Dynamic security questions in electronic account management
First Claim
1. A computer-implemented method for providing access to an electronic account, the method comprising:
- receiving, by a first computer from a second computer over a network, in response to information entered into a graphical user interface (GUI) displayed on the second computer, a plurality of security questions and, for each security question, a plurality of answers and one or more rules for generating a security question from the plurality of security questions and an answer from the plurality of answers, wherein the one or more rules determine which of the security questions to generate based on first contextual information associated with the user, which answer to generate based on second contextual information associated with the user, the rules specifying the at least one answer of the plurality of answers include one or more dynamic elements based upon a time in a number of minutes associated with the user, the dynamic elements varying based upon the second contextual information associated with the user, and the GUI allows the user to disable each security question;
storing, by the first computer, the security questions, the answers, the rules for generating a security question, an answer, a name for each security question assigned by the user, and whether each security question is disabled in a database, whereby the security questions, the answers, and the rules for generating a security question and an answer are associated with additional security credentials of the user; and
in response to receiving, by the first computer from the second computer over the network, via information entered into the GUI on the second computer, a request to provide access to an electronic account associated with the user;
retrieving, by the first computer, from the database, the plurality of security questions, the plurality of answers, and the rules for generating a security question for each security question not disabled and an answer;
generating, by the first computer, a security question, based on the retrieved rules and the first contextual information associated with the user;
generating, by the first computer, a first answer to the generated security question, based on, the retrieved rules, and the second contextual information associated with the user;
transmitting, by the first computer, the generated security question to the second computer via the network;
receiving, by the first computer from the second computer over the network a second answer to the generated security question based on information entered into the GUI on the second computer displaying a time to the user including a number of minutes for the user to generate a currently correct answer of the plurality of answers;
determining, by the first computer, that the first answer matches the second answer; and
granting, by the first computer, the second computer access to the electronic account, based on the additional security credentials of the user.
1 Assignment
0 Petitions
Accused Products
Abstract
Dynamic security questions. In an embodiment of the invention, a security question and one or more rules for generating an answer to the security question are received. The security question and the rules for generating and answer to the security question are associated with security credentials of a user. For authentication, a first answer to a security question associated with a user is received. One or more rules for generating an answer to the security question are retrieved. A second answer to the security question is generated, based on the retrieved rules. The first answer is compared with the second answer, and the user is authenticated, based on the first answer matching the second answer.
52 Citations
18 Claims
-
1. A computer-implemented method for providing access to an electronic account, the method comprising:
-
receiving, by a first computer from a second computer over a network, in response to information entered into a graphical user interface (GUI) displayed on the second computer, a plurality of security questions and, for each security question, a plurality of answers and one or more rules for generating a security question from the plurality of security questions and an answer from the plurality of answers, wherein the one or more rules determine which of the security questions to generate based on first contextual information associated with the user, which answer to generate based on second contextual information associated with the user, the rules specifying the at least one answer of the plurality of answers include one or more dynamic elements based upon a time in a number of minutes associated with the user, the dynamic elements varying based upon the second contextual information associated with the user, and the GUI allows the user to disable each security question; storing, by the first computer, the security questions, the answers, the rules for generating a security question, an answer, a name for each security question assigned by the user, and whether each security question is disabled in a database, whereby the security questions, the answers, and the rules for generating a security question and an answer are associated with additional security credentials of the user; and in response to receiving, by the first computer from the second computer over the network, via information entered into the GUI on the second computer, a request to provide access to an electronic account associated with the user; retrieving, by the first computer, from the database, the plurality of security questions, the plurality of answers, and the rules for generating a security question for each security question not disabled and an answer; generating, by the first computer, a security question, based on the retrieved rules and the first contextual information associated with the user; generating, by the first computer, a first answer to the generated security question, based on, the retrieved rules, and the second contextual information associated with the user; transmitting, by the first computer, the generated security question to the second computer via the network; receiving, by the first computer from the second computer over the network a second answer to the generated security question based on information entered into the GUI on the second computer displaying a time to the user including a number of minutes for the user to generate a currently correct answer of the plurality of answers; determining, by the first computer, that the first answer matches the second answer; and granting, by the first computer, the second computer access to the electronic account, based on the additional security credentials of the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A computer system for providing access to an electronic account, the computer system comprising:
-
one or more computer processors, one or more non-transitory computer-readable storage media, and program instructions stored on the one or more non-transitory computer-readable storage media, which when executed cause at least one of the one or more processors to perform a method, comprising; receiving, by a first computer from a second computer over a network, in response to information entered into a graphical user interface (GUI) displayed on the second computer, a plurality of security questions and, for each security question, a plurality of answers and one or more rules for generating a security question from the plurality of security questions and an answer from the plurality of answers, wherein the one or more rules determine which of the security questions to generate based on first contextual information associated with the user, which answer to generate based on second contextual information associated with the user, the rules specifying the at least one answer of the plurality of answers include one or more dynamic elements based upon a time in a number of minutes associated with the user, the dynamic elements varying based upon the second contextual information associated with the user, and the GUI allows the user to disable each security question; storing, by the first computer, the security questions, the answers, the rules for generating a security question, an answer, a name for each security question assigned by the user, and whether each security question is disabled in a database, whereby the security questions, the answers, and the rules for generating a security question and an answer are associated with additional security credentials of the user; and in response to receiving, by the first computer from the second computer over the network via information entered into the GUI on the second computer, a request to provide access to an electronic account associated with the user; retrieving by the first computer, from the database, the plurality of security questions, the plurality of answers, and the rules for generating a security question for each security question not disabled and an answer; generating, by the first computer, a security question, based on the currently correct answer, the retrieved rules, and the first contextual information associated with the user; generating, by the first computer, a first answer to the generated security question, based on the retrieved rules and the second contextual information associated with the user; transmitting, by the first computer, the generated security question to the second computer via the network; receiving, by the first computer from the second computer over the network a second answer to the generated security question based on information entered into the GUI on the second computer displaying a time to the user including a number of minutes for the user to generate a currently correct answer of the plurality of answers; determining, by the first computer, that the first answer matches the second answer; and granting, by the first computer, the second computer access to the electronic account, based on the additional security credentials of the user. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
Specification