Managing security credentials
First Claim
Patent Images
1. A non-transitory computer-readable medium embodying specific instructions that, when executed, cause a remote computing device to at least:
- automatically generate a security credential for a user account with a network site according to a security credential specification requested from the network site at a standardized location, the security credential having a maximum security strength as defined by the security credential specification;
automatically establish the security credential with the network site as a valid security credential;
select a plurality of knowledge-based questions to be presented to a user at a client computing device in response to receiving a request for the security credential from the client computing device;
provide the plurality of knowledge-based questions to the client computing device in response to the request;
generate a score based at least in part on a comparison of a plurality of received answers to the plurality of knowledge-based questions with a plurality of valid answers to the plurality of knowledge-based questions, the plurality of received answers being received from the client computing device, and individual received answers of the plurality of received answers being weighted with a respective different weight based at least in part on a respective knowledge-based question of the plurality of knowledge-based questions;
provide the security credential to the client computing device when the score meets a predetermined threshold; and
establish a master security credential received from the client computing device as a valid master security credential when the score meets the predetermined threshold.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are various embodiments for managing security credentials. In one embodiment, a request for a security credential is obtained from a client and is stored in association with a user account. Knowledge-based questions are provided to the client in response to the request. At least one of the knowledge-based questions is dynamically generated based at least in part on data associated with the user account. Answers to the knowledge-based questions are obtained from the client. The security credential is provided to the client based at least in part on the answers.
171 Citations
27 Claims
-
1. A non-transitory computer-readable medium embodying specific instructions that, when executed, cause a remote computing device to at least:
-
automatically generate a security credential for a user account with a network site according to a security credential specification requested from the network site at a standardized location, the security credential having a maximum security strength as defined by the security credential specification; automatically establish the security credential with the network site as a valid security credential; select a plurality of knowledge-based questions to be presented to a user at a client computing device in response to receiving a request for the security credential from the client computing device; provide the plurality of knowledge-based questions to the client computing device in response to the request; generate a score based at least in part on a comparison of a plurality of received answers to the plurality of knowledge-based questions with a plurality of valid answers to the plurality of knowledge-based questions, the plurality of received answers being received from the client computing device, and individual received answers of the plurality of received answers being weighted with a respective different weight based at least in part on a respective knowledge-based question of the plurality of knowledge-based questions; provide the security credential to the client computing device when the score meets a predetermined threshold; and establish a master security credential received from the client computing device as a valid master security credential when the score meets the predetermined threshold. - View Dependent Claims (2, 3)
-
-
4. A system for providing a security credential, comprising:
-
at least one remote computing device; and a security credential manager executable in the at least one remote computing device, wherein, when executed, the security credential manager causes the at least one remote computing device to at least; automatically generate at least one security credential according to a security credential specification received from a network site at a standardized location; store the at least one security credential in association with a user account for the network site; provide a plurality of dynamically generated knowledge-based questions to a user at a client computing device and a request for a master security credential in response to a request for the at least one security credential received from the client computing device; generate a score based at least in part on a plurality of answers to the plurality of dynamically generated knowledge-based questions, the plurality of answers being received from the user via the client computing device, and individual answers of the plurality of answers being weighted with a respective different weight based at least in part on a respective knowledge-based question of the plurality of dynamically generated knowledge-based questions; and provide the at least one security credential to the client computing device in response to the score meeting or exceeding a predefined threshold and a determination that the master security credential received from the client computing device is valid. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method of providing a security credential, comprising:
-
receiving, by a security credential manager on at least one of one or more remote computing devices, a security credential specification from a network site; automatically generating, by the security credential manager on at least one of the one or more remote computing devices, the security credential required to access the network site based at least in part on the security credential specification; receiving, by at least one of the one or more remote computing devices, a request for the security credential from a client computing device, the security credential being stored in at least one of the one or more remote computing devices in association with a user account; providing, by at least one of the one or more remote computing devices, at a plurality of knowledge-based questions and a master security credential request to a user at the client computing device in response to the request; receiving, by at least one of the one or more remote computing devices, a master security credential and a plurality of answers to the plurality of knowledge-based questions from the user via the client computing device; generating, by at least one of the one or more remote computing devices, a score based at least in part on the plurality of answers to the plurality of knowledge-based questions, individual answers of the plurality of answers being assigned a different weight based at least in part on a recency of an event associated with a respective knowledge-based question of the plurality of knowledge-based questions; and providing, by at least one of the one or more remote computing devices, the security credential to the client computing device based at least in part on both the score meeting or exceeding a predefined threshold and the master security credential being valid. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
-
Specification