System and method for confirming location using supplemental sensor and/or location data

US 9,367,676 B2
Filed: 12/31/2013
Issued: 06/14/2016
Est. Priority Date: 03/22/2013
Status: Active Grant

First Claim

Patent Images

1. A method for user authentication implemented on a client device comprising a memory for storing program code and a processor for processing the program code to cause operations to be performed on the client device comprising:

collecting environmental sensor data from one or more sensors configured on the client device;

determining a current geographical location of the client device from one or more location sensors configured on the client device;

using the geographical location to identify supplemental data associated with the location;

comparing the environmental sensor data with the supplemental data to arrive at a correlation score indicating a level of correlation between the environmental sensor data and the supplemental data, the operation of comparing performed through execution of the program code by the processor; and

responsively selecting one or more authentication techniques for authenticating a user of the client device based on the correlation score and based on an authentication policy associated with a relying party, the operation of responsively selecting performed through execution of the program code by the processor, the authentication techniques including biometric authentication techniques implemented using one or more biometric sensors communicatively coupled to the client device and configured to sense biometric data provided by the user, wherein responsively selecting further comprises selecting a first set of one or more authentication techniques required to meet a first specified assurance threshold for correlation scores below a specified correlation threshold and selecting a second set of one or more authentication techniques required to meet a second specified assurance threshold for correlation scores above the specified correlation threshold, the first specified assurance threshold being greater than the second specified assurance threshold;

wherein the supplemental data is collected from one or more network servers known to include accurate environmental data for the reported location.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system, apparatus, method, and machine readable medium are described for performing authentication using environmental data. For example, one embodiment of a method comprises: collecting environmental sensor data from one or more sensors of a client device; using a geographical location reported by the device to collect supplemental data for the location; comparing the environmental sensor data with the supplemental data to arrive at a correlation score; and responsively selecting one or more authentication techniques for authenticating a user of the client device based on the correlation score.

168 Citations

24 Claims

1. A method for user authentication implemented on a client device comprising a memory for storing program code and a processor for processing the program code to cause operations to be performed on the client device comprising:
- collecting environmental sensor data from one or more sensors configured on the client device;
  
  determining a current geographical location of the client device from one or more location sensors configured on the client device;
  
  using the geographical location to identify supplemental data associated with the location;
  
  comparing the environmental sensor data with the supplemental data to arrive at a correlation score indicating a level of correlation between the environmental sensor data and the supplemental data, the operation of comparing performed through execution of the program code by the processor; and
  
  responsively selecting one or more authentication techniques for authenticating a user of the client device based on the correlation score and based on an authentication policy associated with a relying party, the operation of responsively selecting performed through execution of the program code by the processor, the authentication techniques including biometric authentication techniques implemented using one or more biometric sensors communicatively coupled to the client device and configured to sense biometric data provided by the user, wherein responsively selecting further comprises selecting a first set of one or more authentication techniques required to meet a first specified assurance threshold for correlation scores below a specified correlation threshold and selecting a second set of one or more authentication techniques required to meet a second specified assurance threshold for correlation scores above the specified correlation threshold, the first specified assurance threshold being greater than the second specified assurance threshold;
  
  wherein the supplemental data is collected from one or more network servers known to include accurate environmental data for the reported location.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method as in claim 1 wherein the environmental sensor data comprises a temperature reading, a humidity reading, or a pressure reading.
  - 3. The method as in claim 2 wherein the supplemental data comprises a current temperature, humidity, or pressure associated with the location.
  - 4. The method as in claim 3 wherein the supplemental data is collected from one or more other client devices known to be at the reported location or within a specified distance from the reported location.
  - 5. The method as in claim 3 wherein the supplemental data includes historical data related to the location.
  - 6. The method as in claim 1 wherein comparing comprises determining differences between the supplemental data and the environmental sensor data.
  - 7. The method as in claim 6 wherein the greater the differences, the lower the correlation score and the smaller the differences, the greater the correlation score.
  - 8. The method as in claim 1 wherein for correlation scores below a specified threshold, one or more explicit user authentication techniques are required.
  - 9. The method as in claim 8 wherein the explicit user authentication techniques include manual user personal identification number (PIN) entry, fingerprint authentication, voice authentication, facial authentication, or retinal scan authentication.
  - 10. The method as in claim 1 wherein for correlation scores above a specified threshold, one or more non-intrusive user authentication techniques are implemented.
  - 11. The method as in claim 10 wherein one of the non-intrusive techniques comprises collecting data from one or more additional sensors to detect known behavior of the user.
  - 12. The method as in claim 11 wherein the known behavior of the end user comprises the user'"'"'s gait.

13. A client device comprising a memory for storing program code, one or more sensors, and a processor for processing the program code for user authentication comprising:
- one or more environmental sensors configured on the client device providing environmental sensor data;
  
  one or more location sensors configured on the client device to determine a current geographical location of the client device;
  
  a supplemental data collection module comprising program code executed by the processor to use the geographical location reported by the one or more location sensors to identify supplemental data associated with the location;
  
  the supplemental data correlation module to compare the environmental sensor data with the supplemental data to arrive at a correlation score indicating a level of correlation between the environmental sensor data and the supplemental data; and
  
  an authentication policy module comprising program code executed by the processor to responsively select one or more authentication techniques for authenticating a user of the client device based on the correlation score and based on an authentication policy associated with a relying party; and
  
  one or more biometric sensors communicatively coupled to the client device and configured to sense biometric data provided by the user;
  
  wherein the authentication techniques include biometric authentication techniques implemented using the one or more biometric sensors communicatively coupled to the client device and configured to sense biometric data provided by the user, wherein to responsively select the authentication techniques, the authentication policy module is configured to select a first set of one or more authentication techniques required to meet a first specified assurance threshold for correlation scores below a specified correlation threshold and to select a second set of one or more authentication techniques required to meet a second specified assurance threshold for correlation scores above the specified correlation threshold, the first specified assurance threshold being greater than the second specified assurance threshold;
  
  wherein the supplemental data is collected from one or more network servers known to include accurate environmental data for the reported location.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 14. The client device as in claim 13 wherein the environmental sensors comprise a temperature sensor, a humidity sensor or a pressure sensor and wherein the sensor data comprises a temperature reading, a humidity reading, and/or a pressure reading.
  - 15. The client device as in claim 14 wherein the supplemental data comprises a current temperature, humidity, or pressure associated with the location.
  - 16. The client device as in claim 15 wherein the supplemental data is collected from one or more other client devices known to be at the reported location or within a specified distance from the reported location.
  - 17. The client device as in claim 15 wherein the supplemental data includes historical data related to the location.
  - 18. The client device as in claim 13 wherein comparing comprises determining differences between the supplemental data and the environmental sensor data.
  - 19. The system as in claim 18 wherein the greater the differences, the lower the correlation score and the smaller the differences, the greater the correlation score.
  - 20. The client device as in claim 13 wherein for correlation scores below a specified threshold, one or more explicit user authentication techniques are required.
  - 21. The client device as in claim 20 wherein the explicit user authentication techniques include manual user personal identification number (PIN) entry, fingerprint authentication, voice authentication, facial authentication, or retinal scan authentication.
  - 22. The client device as in claim 13 wherein for correlation scores above a specified threshold, one or more non-intrusive user authentication techniques are implemented.
  - 23. The client device as in claim 22 wherein one of the non-intrusive techniques comprises collecting data from one or more additional sensors to detect known behavior of the user.
  - 24. The client device as in claim 23 wherein the known behavior of the end user comprises the user'"'"'s gait.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nok Nok Labs Incorporated
Original Assignee
Nok Nok Labs Incorporated
Inventors
Wilson, Brendon J.
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
Gundry, Stephen

Application Number

US14/145,607
Publication Number

US 20140289822A1
Time in Patent Office

896 Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/577   Assessing vulnerabilities a...

G06F 2221/2115   Third party

G06Q 20/204   comprising interface for re...

G06Q 20/3224   Transactions dependent on l...

G06Q 20/3274   using a pictured code, e.g....

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/4012   Verifying personal identifi...

G06Q 20/40145   Biometric identity checks

G06Q 20/42   Confirmation, e.g. check or...

G06Q 20/425   using two different network...

G07F 19/20   Automatic teller machines [...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 2463/102   applying security measure f...

H04L 63/0492   by using a location-limited...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

H04L 63/20   for managing network securi...

H04L 9/0819   Key transport or distributi...

H04L 9/0822 : using key encryption key

H04L 9/0841 : involving Diffie-Hellman or...

H04L 9/3231 : Biological data, e.g. finge...

H04L 9/3247 : involving digital signatures

H04L 9/3297 : involving time stamps, e.g....

H04W 12/06 : Authentication

H04W 12/065 : Continuous authentication

View All

System and method for confirming location using supplemental sensor and/or location data

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

168 Citations

24 Claims

Specification

Use Cases

Quick Links

Others

System and method for confirming location using supplemental sensor and/or location data

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

168 Citations

24 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others