Dynamic authorization

US 9,633,184 B2
Filed: 05/30/2014
Issued: 04/25/2017
Est. Priority Date: 05/30/2014
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method performed by a data processing apparatus, the method comprising:

receiving one or more signals from one or more sensors;

determining at least one concept from the one or more signals, wherein the at least one concept is a location of a computing device, a temporal context for the computing device, an action being performed with the computing device, or an identity of a user of the computing device;

determining a current pattern from the at least one concept;

matching the current pattern to a stored pattern, wherein the stored pattern is associated with a security outcome;

implementing the security outcome;

displaying a security message indicating the security outcome and at least part of the stored pattern that was matched to the current pattern;

determining a second current pattern;

matching the second current pattern to a second stored pattern;

determining a security preference associated with the second stored pattern that overrides a security outcome associated with the second stored pattern;

implementing a security outcome associated with the security preference instead of the security outcome associated with the second stored pattern; and

displaying a security message indicating the security outcome associated with the security preference instead of the security outcome associated with the second stored pattern.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and techniques are provided for dynamic authorization. A signal may be received from a sensor. A concept may be determined from the signal. The concept may be a location of a computing device, an action being performed with the computing device, an identity of a user of the computing device, or a temporal context for the computing device. A current pattern may be determined from the concept. The current pattern may be matched to a stored pattern. The stored pattern may be associated with a security outcome. The security outcome may be sent to be implemented. A security message may displayed indicating the security outcome and part of the stored pattern that was matched to the current pattern. The security outcome may be causing presentation of an authentication prompt or not causing presentation of an authentication prompt.

36 Citations

View as Search Results

21 Claims

1. A computer-implemented method performed by a data processing apparatus, the method comprising:
- receiving one or more signals from one or more sensors;
  
  determining at least one concept from the one or more signals, wherein the at least one concept is a location of a computing device, a temporal context for the computing device, an action being performed with the computing device, or an identity of a user of the computing device;
  
  determining a current pattern from the at least one concept;
  
  matching the current pattern to a stored pattern, wherein the stored pattern is associated with a security outcome;
  
  implementing the security outcome;
  
  displaying a security message indicating the security outcome and at least part of the stored pattern that was matched to the current pattern;
  
  determining a second current pattern;
  
  matching the second current pattern to a second stored pattern;
  
  determining a security preference associated with the second stored pattern that overrides a security outcome associated with the second stored pattern;
  
  implementing a security outcome associated with the security preference instead of the security outcome associated with the second stored pattern; and
  
  displaying a security message indicating the security outcome associated with the security preference instead of the security outcome associated with the second stored pattern.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The computer-implemented method of claim 1, wherein the security outcome associated with the stored pattern is one of causing presentation of an authentication prompt or not causing presentation of an authentication prompt.
  - 3. The computer-implemented method of claim 2, wherein the authentication prompt comprises at least one of requesting entry of a PIN, requesting entry of a password, requesting entry of a touch pattern, requesting a facial image, requesting a voiceprint, and requesting a fingerprint.
  - 4. The computer-implemented method of claim 1, wherein the current pattern comprises at least one of a location the computing device is being used in and an identity of at least one user with access to the computing device.
  - 5. The computer-implemented method of claim 1, further comprising storing the current pattern with the stored pattern;
    - andat least one of modifying the stored pattern based on the current pattern and creating a new stored pattern based on the current pattern.
  - 6. The computer-implemented method of claim 5, at least one of modifying the stored pattern and creating a new stored pattern further comprises applying a machine learning system to the current pattern and the stored pattern.
  - 7. The computer-implemented method of claim 1, wherein the security outcome associated with the stored pattern is based on a level of confidence that the user of the computing device is at least one of an owner of the computing device or an authorized user of the computing device when the stored pattern is matched by the current pattern.
  - 8. The computer-implemented method of claim 1, wherein at least one of the one or more sensors is one of a camera, a microphone, a touchscreen, a GPS chip, a WiFi radio, a cellular radio, an accelerometer, a clock, an input detector, a fingerprint scanner, and a moisture sensor.
  - 9. The computer-implemented method of claim 1, wherein implementing the security outcome associated with the stored pattern further comprises sending the security outcome associated with the stored pattern to an invoking application, wherein the invoking application invokes the determination of a security outcome based on the actions of a current user of the computing device.

10. A computer-implemented method performed by a data processing apparatus, the method comprising:
- receiving a plurality of signals from a plurality of sensors, wherein the plurality of sensors comprises hardware and software sensors of a computing device;
  
  determining a plurality of concepts from the plurality of signals, wherein each of the plurality of concepts regards an aspect of the current usage context of the computing device;
  
  detecting a current pattern from the plurality of concepts, wherein the current pattern regards the current usage context of the computing device;
  
  storing the current pattern with a plurality of stored patterns;
  
  applying a machine learning system to the current pattern and the plurality of stored patterns to modify at least one of the stored patterns;
  
  associating a first security outcome with the stored pattern modified by the machine learning system; and
  
  storing the stored pattern, modified by the machine learning system, and associated first security outcome with the plurality of stored patterns;
  
  receiving a second plurality of signals from the plurality of sensors;
  
  determining a second plurality of concepts from the second plurality of signals;
  
  detecting a second current pattern for the second plurality of signals;
  
  matching the second current pattern to one of the plurality of stored patterns;
  
  implementing a second security outcome associated with the one of the plurality of stored patterns matched with the second current pattern;
  
  displaying a message indicating the one of the plurality of stored patterns matched with the second current pattern and the second security outcome;
  
  detecting a third current pattern;
  
  matching the third current pattern to one of the plurality of stored patterns;
  
  determining a security preference associated with the stored pattern that overrides a third security outcome associated with the stored pattern;
  
  implementing a fourth security outcome associated with the security preference instead of the third security outcome associated with the stored pattern; and
  
  displaying a message indicating the fourth security outcome associated with the security preference instead of the third security outcome associated with the third stored pattern.
- View Dependent Claims (11, 12, 13, 14, 15)
- - 11. The computer-implemented method of claim 10, wherein the first security outcome is one of causing presentation of an authentication prompt or not causing presentation of an authentication prompt.
  - 12. The computer-implemented method of claim 11, wherein the authentication prompt comprises at least one of requesting entry of a PIN, requesting entry of a password, requesting entry of a touch pattern, requesting a facial image, requesting a voiceprint, and requesting a fingerprint.
  - 13. The computer-implemented method of claim 10, wherein the current pattern comprises at least one of a location the computing device is being used in and an identity of at least one user with access to the computing device.
  - 14. The computer-implemented method of claim 10, wherein the plurality of sensors comprises one or more of a camera, a microphone, a touchscreen, a GPS chip, a WiFi radio, a cellular radio, an accelerometer, a clock, an input detector, a fingerprint scanner, and a moisture sensor.
  - 15. The computer-implemented method of claim 10, wherein implementing the second security outcome further comprises sending the second security outcome to an invoking application, wherein the invoking application invokes the determination of a security outcome based on the actions of a current user of the computing device.

16. A computer-implemented system comprising:
- a storage comprising security preferences and stored patterns;
  
  one or more sensors configured to generate at least one signal;
  
  at least one concept detector configured to receive the at least one signal from the one or more sensors and determine at least one concept based on the at least one received signal, wherein the at least one concept is a location of a computing device, a temporal context for the computing device, an action being performed with the computing device, or an identity of a user of the computing device;
  
  a pattern detector configured to detect a current pattern from the at least one concept, store the current pattern in the stored patterns, modify and create new stored patterns, and associate at least one of the stored patterns with a security outcome; and
  
  a security outcome generator configured to detect the current pattern,match the current pattern with one of the stored patterns,determine a security outcome associated with a matched stored pattern and a security preference of the security preferences in the storage wherein the security preference is associated with the matched stored pattern,determine that the security preference associated with the matched stored pattern overrides the security outcome associated with the matched stored pattern;
  
  implement a second security outcome associated with the security preference instead of the security outcome associated with the matched stored pattern, anddisplay a security message indicating the second security outcome associated with the security preference instead of the security outcome associated with the matched stored pattern.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The computer-implemented system of claim 16, wherein at least one of the sensors is one of a hardware sensor and a software sensor.
  - 18. The computer-implemented system of claim 16, wherein the second security outcome is causing an authentication prompt to be presented or causing an authentication prompt to not be presented.
  - 19. The computer-implemented system of claim 16, wherein the security outcome associated with the at least one of the stored patterns is based on a level of confidence that the user of a computing device is an owner of the computing device or an authorized user of the computing device when the stored pattern matches the current pattern.
  - 20. The computer-implemented system of claim 16, wherein the current pattern regards a current usage context for a computing device.

21. A system comprising:
- one or more computers and one or more storage devices storing instructions which operate, when executed by the one or more computers, to cause the one or more computers to perform operations comprising;
  
  receiving one or more signals from one or more sensors;
  
  determining at least one concept from the one or more signals, wherein the at least one concept is a location of a computing device, a temporal context for the computing device, an action being performed with the computing device, or an identity of a user of the computing device;
  
  determining a current pattern from the at least one concept;
  
  matching the current pattern to a stored pattern, wherein the stored pattern is associated with a security outcome;
  
  implementing the security outcome;
  
  displaying a security message indicating the security outcome and at least part of the stored pattern that was matched to the current pattern;
  
  determining a second current pattern;
  
  matching the second current pattern to a second stored pattern;
  
  determining a security preference associated with the second stored pattern that overrides a security outcome associated with the second stored pattern;
  
  implementing a security outcome associated with the security preference instead of the security outcome associated with the second stored pattern; and
  
  displaying a security message indicating the security outcome associated with the security preference instead of the security outcome associated with the second stored pattern.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
Google Inc. (Alphabet Inc.)
Inventors
Ben Ari, Maya, Upadhyay, Mayank, Ludwig, Adrian, Dayan, Tal
Primary Examiner(s)
Rashid, Harunur
Assistant Examiner(s)
Huang, Cheng-Feng

Application Number

US14/291,677
Publication Number

US 20150347725A1
Time in Patent Office

1,061 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06N 20/00   Machine learning

H04L 67/306   User profiles

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/63   Location-dependent; Proximi...

H04W 12/68   Gesture-dependent or behavi...

H04W 88/02   Terminal devices

Dynamic authorization

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

36 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Dynamic authorization

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

36 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links