Systems and methods for geolocation-based authentication and authorization
First Claim
1. A computer-implemented method for controlling authorization of mobile device users based on geographic location on a network, the method comprising:
- responsive to receiving a request for a first data access session from a first mobile device, requesting a current geographic location of the first mobile device;
upon receiving a response including the requested current geographic location of the first mobile device, dynamically generating a predetermined authorization zone based on the current geographic location of the first mobile device;
responsive to receiving a second request for a second data access session from a second mobile device of a user, requesting a second current geographic location of the second mobile device;
upon receiving a response including the requested second current geographic location of the second mobile device, determining whether the second current geographic location of the second mobile device is within the predetermined authorization zone; and
upon determining that the second current geographic location of the second mobile device is within the predetermined authorization zone, automatically authorizing the user of the second mobile device for data access in accordance with the second request.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods are provided for controlling the authentication or authorization of a mobile device user for enabling access to the resources or functionality associated with an application or service executable at the user'"'"'s mobile device. The user or user'"'"'s mobile device may be automatically authenticated or authorized to access application or system resources at the device when the current geographic location of the user'"'"'s mobile device is determined to be within a preauthorized zone, e.g., based on a predetermined geo-fence corresponding to the preauthorized zone. A security level or amount of authorization credentials required to authorize a user for data access may be varied according any of a plurality of security levels, when the current or last known geographic location of the user'"'"'s mobile device is determined to be outside the preauthorized zone.
18 Citations
19 Claims
-
1. A computer-implemented method for controlling authorization of mobile device users based on geographic location on a network, the method comprising:
-
responsive to receiving a request for a first data access session from a first mobile device, requesting a current geographic location of the first mobile device; upon receiving a response including the requested current geographic location of the first mobile device, dynamically generating a predetermined authorization zone based on the current geographic location of the first mobile device; responsive to receiving a second request for a second data access session from a second mobile device of a user, requesting a second current geographic location of the second mobile device; upon receiving a response including the requested second current geographic location of the second mobile device, determining whether the second current geographic location of the second mobile device is within the predetermined authorization zone; and upon determining that the second current geographic location of the second mobile device is within the predetermined authorization zone, automatically authorizing the user of the second mobile device for data access in accordance with the second request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer-implemented method for controlling authorization for mobile device users based on geographic location on a network, the method comprising:
-
responsive to receiving a request for a first data access session from a first mobile device, requesting a current geographic location of the first mobile device; upon receiving a response including the requested current geographic location of the first mobile device, dynamically generating a predetermined authorization zone based on the current geographic location of the first mobile device; responsive to receiving second input from a user requesting access to an application executable at a second mobile device, determining a second current geographic location of the second mobile device; determining whether the second current geographic location of the second mobile device is within the predetermined authorization zone; and upon determining that the second current geographic location of the second mobile device is within the predetermined authorization zone, automatically authorizing the user of the second mobile device for access to the application executable at the second mobile device in accordance with the input received from the user. - View Dependent Claims (11)
-
-
12. A system for automatic authorization of mobile device users based on geographic location, the system comprising:
-
a memory having processor-readable instructions stored therein; and a processor configured to access the memory and execute the processor-readable instructions, which when executed by the processor configures the processor to perform a plurality of functions, including functions to; receive a request for a first data access session from a first mobile device; request a current geographic location of the first mobile device; upon receiving a response including the requested current geographic location of the first mobile device, dynamically generating a predetermined authorization zone based on the current geographic location of the first mobile device; receive a second request for a second data access session from a second mobile device of a user; request a second current geographic location of the second mobile device; determine whether the second current geographic location of the mobile device is within a predetermined authorization zone based on a received response including the requested current geographic location of the second mobile device; and upon determining that the second current geographic location of the second mobile device is within the predetermined authorization zone, automatically authorize the user of the second mobile device for data access in accordance with the second request. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
Specification