User authentication based on historical transaction data
First Claim
Patent Images
1. An apparatus for increasing confidence in user authentication based on transaction data indicating that one or more geographically proximate, card-present transactions were recently approved, the apparatus comprising:
- a memory;
a processor; and
computer-executable instructions stored in the memory, executable by the processor, and configured to cause the processor to;
receive from a user, a request to execute a user action associated with a software application, wherein execution of the user action requires validation of one or more authentication credentials;
collect a transaction set of data comprising information related to one or more card-present transactions conducted by the user, the information indicating that the one or more card-present transactions were approved, card-present transactions and indicating one or more transaction locations at which the one or more card-present transactions were approved;
collect a location set of data comprising information related to a physical location of the user;
determine a current time of day;
determine a transaction proximity score associated with the user and the one or more card-present transactions, comprising;
determining a geographic distance between one or more of the card-present transactions represented in the transaction set of data and the location of the user;
determining an amount of time expired between approval of the one or more card-present transactions and the current time of day;
retrieving a proximity threshold associated with the one or more card-present transactions and the amount of time expired;
determining whether the user is within the proximity threshold based at least in part on the geographic distance; and
determining the transaction proximity score based at least in part on the determination whether the user is within the proximity threshold;
determine a level of authentication associated with the determined transaction proximity score, wherein the determined level of authentication varies as the geographic distance varies;
determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the transaction proximity score;
request one or more authentication credentials corresponding to the determined one or more authentication types;
receive one or more authentication credentials from the user;
validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and
in response to the successful validation of the one or more authentication credentials, allow the user action on the software application.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments are directed to systems, methods and computer program products for providing user authentication based on transaction data. Embodiments receive from a user, a request to execute a user action associated with an application, wherein execution of the user action requires validation of authentication credentials; collect a transaction set of data comprising information related to transactions conducted by the user; collect a location set of data comprising information related to a physical location of the user; determine a transaction proximity score associated with the user and the transactions; determine a level of authentication associated with the determined transaction proximity score; determine which authentication types are associated with the level of authentication; request authentication credentials; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, execute the user action.
144 Citations
6 Claims
-
1. An apparatus for increasing confidence in user authentication based on transaction data indicating that one or more geographically proximate, card-present transactions were recently approved, the apparatus comprising:
-
a memory; a processor; and computer-executable instructions stored in the memory, executable by the processor, and configured to cause the processor to; receive from a user, a request to execute a user action associated with a software application, wherein execution of the user action requires validation of one or more authentication credentials; collect a transaction set of data comprising information related to one or more card-present transactions conducted by the user, the information indicating that the one or more card-present transactions were approved, card-present transactions and indicating one or more transaction locations at which the one or more card-present transactions were approved; collect a location set of data comprising information related to a physical location of the user; determine a current time of day; determine a transaction proximity score associated with the user and the one or more card-present transactions, comprising; determining a geographic distance between one or more of the card-present transactions represented in the transaction set of data and the location of the user; determining an amount of time expired between approval of the one or more card-present transactions and the current time of day; retrieving a proximity threshold associated with the one or more card-present transactions and the amount of time expired; determining whether the user is within the proximity threshold based at least in part on the geographic distance; and determining the transaction proximity score based at least in part on the determination whether the user is within the proximity threshold; determine a level of authentication associated with the determined transaction proximity score, wherein the determined level of authentication varies as the geographic distance varies; determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the transaction proximity score; request one or more authentication credentials corresponding to the determined one or more authentication types; receive one or more authentication credentials from the user; validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; and in response to the successful validation of the one or more authentication credentials, allow the user action on the software application. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeBank of America Corp.
-
Original AssigneeBank of America Corp.
-
InventorsGrigg, David M., Bertanzetti, Peter John, Toth, Michael E., Hanson, Carrie Anne, Votaw, Elizabeth S.
-
Primary Examiner(s)Mehedi, Morshed
-
Assistant Examiner(s)Naghdali, Khalil
-
Application NumberUS15/047,114Publication NumberTime in Patent Office257 DaysField of Search726/7US Class Current1/1CPC Class CodesG06F 16/24578 using rankingG06Q 20/3224 Transactions dependent on l...G06Q 20/327 Short range or proximity pa...G06Q 20/34 using cards, e.g. integrate...G06Q 20/384 using social networksG06Q 20/386 using messaging services or...G06Q 20/4016 involving fraud or risk lev...G06Q 20/405 Establishing or using trans...H04L 2463/082 applying multi-factor authe...H04L 63/08 for authentication of entit...H04W 12/04 Key management, e.g. using ...H04W 12/61 Time-dependentH04W 12/64 using geofenced areas
