User authentication based on self-selected preferences

US 9,391,990 B2
Filed: 02/18/2016
Issued: 07/12/2016
Est. Priority Date: 02/07/2014
Status: Active Grant

First Claim

Patent Images

1. A computer program product for user authentication based on self-selected preferences, the computer program product comprising a non-transitory computer-readable medium comprising code causing a first apparatus to:

receive a request to execute a user action from a user associated with an application, wherein the user action requires validation of one or more authentication credentials;

access a user-selected preference indicating a level of authentication associated with a user-selected preference predefined by the user, wherein the user-selected preference comprises a time duration, a geographic location, and one or more features associated with the application, wherein the time duration is scheduled dynamically;

determine one or more authentication types from a plurality of authentication types associated with the level of authentication and the user-selected preference, wherein the one or more authentication types comprises at least one of a hard authentication, a soft authentication, and a zero authentication, wherein the hard authentication is a multi-step verification requiring a user presentation of at least two authentication credentials, wherein the soft authentication is a secondary verification requiring a user presentation of at least one authentication credential associated with the authentication types, wherein zero authentication requires no authentication credentials;

determine that at least one of the user-selected preferences are satisfied by the user;

request one or more authentication credentials corresponding to the determined one or more authentication types based on at least determining that at least one of the user-selected preferences are satisfied;

receive one or more authentication credentials from the user;

validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and

in response to the successful validation of the one or more authentication credentials, execute the user action, wherein executing the user action further comprises enabling the user to access one or more features associated with the application, wherein the one or more features are pre-selected by the user based on the user-selected preferences.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the invention are directed to a system, method, and a computer program product for a user authentication based on self-selected preferences. The system typically including a memory, a processor, and a module configured to receive a request to execute a user action from a user associated with an application, wherein the user action requires one or more authentication credentials; receive one or more authentication credentials from the user based on a user-selected preference; validate the one or more authentication credentials based on the user-selected preference; and execute the user action based on a successful validation of the one or more authentication credentials.

44 Citations

View as Search Results

22 Claims

1. A computer program product for user authentication based on self-selected preferences, the computer program product comprising a non-transitory computer-readable medium comprising code causing a first apparatus to:
- receive a request to execute a user action from a user associated with an application, wherein the user action requires validation of one or more authentication credentials;
  
  access a user-selected preference indicating a level of authentication associated with a user-selected preference predefined by the user, wherein the user-selected preference comprises a time duration, a geographic location, and one or more features associated with the application, wherein the time duration is scheduled dynamically;
  
  determine one or more authentication types from a plurality of authentication types associated with the level of authentication and the user-selected preference, wherein the one or more authentication types comprises at least one of a hard authentication, a soft authentication, and a zero authentication, wherein the hard authentication is a multi-step verification requiring a user presentation of at least two authentication credentials, wherein the soft authentication is a secondary verification requiring a user presentation of at least one authentication credential associated with the authentication types, wherein zero authentication requires no authentication credentials;
  
  determine that at least one of the user-selected preferences are satisfied by the user;
  
  request one or more authentication credentials corresponding to the determined one or more authentication types based on at least determining that at least one of the user-selected preferences are satisfied;
  
  receive one or more authentication credentials from the user;
  
  validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and
  
  in response to the successful validation of the one or more authentication credentials, execute the user action, wherein executing the user action further comprises enabling the user to access one or more features associated with the application, wherein the one or more features are pre-selected by the user based on the user-selected preferences.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The computer program product of claim 1, wherein receiving one or more authentication credentials from the user comprises receiving hard authentication and enabling the user with full access to the application.
  - 3. The computer program product of claim 1, wherein the authentication factor associated with the multi-step verification is at least one of a username, a password, a personal identification number, or a biometric indicia.
  - 4. The computer program product of claim 1, wherein receiving one or more authentication credentials from the user comprises receiving soft authentication and enabling the user with partial access to the application, wherein partial access comprises access to one or more specific features of the application.
  - 5. The computer program product of claim 1, wherein the user-selected preference comprises a user selection of the one or more features associated with the partial access to the application.
  - 6. The computer program product of claim 1, wherein the at least one authentication factor associated with the secondary verification comprises at least one of a social media authentication, an internet protocol (IP) based authentication, a fob, or a signed digital certificate.
  - 7. The computer program product of claim 1, wherein the zero authentication comprises restricting the user from access to the application after a predetermined number of authentication attempts to access the application.
  - 8. The computer program product of claim 1, wherein the code is further configured to cause the processor to place a provisional flag on the application after exhaustion of a predetermined number of authentication attempts to access the application, wherein placing a provisional flag comprises notifying the user using a secondary means for contact.
  - 9. The computer program product of claim 1, wherein receiving one or more authentication credentials comprises receiving an input from the user.
  - 10. The computer program product of claim 1, wherein the application is associated with a financial institution.
  - 11. The computer program product of claim 1, wherein the user action comprises at least one of a funds transfer, viewing an account summary, a deposit, a withdrawal, or viewing a receipt.

12. A method for user authentication based on self-selected preferences, the method comprising:
- receiving, using a computing device processor, a request to execute a user action from a user associated with an application, wherein the user action requires validation of one or more authentication credentials;
  
  accessing, using a computing device processor, a user-selected preference indicating a level of authentication associated with a user-selected preference predefined by the user, wherein the user-selected preference comprises a time duration, a geographic location, and one or more features associated with the application, wherein the time duration is scheduled dynamically;
  
  determining, using a computing device processor, one or more authentication types from a plurality of authentication types associated with the level of authentication and the user-selected preference, wherein the one or more authentication types comprises at least one of a hard authentication, a soft authentication, and a zero authentication, wherein the hard authentication is a multi-step verification requiring a user presentation of at least two authentication credentials, wherein the soft authentication is a secondary verification requiring a user presentation of at least one authentication credential associated with the authentication types, wherein zero authentication requires no authentication credentials;
  
  determining, using a computing device processor, that at least one of the user-selected preferences are satisfied by the user;
  
  requesting, using a computing device processor, one or more authentication credentials corresponding to the determined one or more authentication types based on at least determining that at least one of the user-selected preferences are satisfied;
  
  receiving, using a computing device processor, one or more authentication credentials from the user;
  
  validating, using a computing device processor, the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and
  
  in response to the successful validation of the one or more authentication credentials, executing, using a computing device processor, the user action, wherein executing the user action further comprises enabling the user to access the one or more features associated with the application, wherein the one or more features are pre-selected by the user based on the user-selected preferences.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. The method of claim 12, wherein receiving one or more authentication credentials from the user comprises receiving hard authentication and enabling the user with full access to the application.
  - 14. The method of claim 12, wherein the authentication factor associated with the multi-step verification is at least one of a username, a password, a personal identification number, or a biometric indicia.
  - 15. The method of claim 12, wherein receiving one or more authentication credentials from the user comprises receiving soft authentication and enabling the user with partial access to the application, wherein partial access comprises access to one or more specific features of the application.
  - 16. The method of claim 12, wherein the user-selected preference comprises a user selection of the one or more features associated with the partial access to the application.
  - 17. The method of claim 12, wherein the at least one authentication factor associated with the secondary verification comprises at least one of a social media authentication, an internet protocol (IP) based authentication, a fob, or a signed digital certificate.
  - 18. The method of claim 12, wherein the zero authentication comprises restricting the user from access to the application after a predetermined number of authentication attempts to access the application.
  - 19. The method of claim 12, wherein the code is further configured to cause the processor to place a provisional flag on the application after exhaustion of a predetermined number of authentication attempts to access the application, wherein placing a provisional flag comprises notifying the user using a secondary means for contact.
  - 20. The method of claim 12, wherein receiving one or more authentication credentials comprises receiving an input from the user.
  - 21. The method of claim 12, wherein the application is associated with a financial institution.
  - 22. The method of claim 12, wherein the user action comprises at least one of a funds transfer, viewing an account summary, a deposit, a withdrawal, or viewing a receipt.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Grigg, David M., Johansen, Joseph Neil, Hanson, Carrie Anne, Burrell, Charles Jason, Votaw, Elizabeth S.
Primary Examiner(s)
Mehedi, Morshed
Assistant Examiner(s)
Naghdali, Khalil

Application Number

US15/047,336
Publication Number

US 20160173497A1
Time in Patent Office

145 Days
Field of Search

726/7
US Class Current

1/1
CPC Class Codes

G06F 21/31   User authentication

H04L 63/08   for authentication of entit...

H04L 63/0876   based on the identity of th...

H04L 63/10   for controlling access to d...

User authentication based on self-selected preferences

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

44 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

User authentication based on self-selected preferences

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

44 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links