Caller validation
First Claim
1. An apparatus comprising:
- at least one memory device;
at least one data storage device;
at least one processor coupled to the at least one memory device and configured to perform, based on instructions stored in the at least one memory device;
configuring a pass phrase based on a first input from an intended business client to a business associate;
storing phrase information in the at least one data storage device, wherein the phrase information is indicative of the pass phrase and wherein the pass phrase comprises a valid challenge question and a corresponding answer;
initiating, by the apparatus, a communication connection from the business associate to a called business client;
in response to a challenge request from the called business client to the business associate over the communication connection, retrieving the phrase information from the at least one data storage device based on the challenge request;
determining, from the retrieved phrase information, whether the challenge request from the called business client comprises the valid challenge question based on the first input from the intended business client;
in response to the determining, generating an indicator indicative whether the called business client is the intended business client; and
sending, by the apparatus, a responding answer from the business associate to the intended business client, wherein a degree of trust of the business associate is established with the intended business client based on the corresponding answer to the valid challenge question, and wherein the indicator is indicative that the called business client is the intended business client.
1 Assignment
0 Petitions
Accused Products
Abstract
A computer system supports a validation system that enables a business client to validate a business associate who has called the client using a pass phrase. The computer system manages one or more pass phrases that have been previously configured by the business client. The client can then challenge a caller (the purported business associate) with the phrase or keyword to make sure the caller is actually the authorized business associate before providing any sensitive information. Management of phrases and/or keywords may include a computer-executable process where in the client may set up phrases (for example, a challenge question and a corresponding answer) or keyword through an on-line application, telephone, e-mail or any other suitable communication mechanism. The business client may have an option to change, delete or create phrases and/or keywords at any time through appropriate security measures.
-
Citations
20 Claims
-
1. An apparatus comprising:
-
at least one memory device; at least one data storage device; at least one processor coupled to the at least one memory device and configured to perform, based on instructions stored in the at least one memory device; configuring a pass phrase based on a first input from an intended business client to a business associate; storing phrase information in the at least one data storage device, wherein the phrase information is indicative of the pass phrase and wherein the pass phrase comprises a valid challenge question and a corresponding answer; initiating, by the apparatus, a communication connection from the business associate to a called business client; in response to a challenge request from the called business client to the business associate over the communication connection, retrieving the phrase information from the at least one data storage device based on the challenge request; determining, from the retrieved phrase information, whether the challenge request from the called business client comprises the valid challenge question based on the first input from the intended business client; in response to the determining, generating an indicator indicative whether the called business client is the intended business client; and sending, by the apparatus, a responding answer from the business associate to the intended business client, wherein a degree of trust of the business associate is established with the intended business client based on the corresponding answer to the valid challenge question, and wherein the indicator is indicative that the called business client is the intended business client. - View Dependent Claims (2, 3, 4)
-
-
5. A computer-assisted method for validating a caller for a called person, the method comprising:
-
configuring a first pass phrase from a first input from an intended business client to a business associate; storing first phrase information in the at least one data storage device, wherein the first phrase information is indicative of the first pass phrase and wherein the first pass phrase comprises a first valid challenge request and a first corresponding response; initiating a communication connection from the business associate to a called business client; in response to a received challenge request from the called business client to the business associate over the communication connection, retrieving the first phrase information from the at least one data storage device based on the received challenge request; determining, from the retrieved phrase information, whether received challenge request from the called business client comprises the first valid challenge request, wherein the first valid challenge request was previously configured by the intended business client; in response to the determining, generating an indicator indicative whether the called business client is the intended business client; and when the indicator is indicative that the called business client is the intended business client, sending a responding answer from the business associate to the intended business client, wherein a degree of trust of the business associate is established with the intended business client based on the first corresponding response to the first valid challenge request. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A non-transitory computer-readable storage medium storing computer-executable instructions that, when executed, cause a processor at least to perform operations comprising:
-
configuring a first pass phrase from a first input from a intended business client to a business associate, wherein the first pass phrase comprises a first valid challenge question and a first answer; storing first phrase information in at least one data storage device, wherein the first phrase information is indicative of the first pass phrase; retrieving, from the at least one data storage device, a destination identification for the intended business client; initiating a communication connection from the business associate to a called business client using the destination identification; receiving, by the business associate from the called business client, a challenge request; in response to the receiving, retrieving the first phrase information from the at least one data storage device based on the challenge request; determining, from the retrieved first phrase information, whether the challenge request from the called business client comprises the first valid challenge question based on the first input from the intended business client; in response to the determining, generating an indicator indicative whether the called business client is the intended business client; in response to the retrieving, responding, by the business associate, with the first answer to the intended business client over the communication connection; and sending, by the apparatus, a responding answer from the business associate to the intended business client, wherein a degree of trust of the business associate is established with the intended business client based on the first answer to the first valid challenge question, and wherein the indicator is indicative that the called business client is the intended business client. - View Dependent Claims (19, 20)
-
Specification