Protection from unfamiliar login locations
First Claim
Patent Images
1. A user authentication server, comprising:
- a communication interface configured to receive a user login attempt by a user and a current geo-location of the user login attempt;
a data storage configured to store a user location profile of the user identifying a familiar location based on a login location history describing a location for a verified user login attempt within an aging period, wherein the familiar location is decertified from the user location profile upon an expiration of the aging period; and
a processor device configured to execute a comparison of the current geo-location of the user login attempt to the familiar location of the user location profile, presenting the enhanced identity challenge for answering by the user before allowing user access when the current geo-location is outside the familiar location, and otherwise not sending the enhanced identity challenge within the familiar location.
2 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, a user authentication server may use geo-location tracking to determine whether to present an enhanced identity challenge. A communication interface 180 may receive a user login attempt by a user and a current location of the user login attempt. A data storage 150 may store a user location profile of the user. A processor 120 may execute a comparison of the current location to the user location profile. The communication interface 180 may present the user with an enhanced identity challenge before allowing user access based on the comparison.
-
Citations
24 Claims
-
1. A user authentication server, comprising:
-
a communication interface configured to receive a user login attempt by a user and a current geo-location of the user login attempt; a data storage configured to store a user location profile of the user identifying a familiar location based on a login location history describing a location for a verified user login attempt within an aging period, wherein the familiar location is decertified from the user location profile upon an expiration of the aging period; and a processor device configured to execute a comparison of the current geo-location of the user login attempt to the familiar location of the user location profile, presenting the enhanced identity challenge for answering by the user before allowing user access when the current geo-location is outside the familiar location, and otherwise not sending the enhanced identity challenge within the familiar location. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computing device being configured to:
-
store in a memory a user location profile of a user identifying a familiar location based on a login location history describing a location for a verified user login attempt within an aging period, wherein the familiar location is decertified from the user location profile upon an expiration of the aging period, recognize a current geo-location of a user login attempt to a user service, execute a comparison of the current geo-location to the familiar location of the user location profile, present a user with an enhanced identity challenge for answering by the user before allowing user access when the current Cleo-location is outside the familiar location, and otherwise not present the enhanced identity challenge within the familiar location. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A machine-implemented method for authenticating a user session, comprising:
-
storing in a memory a user location profile of a user identifying a familiar location describing a location for a verified user login attempt within an aging period, wherein the familiar location is decertified from the user location profile upon an expiration of the aging period; recognizing a current geo-location of a user login attempt to a user service over a communication interface; using at least one hardware processor to implement; executing a comparison of the current geo-location to the familiar location of the user location profile; presenting a user with an enhanced identity challenge for answering by the user before allowing user access when the current geo-location is outside the familiar location; and otherwise not presenting the enhanced identity challenge within the familiar location. - View Dependent Claims (19)
-
-
20. A machine-implemented method for authenticating a user session, comprising:
-
creating a user location profile associated with a user account indicating a familiar location based on a login location history, wherein the familiar location is decertified from the user location profile upon an expiration of an aging period; executing a comparison of a current geo-location of a user login attempt to the familiar location of the user location profile; presenting a user with an enhanced identity challenge for answering by the user before allowing user access when the current geo-location is outside the familiar location; otherwise not sending the enhanced identity challenge within the familiar location; and updating the user location profile to designate the current geo-location as a new familiar location after a successful login attempt. - View Dependent Claims (21, 22, 23, 24)
-
Specification