Sorting mobile banking functions into authentication buckets

US 9,595,025 B2
Filed: 02/04/2016
Issued: 03/14/2017
Est. Priority Date: 02/07/2014
Status: Active Grant

First Claim

Patent Images

1. A computer program product for sorting mobile banking application functions into different authentication buckets where each authentication bucket has an associated different level of authentication requirements which together comprise a continuum of authentication, the computer program product comprising a non-transitory computer-readable medium comprising code causing a mobile device of a user to:

receive a request, from a user, to access one of the plurality of mobile banking application functions of a mobile banking application running on the mobile device;

access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function;

determine the level of authentication associated with the determined authentication bucket;

determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;

determine that the mobile device has recently performed an authenticated transaction;

determine that a location of the mobile device is within a certain geography;

based on the recently performed authenticated transaction and the location of the mobile device, change the level of authentication required to access the mobile banking application function from the determined authentication bucket to a second authentication bucket having a lower level of authentication;

determine which second one or more authentication types from the plurality of authentication types are associated with the lower level of authentication of the second authentication bucket;

request one or more authentication credentials corresponding to the determined second one or more authentication types;

receive one or more authentication credentials from the user;

successfully validate the one or more authentication credentials; and

in response to the successful validation of the one or more authentication credentials, enable access to the mobile banking application function requested by the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments are directed to systems, methods and computer program products for sorting mobile banking functions into authentication buckets. Embodiments determine, for each of a plurality of mobile banking functions, a corresponding authentication buckets, where each authentication bucket corresponds with a level of authentication. Some embodiments receive a request, from a user, to access a function; access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function; determine the level of authentication associated with the determined authentication bucket; determine which authentication types are associated with the level of authentication; request authentication credentials corresponding to the authentication types; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, enable access to the function requested by the user.

190 Citations

11 Claims

1. A computer program product for sorting mobile banking application functions into different authentication buckets where each authentication bucket has an associated different level of authentication requirements which together comprise a continuum of authentication, the computer program product comprising a non-transitory computer-readable medium comprising code causing a mobile device of a user to:
- receive a request, from a user, to access one of the plurality of mobile banking application functions of a mobile banking application running on the mobile device;
  
  access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function;
  
  determine the level of authentication associated with the determined authentication bucket;
  
  determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;
  
  determine that the mobile device has recently performed an authenticated transaction;
  
  determine that a location of the mobile device is within a certain geography;
  
  based on the recently performed authenticated transaction and the location of the mobile device, change the level of authentication required to access the mobile banking application function from the determined authentication bucket to a second authentication bucket having a lower level of authentication;
  
  determine which second one or more authentication types from the plurality of authentication types are associated with the lower level of authentication of the second authentication bucket;
  
  request one or more authentication credentials corresponding to the determined second one or more authentication types;
  
  receive one or more authentication credentials from the user;
  
  successfully validate the one or more authentication credentials; and
  
  in response to the successful validation of the one or more authentication credentials, enable access to the mobile banking application function requested by the user.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The computer program product of claim 1, wherein the code further causes the first apparatus to:
    - initiate presentation of a user interface illustrating at least one of the plurality of authentication buckets and at least one of the functions corresponding to the at least one authentication bucket.
  - 3. The computer program product of claim 1, wherein the code further causes the first apparatus to:
    - receive user input selecting one of the plurality of authentication buckets for one of the plurality of functions.
  - 4. The computer program product of claim 1, wherein the code further causes the first apparatus to:
    - initiate presentation of a user interface illustrating a set of available buckets for one of the plurality of functions based at least in part on predetermined thresholds of authentication corresponding to the function.
  - 5. The computer program product of claim 2, wherein the code further causes the first apparatus to:
    - initiate presentation of a predetermined recommended authentication bucket for the at least one of the functions, the predetermined recommended authentication bucket being different from the at least one authentication bucket corresponding to the at least one of the functions.

6. A method for sorting mobile banking application functions into different authentication buckets, the method comprising:
- receiving a request, by the mobile device and from the user, to access one of the plurality of mobile banking application functions of a mobile banking application running on the mobile device;
  
  accessing, by the mobile device of the user, a storage device comprising, for each of a plurality of mobile banking application functions, a corresponding one of a plurality of authentication buckets, where each of the plurality of authentication buckets corresponds with one of a plurality of levels of authentication, which together comprise a continuum of authentication;
  
  determining, by the mobile device of the user, from the plurality of authentication buckets which of the authentication buckets corresponds with the requested function;
  
  determining, by the mobile device of the user, the level of authentication associated with the determined authentication bucket;
  
  determining, by the mobile device of the user, which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the determined authentication bucket;
  
  determining that the mobile device has recently performed an authenticated transaction;
  
  determining that a location of the mobile device is within a certain geography;
  
  based on the recently performed authenticated transaction and the location of the mobile device, changing the level of authentication required to access the mobile banking application function from the determined authentication bucket to a second authentication bucket having a lower level of authentication;
  
  determining which second one or more authentication types from the plurality of authentication types are associated with the lower level of authentication of the second authentication bucket;
  
  requesting, by the mobile device of the user, one or more authentication credentials corresponding to the determined second one or more authentication types;
  
  receiving, by the mobile device of the user, one or more authentication credentials from the user;
  
  successfully validating, by the mobile device of the user, the one or more authentication credentials; and
  
  in response to the successful validation of the one or more authentication credentials, enabling access to the mobile banking application function requested by the user.
- View Dependent Claims (7, 8, 9, 10, 11)
- - 7. The method of claim 6, further comprising:
    - initiating presentation of a user interface illustrating at least one of the plurality of authentication buckets and at least one of the functions corresponding to the at least one authentication bucket.
  - 8. The method of claim 6, further comprising:
    - receiving user input selecting one of the plurality of authentication buckets for one of the plurality of functions.
  - 9. The method of claim 6, further comprising:
    - initiating presentation of a user interface illustrating a set of available buckets for one of the plurality of functions based at least in part on predetermined thresholds of authentication corresponding to the function.
  - 10. The method of claim 7, further comprising:
    - initiating presentation of a predetermined recommended authentication bucket for the at least one of the functions, the predetermined recommended authentication bucket being different from the at least one authentication bucket corresponding to the at least one of the functions.
  - 11. The method of claim 7, further comprising:
    - initiating presentation of a representation of a percentage of a plurality of customers of a financial institution administering the mobile banking functions that have selected each of a plurality of available authentication buckets for one of the plurality of functions.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Grigg, David M., Johansen, Joseph Neil, Toth, Michael E., Carpenter, Daniel Lynn, Qaim-Maqami, Hood, Hanson, Carrie Anne, Votaw, Elizabeth S.
Primary Examiner(s)
SHOLEMAN, ABU S

Application Number

US15/016,138
Publication Number

US 20160171460A1
Time in Patent Office

404 Days
Field of Search

726/1, 726/26, 707/626
US Class Current

1/1
CPC Class Codes

G06F 21/30   Authentication, i.e. establ...

G06F 21/31   User authentication

G06F 2221/2113   Multi-level security, e.g. ...

G06F 2221/2149   Restricted operating enviro...

G06Q 20/108   Remote banking, e.g. home b...

G06Q 20/384   using social networks

G06Q 20/386   using messaging services or...

G06Q 40/02   Banking, e.g. interest calc...

H04L 2463/102   applying security measure f...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04L 63/105   Multiple levels of security

Sorting mobile banking functions into authentication buckets

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

190 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Sorting mobile banking functions into authentication buckets

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

190 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links