Reducing authentication confidence over time based on user history
First Claim
1. An apparatus, the apparatus comprising:
- at least one processor;
at least one memory; and
at least a set of executable instructions stored within the memory, wherein the executable instructions, when executed by the at least one processor, are to;
detect a triggering event that indicates a new decay rate is to be calculated;
identify a beginning time and an ending time associated with an interval of time during an active user session on a client device associated with a user, wherein the beginning time is to indicate a first absolute session time measured from a start of the active user session to a last positive authentication of the active user session, and wherein the ending time is to indicate a second absolute session time measured from the start of the active user session to a later time occurring after the last positive authentication;
determine a first value based, at least in part, on a first number of prior user sessions of a first subset of a set of prior user sessions that are no longer active, wherein a session length of each of the prior user sessions of the first subset was at least as long as the beginning time;
determine a second value based, at least in part, on a second number of prior user sessions of a second subset of the set of prior user sessions, wherein a session length of each of the prior user sessions of the second subset was at least as long as the ending time;
determine a decay rate for a current authentication confidence score by dividing the second value by the first value; and
determine an updated authentication confidence score by multiplying the current authentication confidence score by the decay rate.
1 Assignment
0 Petitions
Accused Products
Abstract
Technologies are provided in embodiments to manage an authentication confirmation score. Embodiments are configured to identify, in absolute session time, a beginning time and an ending time of an interval of an active user session on a client. Embodiments are also configured to determine a first value representing a first subset of a set of prior user sessions, where the prior user sessions of the first subset were active for at least as long as the beginning time. Embodiments can also determine a second value representing a second subset of the set of prior user sessions, where the prior user sessions of the second subset were active for at least as long as the ending time. Embodiments also determine, based on the first and second values, a decay rate for the authentication confidence score of the active user session. In some embodiments, the set is based on context attributes.
-
Citations
21 Claims
-
1. An apparatus, the apparatus comprising:
-
at least one processor; at least one memory; and at least a set of executable instructions stored within the memory, wherein the executable instructions, when executed by the at least one processor, are to; detect a triggering event that indicates a new decay rate is to be calculated; identify a beginning time and an ending time associated with an interval of time during an active user session on a client device associated with a user, wherein the beginning time is to indicate a first absolute session time measured from a start of the active user session to a last positive authentication of the active user session, and wherein the ending time is to indicate a second absolute session time measured from the start of the active user session to a later time occurring after the last positive authentication; determine a first value based, at least in part, on a first number of prior user sessions of a first subset of a set of prior user sessions that are no longer active, wherein a session length of each of the prior user sessions of the first subset was at least as long as the beginning time; determine a second value based, at least in part, on a second number of prior user sessions of a second subset of the set of prior user sessions, wherein a session length of each of the prior user sessions of the second subset was at least as long as the ending time; determine a decay rate for a current authentication confidence score by dividing the second value by the first value; and determine an updated authentication confidence score by multiplying the current authentication confidence score by the decay rate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. At least one non-transitory machine readable storage medium having instructions stored thereon, the instructions when executed by a processor cause the processor to:
-
detect a triggering event that indicates a new decay rate is to be calculated; identify a beginning time and an ending time associated with an interval of time during an active user session on a client device associated with a user, wherein the beginning time is to indicate a first absolute session time measured from a start of the active user session to a last positive authentication of the active user session, and wherein the ending time is to indicate a second absolute session time measured from the start of the active user session to a later time after the last positive authentication; determine a first value based, at least in part, on a first number of prior user sessions of a first subset of a set of prior user sessions that are no longer active, wherein a session length of each of the prior user sessions of the first subset was at least as long as the beginning time; determine a second value based, at least in part, on a second number of prior user sessions of a second subset of the set of prior user sessions, wherein a session length of each of the prior user sessions of the second subset was at least as long as the ending time; determine a decay rate for a current authentication confidence score by dividing the second value by the first value; and determine an updated authentication confidence score by multiplying the current authentication confidence score by the decay rate. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A method, comprising:
-
detecting a triggering event that indicates a new decay rate is to be calculated; identifying a beginning time and an ending time associated with an interval of time during an active user session on a client device associated with a user, wherein the beginning time indicates a first absolute session time measured from a start of the active user session to a last positive authentication of the active user session, and wherein the ending time indicates a second absolute session time measured from the start of the active user session to a later time occurring after the last positive authentication; determining a first value based, at least in part, on a first number of prior user sessions of a first subset of a set of prior user sessions that are no longer active, wherein a session length of each of the prior user sessions of the first subset was at least as long as the beginning time; determining a second value based, at least in part, on a second number of prior user sessions of a second subset of the set of prior user sessions, wherein a session length of each of the prior user sessions of the second subset was at least as long as the ending time; determining a decay rate for a current authentication confidence score by dividing the second value by the first value; and determining an updated authentication confidence score by multiplying the current authentication confidence score by the decay rate. - View Dependent Claims (21)
-
Specification