Automated agent detection using multiple factors
First Claim
Patent Images
1. A computer-implemented method for telling humans and bots apart, comprising:
- receiving, over a network, one or more requests by a requestor to access one or more resources associated with an online retailer;
calculating a score for a particular request of the one or more requests, where the score corresponds to a probability of the requestor of the particular request being an automated agent;
redirecting the particular request to a CAPTCHA service based at least in part on the calculated score for the particular request, where the calculated score is compared to a threshold value and the particular request is redirected if the calculated score is equal to or greater than the threshold value;
generating a security check based at least in part on a user and a user account associated with the particular request, where the security check is configured to distinguish human operators from automated agents;
identifying, based at least in part on the user account associated with the particular request, a device associated with the user;
transmitting the security check to the device;
receiving a response to the security check from the device; and
determining to allow access to the resource based at least in part on the received response.
1 Assignment
0 Petitions
Accused Products
Abstract
Online retailers may operate one or more services configured to detect request generated by automated agents. A security check may be generate and transmitted in response to requests generated by automated agents. The security checks may be transmitted to a second device registered with the online retailer. The second device may transmit the completed security check to the online retailer for verification before the online retailer processes the request.
-
Citations
19 Claims
-
1. A computer-implemented method for telling humans and bots apart, comprising:
-
receiving, over a network, one or more requests by a requestor to access one or more resources associated with an online retailer; calculating a score for a particular request of the one or more requests, where the score corresponds to a probability of the requestor of the particular request being an automated agent; redirecting the particular request to a CAPTCHA service based at least in part on the calculated score for the particular request, where the calculated score is compared to a threshold value and the particular request is redirected if the calculated score is equal to or greater than the threshold value; generating a security check based at least in part on a user and a user account associated with the particular request, where the security check is configured to distinguish human operators from automated agents; identifying, based at least in part on the user account associated with the particular request, a device associated with the user; transmitting the security check to the device; receiving a response to the security check from the device; and determining to allow access to the resource based at least in part on the received response. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system, comprising at least one computing device configured to implement one or more services, wherein the one or more services are configured to:
-
receive at least one request from a requestor using a first device to access one or more resources associated with an online retailer; calculate a score for the at least one request, where the score corresponds to a probability of the requestor being an automated agent; compare the calculated score to a threshold value, and, as a result of the calculated score exceeding the threshold value; redirect the at least one request to a CAPTCHA service based at least in part on the calculated score; generate a CAPTCHA security check, based at least in part on a user and a user account associated with the at least one request, configured to differentiate a human from an automated agent; identify at least a second device associated with a user configured to receive the CAPTCHA security check; transmit to the second device the CAPTCHA security check; and determine, in response to receiving from the second device a response to the CAPTCHA security check, to fulfill the at least one request based at least in part on the response to the CAPTCHA security check. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable storage medium having collectively stored thereon executable instructions that, when executed by one or more processors of a computer system, cause the computer system to at least:
-
receive at least one request from a requestor using a first device to access one or more resources associated with an online retailer; calculate a score for the at least one request, where the score corresponds to a probability of the requestor being an automated agent; compare the calculated score to a threshold value, and, as a result of the calculated score exceeding the threshold value; redirect the at least one request to a CAPTCHA service based at least in part on the calculated score; generate a CAPTCHA security check, based at least in part on a user and a user account associated with the particular request; identify, based at least in part on the request from the first device, a second device associated with a user configured to receive the CAPTCHA security check, where the CAPTCHA security check is configured to verify the request was generated by a human operator; transmit the CAPTCHA security check to the second device; in response to receiving from the second device, cause a response to the CAPTCHA security check, the response to be persistently stored; and allow the requested access to the one or more resources based at least in part on the response to the CAPTCHA security check. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification