Un-password™: risk aware end-to-end multi-factor authentication via dynamic pairing
First Claim
1. A method for determining a dynamic pairing code for use in encrypting information communicated between a first and a second communications endpoint, the method comprising:
- at the first communications endpoint;
determining a first authentication score associated with a first information exchange session between the first and second communications endpoints;
determining a second authentication score associated with a second information exchange session between the first and second communications endpoints, the second information exchange after the first information exchange;
combining the first and second authentication scores to create a cumulative risk analysis score;
responsive to the first authentication score, generating an encryption key for encrypting the cumulative risk analysis score, wherein the encryption key is known by the first and the second communications endpoints;
encrypting the cumulative risk analysis score using the encryption key to generate a dynamic pairing code;
encrypting information communicated between the first and second communications endpoints according to the dynamic pairing code; and
modifying the cumulative risk analysis score responsive to the occurrence of invalid attempts by an intruder to effect information exchange between the first and the second communications endpoints.
9 Assignments
0 Petitions
Accused Products
Abstract
A method for determining an authentication score for use in exchanging information between a first and a second device. The method comprises at the first device: determining a first authentication score associated with a first information exchange session between the first and second devices; determining a second authentication score associated with a second information exchange session between the first and second devices, the second information exchange after the first information exchange; combining the first and second authentication scores to create a combined score; responsive to the first authentication score, generating an encryption key for encrypting the combined score, wherein the encryption key is known by the first and the second devices; and encrypting the combined score to generate a dynamic pairing code.
-
Citations
19 Claims
-
1. A method for determining a dynamic pairing code for use in encrypting information communicated between a first and a second communications endpoint, the method comprising:
at the first communications endpoint; determining a first authentication score associated with a first information exchange session between the first and second communications endpoints; determining a second authentication score associated with a second information exchange session between the first and second communications endpoints, the second information exchange after the first information exchange; combining the first and second authentication scores to create a cumulative risk analysis score; responsive to the first authentication score, generating an encryption key for encrypting the cumulative risk analysis score, wherein the encryption key is known by the first and the second communications endpoints; encrypting the cumulative risk analysis score using the encryption key to generate a dynamic pairing code; encrypting information communicated between the first and second communications endpoints according to the dynamic pairing code; and modifying the cumulative risk analysis score responsive to the occurrence of invalid attempts by an intruder to effect information exchange between the first and the second communications endpoints. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
Specification