comprises to:
    - send, to the mobile device, a challenge;
      
      receive, from the mobile device, a response to the challenge, wherein the response has been cryptographically computed by the mobile device; and
      
      authenticate the mobile device based on the challenge and the response.
  - 13. The first computing device of claim 10, wherein the information associated with the first user of the social-networking system received from the mobile device comprises one or more of:
    - an identifier of a user account with the social-networking system that the first user logs into from the mobile device;
      
      an identifier of the mobile device;
      
      a current location of the mobile device;
      
      an image of the first user'"'"'s face;
      
      a recording of the first user'"'"'s voice;
      
      a finger print of the first user;
      
      ora signal from a Bluetooth device associated with the mobile device.
  - 14. The first computing device of claim 10, wherein the information available to the social-networking system comprises one or more of:
    - one or more social connections of the first user;
      
      one or more messages posted by the first user;
      
      one or more images uploaded by the first user;
      
      orone or more check-ins made by the first user.
  - 15. The first computing device of claim 14, wherein the one or more processors are further operable when executing the instructions to:
    - receive, from a mobile device associated with the second user, the information about the first user;
      
      wherein the confidence score is determined further based on the information about the first user received from the at least one mobile device associated with the second user having the social connection with the first user.
  - 16. The first computing device of claim 10, wherein:
    - the second computing device is associated with a merchant affiliated with the social-networking system; and
      
      the first user is purchasing merchandise from the merchant.
  - 17. The first computing device of claim 16, wherein the one or more processors are further operable when executing the instructions to:
    - determine a second confidence score indicating a probability that the identity of the merchant is true based on information available to the social-networking system; and
      
      send, to the mobile device, the second confidence score.

18. One or more computer-readable non-transitory storage media embodying software operable when executed by a first computing device to:
- receive, from a second computing device, a first request to verify a claimed identity of a user of the social-networking system, the social networking system maintaining information relating to one or more social connections of the first user with additional users of the social-networking system;
  
  in response to receiving the first request from the second computing device, send, to a mobile computing device associated with the user, a second request for information associated with the first user of the social-networking system;
  
  receive, from the mobile computing device, the information associated with the first user of the social-networking system, the information collected or maintained by the mobile device associated with the first user, wherein the information is received at the first computing device from the mobile device associated with the first user;
  
  send a third request to a second user of the social networking system, the third request requesting information about the first user, the second user and the first user having a social connection maintained by the social networking system;
  
  determine a confidence score indicating a confidence level of the claimed identity of the user, based at least in part on;
  
  the information associated with the first user of the social-networking system as received from the mobile computing device;
  
  information stored by the social-networking system; and
  
  the information from the second user having a social connection to the first user; and
  
  send, to the second computing device, the confidence score for verifying the claimed identity of the first user.
- View Dependent Claims (19, 20, 21)
- - 19. The media of claim 18, wherein the information associated with the first user of the social-networking system as received from the mobile device comprises one or more of:
    - an identifier of a user account with the social-networking system that the first user logs into from the mobile device;
      
      an identifier of the mobile device;
      
      a current location of the mobile device;
      
      an image of the first user'"'"'s face;
      
      a recording of the first user'"'"'s voice;
      
      a finger print of the first user;
      
      ora signal from a Bluetooth device associated with the mobile device.
  - 20. The media of claim 18, wherein the information available to the social-networking system comprises one or more of:
    - one or more social connections of the first user;
      
      one or more messages posted by the first user;
      
      one or more images uploaded by the first user;
      
      orone or more check-ins made by the first user.
  - 21. The media of claim 20, wherein the software is further operable when executed by the one or more computer systems to:
    - receive, from a mobile device associated with the second user of the social-networking system, the information about the first user;
      
      wherein the confidence score is determined further based on the information about the first user received from the at least one mobile device associated with the second user having the social connection with the first user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Original Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Inventors
Gandhi, Shaheen Ashok, Papakipos, Matthew Nicholas
Primary Examiner(s)
Reza, Mohammad W

Application Number

US14/587,688
Publication Number

US 20150113625A1
Time in Patent Office

447 Days
Field of Search

726/7
US Class Current

1/1
CPC Class Codes

G06F 21/34   involving the use of extern...

G06Q 20/4014   Identity check for transact...

G06Q 30/0609   Buyer or seller confidence ...

G06Q 30/0619   Neutral agent

G06Q 50/01   Social networking

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless network architectu...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 63/0869   for achieving mutual authen...

H04L 9/3215   using a plurality of channe...

H04L 9/3271   using challenge-response

Identity verification and authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

8 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Identity verification and authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

8 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links