Method and system for managing user login behavior on an electronic device for enhanced security
First Claim
1. A method for managing user login behavior on an electronic device, the method comprising:
- receiving, by an electronic device, information relating to an entered password having a plurality of second characters of a plurality of characters, wherein the entered password is different from a first password having a plurality of first characters of the plurality of characters;
identifying for at least one second character, by the electronic device, at least one alternative character of the plurality of characters based on a location of a key corresponding to the at least one second character on a keyboard used to enter the entered password;
generating, by the electronic device, a variation of the entered password using the identified at least one alternative character;
providing, at the electronic device, a first entry error value that defines a number of mistakes allowable in the entered password;
detecting, by the electronic device during a time period related to the entering of the entered password at the electronic device, a degree of movement of the electronic device;
determining that the detected degree of movement is above a threshold degree of movement;
increasing the first entry error value, based on the determination of movement above a threshold degree, to obtain an adjusted entry error value that allows for at least one mistake in the entered password; and
determining, by the electronic device, that the entered password is valid when;
information relating to the generated variation of the entered password matches information relating to the first password, and the number of differences between the entered password and the first password does not exceed the adjusted entry error value; and
after the step of determining, by the electronic device, that the entered password is valid, allowing, using the entered password, access to at least one of a service or a device protected by the first password.
7 Assignments
0 Petitions
Accused Products
Abstract
Security is enhanced for a user of an electronic device by providing a method for managing user login behavior. When an entered password that is different from a defined password is received, the method includes identifying alternative characters for at least one character of the entered password based on a location of a key corresponding to the character of the entered password on a keyboard used to enter the password. When the alternative characters are identified, a variation of the entered password is generated by replacing a character of the entered password with an alternative character of the character. When information relating to the variation matches information relating to the defined password, the entered password is determined to be valid.
27 Citations
16 Claims
-
1. A method for managing user login behavior on an electronic device, the method comprising:
-
receiving, by an electronic device, information relating to an entered password having a plurality of second characters of a plurality of characters, wherein the entered password is different from a first password having a plurality of first characters of the plurality of characters; identifying for at least one second character, by the electronic device, at least one alternative character of the plurality of characters based on a location of a key corresponding to the at least one second character on a keyboard used to enter the entered password; generating, by the electronic device, a variation of the entered password using the identified at least one alternative character; providing, at the electronic device, a first entry error value that defines a number of mistakes allowable in the entered password; detecting, by the electronic device during a time period related to the entering of the entered password at the electronic device, a degree of movement of the electronic device; determining that the detected degree of movement is above a threshold degree of movement; increasing the first entry error value, based on the determination of movement above a threshold degree, to obtain an adjusted entry error value that allows for at least one mistake in the entered password; and determining, by the electronic device, that the entered password is valid when;
information relating to the generated variation of the entered password matches information relating to the first password, and the number of differences between the entered password and the first password does not exceed the adjusted entry error value; andafter the step of determining, by the electronic device, that the entered password is valid, allowing, using the entered password, access to at least one of a service or a device protected by the first password. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for managing user login behavior on an electronic client device including a keyboard having a plurality of keys corresponding to a plurality of characters, the method comprising:
-
storing, on the electronic client device, information relating to a first password, wherein the first password includes a plurality of first characters of the plurality of characters; receiving, by the electronic device, an entered password having a plurality of second characters of the plurality of characters, wherein the entered password is different from the first password; identifying for at least one second character, by the electronic client device and for at least one second character, at least one alternative character of the plurality of characters based on a location of a key corresponding to a second character of the at least one second character on a keyboard used to enter the entered password; generating, by the electronic client device, using the identified at least one alternative character, a variation of the entered password, the variation having a plurality of third characters of the plurality of characters; providing, at the electronic device, a first entry error value that defines a number of mistakes allowable in the entered password, wherein the first entry error value is initially set at zero mistakes; detecting, by the electronic client device during a time period related to the entering of the received entered password at the electronic client device, a degree of movement of the electronic client device; determining that the detected degree of movement is above a threshold degree of movement; increasing the first entry error value, based on the determination of movement above a threshold degree, to obtain an adjusted entry error value that allows for at least one mistake in the entered password; and determining, by the electronic client device, that the entered password is valid when the number of differences between the entered password and the first password do not exceed the adjusted entry error value, and when each of the plurality of first characters either; matches a corresponding second character in a corresponding position of the entered password, or matches a corresponding third character in a corresponding position of the generated variation; and after the step of determining, by the electronic device, that the entered password is valid, allowing, using the entered password, access to a service and/or a device protected by the first password.
-
-
15. A method for managing user login behavior at a server, the method comprising:
-
storing, on a server, information relating to a first password, wherein the first password includes a plurality of first characters of a plurality of characters; receiving, by the server, an entered password from an electronic client device, the entered password having a plurality of second characters of the plurality of characters; identifying for at least one second character, by the server, at least one alternative character of the plurality of characters based on a location of a key corresponding to the at least one second character on a keyboard used to enter the entered password; generating, by the server, a variation of the entered password using the identified at least one alternative character; providing, by the server, a first entry error value that defines a number of mistakes allowable in the entered password; increasing, by the server, the first entry error value to obtain an adjusted entry error value that allows for at least one mistake in the entered password, the increasing being based on a degree of movement of the electronic client device, wherein the degree of movement was detected by the electronic client device during a time period related to the entering of the entered password at the electronic client and was determined to be above a threshold degree of movement; and determining, by the server, that the entered password is valid when;
information relating to the generated variation of the entered password matches the information relating to the first password, and the number of differences between the entered password and the first password do not exceed the adjusted entry error value; andafter the step of determining, by the electronic device, that the entered password is valid, allowing, using the entered password, access to at least one of a service or a device protected by the first password.
-
-
16. A method comprising:
-
receiving an entered password input through a keyboard, the entered password comprising a plurality of first characters; retrieving a first password comprising a plurality of second characters, the first password being different from the entered password based on at least one character of the entered password not matching a corresponding character in a corresponding position of the first password, wherein each such difference is a mistake in the entered password, and wherein a mistake is acceptable when a location on the keyboard for the mistake in the entered password is adjacent to a location on the keyboard for the corresponding character of the first password; providing a first entry error value that defines a number of acceptable mistakes allowable in the entered password; increasing the first entry error value to obtain an adjusted entry error value that allows for at least one mistake in the entered password, the increasing being based on a detected degree of movement of the keyboard that was detected during a time period related to the inputting of the entered password through the keyboard, and the degree of movement determined to be above a threshold degree of movement; and determining that an access should be permitted when the number of acceptable mistakes does not exceed the adjusted entry error value; and after the step of determining that an access should be permitted, allowing, using the entered password, access to at least one of a service or a device protected by the first password.
-
Specification