Sorting mobile banking functions into authentication buckets

US 9,305,149 B2
Filed: 02/07/2014
Issued: 04/05/2016
Est. Priority Date: 02/07/2014
Status: Active Grant

First Claim

Patent Images

1. A mobile device for sorting mobile banking application functions into authentication buckets, the mobile device comprising:

a memory;

a processor; and

a module stored in the memory, executable by the processor, and configured to;

determine, for each of a plurality of mobile banking application functions, a corresponding one of a plurality of authentication buckets;

wherein each of the plurality of authentication buckets corresponds with one of a plurality of levels of authentication, which together comprise a continuum of authentication;

receive a request, from a user, to access one of the plurality of mobile banking application functions of a mobile banking application running on the mobile device;

access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function;

determine the level of authentication associated with the determined authentication bucket;

determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;

determine that the mobile device has recently performed an authenticated transaction;

determine that a location of the mobile device is within a certain geography;

based on the recently performed authenticated transaction and the location of the mobile device, change the authentication bucket that corresponds with the requested function so that a lower level of authentication is required;

determine which second one or more authentication types from the plurality of authentication types are associated with the lower level of authentication;

request, from the user by the mobile device, one or more authentication credentials corresponding to the determined second one or more authentication types;

receive one or more authentication credentials from the user;

validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and

in response to the successful validation of the one or more authentication credentials, enable access to the function requested by the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments are directed to systems, methods and computer program products for sorting mobile banking functions into authentication buckets. Embodiments determine, for each of a plurality of mobile banking functions, a corresponding authentication buckets, where each authentication bucket corresponds with a level of authentication. Some embodiments receive a request, from a user, to access a function; access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function; determine the level of authentication associated with the determined authentication bucket; determine which authentication types are associated with the level of authentication; request authentication credentials corresponding to the authentication types; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, enable access to the function requested by the user.

152 Citations

18 Claims

1. A mobile device for sorting mobile banking application functions into authentication buckets, the mobile device comprising:
- a memory;
  
  a processor; and
  
  a module stored in the memory, executable by the processor, and configured to;
  
  determine, for each of a plurality of mobile banking application functions, a corresponding one of a plurality of authentication buckets;
  
  wherein each of the plurality of authentication buckets corresponds with one of a plurality of levels of authentication, which together comprise a continuum of authentication;
  
  receive a request, from a user, to access one of the plurality of mobile banking application functions of a mobile banking application running on the mobile device;
  
  access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function;
  
  determine the level of authentication associated with the determined authentication bucket;
  
  determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;
  
  determine that the mobile device has recently performed an authenticated transaction;
  
  determine that a location of the mobile device is within a certain geography;
  
  based on the recently performed authenticated transaction and the location of the mobile device, change the authentication bucket that corresponds with the requested function so that a lower level of authentication is required;
  
  determine which second one or more authentication types from the plurality of authentication types are associated with the lower level of authentication;
  
  request, from the user by the mobile device, one or more authentication credentials corresponding to the determined second one or more authentication types;
  
  receive one or more authentication credentials from the user;
  
  validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and
  
  in response to the successful validation of the one or more authentication credentials, enable access to the function requested by the user.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The mobile device of claim 1, wherein the module is further configured to:
    - initiate presentation of a user interface illustrating at least one of the plurality of authentication buckets and at least one of the functions corresponding to the at least one authentication bucket.
  - 3. The mobile device of claim 1, wherein the module is further configured to:
    - receive user input selecting one of the plurality of authentication buckets for one of the plurality of functions.
  - 4. The mobile device of claim 1, wherein the module is further configured to:
    - initiate presentation of a user interface illustrating a set of available buckets for one of the plurality of functions based at least in part on predetermined thresholds of authentication corresponding to the function.
  - 5. The mobile device of claim 2, wherein the module is further configured to:
    - initiate presentation of a predetermined recommended authentication bucket for the at least one of the functions, the predetermined recommended authentication bucket being different from the at least one authentication bucket corresponding to the at least one of the functions.
  - 6. The mobile device of claim 2, wherein the module is further configured to:
    - initiate presentation of a representation of a percentage of a plurality of customers of a financial institution administering the mobile banking functions that have selected each of a plurality of available authentication buckets for one of the plurality of functions.

7. A method for sorting mobile banking application functions into authentication buckets, the method comprising:
- determining, by a mobile device of a user, for each of a plurality of mobile banking application functions, a corresponding one of a plurality of authentication buckets;
  
  wherein each of the plurality of authentication buckets corresponds with one of a plurality of levels of authentication, which together comprise a continuum of authentication;
  
  receiving a request, by the mobile device and from the user, to access one of the plurality of mobile banking application functions of a mobile banking application running on the mobile device;
  
  accessing, by the mobile device of the user, the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function;
  
  determining, by the mobile device of the user, the level of authentication associated with the determined authentication bucket;
  
  determining, by the mobile device of the user, which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;
  
  determining that the mobile device has recently performed an authenticated transaction;
  
  determining that a location of the mobile device is within a certain geography;
  
  based on the recently performed authenticated transaction and the location of the mobile device, changing the authentication bucket that corresponds with the requested function so that a lower level of authentication is required;
  
  determining which second one or more authentication types from the plurality of authentication types are associated with the lower level of authentication;
  
  requesting, by the mobile device of the user, one or more authentication credentials corresponding to the determined second one or more authentication types;
  
  receiving, by the mobile device of the user, one or more authentication credentials from the user;
  
  validating, by the mobile device of the user, the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and
  
  in response to the successful validation of the one or more authentication credentials, enabling access to the function requested by the user.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The method of claim 7, further comprising:
    - initiating presentation of a user interface illustrating at least one of the plurality of authentication buckets and at least one of the functions corresponding to the at least one authentication bucket.
  - 9. The method of claim 7, further comprising:
    - receiving user input selecting one of the plurality of authentication buckets for one of the plurality of functions.
  - 10. The method of claim 7, further comprising:
    - initiating presentation of a user interface illustrating a set of available buckets for one of the plurality of functions based at least in part on predetermined thresholds of authentication corresponding to the function.
  - 11. The method of claim 8, further comprising:
    - initiating presentation of a predetermined recommended authentication bucket for the at least one of the functions, the predetermined recommended authentication bucket being different from the at least one authentication bucket corresponding to the at least one of the functions.
  - 12. The method of claim 8, further comprising:
    - initiating presentation of a representation of a percentage of a plurality of customers of a financial institution administering the mobile banking functions that have selected each of a plurality of available authentication buckets for one of the plurality of functions.

13. A computer program product for sorting mobile banking application functions into authentication buckets, the computer program product comprising a non-transitory computer-readable medium comprising code causing a mobile device of a user to:
- determine, for each of a plurality of mobile banking application functions, a corresponding one of a plurality of authentication buckets;
  
  wherein each of the plurality of authentication buckets corresponds with one of a plurality of levels of authentication, which together comprise a continuum of authentication;
  
  receive a request, from a user, to access one of the plurality of mobile banking application functions of a mobile banking application running on the mobile device;
  
  access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function;
  
  determine the level of authentication associated with the determined authentication bucket;
  
  determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;
  
  determine that the mobile device has recently performed an authenticated transaction;
  
  determine that a location of the mobile device is within a certain geography;
  
  based on the recently performed authenticated transaction and the location of the mobile device, change the authentication bucket that corresponds with the requested function so that a lower level of authentication is required;
  
  determine which second one or more authentication types from the plurality of authentication types are associated with the lower level of authentication;
  
  request one or more authentication credentials corresponding to the determined one or more authentication types;
  
  receive one or more authentication credentials from the user;
  
  validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and
  
  in response to the successful validation of the one or more authentication credentials, enable access to the function requested by the user.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The computer program product of claim 13, wherein the code further causes the first apparatus to:
    - receive a request, from a user, to access one of the plurality of functions;
      
      access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function;
      
      determine the level of authentication associated with the determined authentication bucket;
      
      determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;
      
      request one or more authentication credentials corresponding to the determined one or more authentication types;
      
      receive one or more authentication credentials from the user;
      
      validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and
      
      in response to the successful validation of the one or more authentication credentials, enable access to the function requested by the user.
  - 15. The computer program product of claim 13, wherein the code further causes the first apparatus to:
    - initiate presentation of a user interface illustrating at least one of the plurality of authentication buckets and at least one of the functions corresponding to the at least one authentication bucket.
  - 16. The computer program product of claim 13, wherein the code further causes the first apparatus to:
    - receive user input selecting one of the plurality of authentication buckets for one of the plurality of functions.
  - 17. The computer program product of claim 13, wherein the code further causes the first apparatus to:
    - initiate presentation of a user interface illustrating a set of available buckets for one of the plurality of functions based at least in part on predetermined thresholds of authentication corresponding to the function.
  - 18. The computer program product of claim 15, wherein the code further causes the first apparatus to:
    - initiate presentation of a predetermined recommended authentication bucket for the at least one of the functions, the predetermined recommended authentication bucket being different from the at least one authentication bucket corresponding to the at least one of the functions.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Grigg, David M., Johansen, Joseph Neil, Toth, Michael E., Carpenter, Daniel Lynn, Qaim-Maqami, Hood, Hanson, Carrie Anne, Votaw, Elizabeth S.
Primary Examiner(s)
SHOLEMAN, ABU S

Application Number

US14/175,956
Publication Number

US 20150227724A1
Time in Patent Office

788 Days
Field of Search

726/1, 726/3, 726/5, 726/2, 726/22, 726/26, 705/18, 705/35, 707/626
US Class Current

1/1
CPC Class Codes

G06F 21/30   Authentication, i.e. establ...

G06F 21/31   User authentication

G06F 2221/2113   Multi-level security, e.g. ...

G06F 2221/2149   Restricted operating enviro...

G06Q 20/108   Remote banking, e.g. home b...

G06Q 20/384   using social networks

G06Q 20/386   using messaging services or...

G06Q 40/02   Banking, e.g. interest calc...

H04L 2463/102   applying security measure f...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04L 63/105   Multiple levels of security

Sorting mobile banking functions into authentication buckets

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

152 Citations

18 Claims

Specification

Use Cases

Quick Links

Others

Sorting mobile banking functions into authentication buckets

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

152 Citations

18 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others