公开(公告)号：US10212588B2

公开(公告)日：2019-02-19

申请号：US14849352

申请日：2015-09-09

Applicant: salesforce.com, inc.

Inventor： Evan Tyler Grim ,  Josh Alexander

IPC: H04W12/06 ,  H04L29/06 ,  H04W12/08

Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. In some embodiments, based on a change in one or more automation criteria (e.g., based on a mobile device entering a particular geographic region) a mobile device is configured to preemptively indicate to an authorization system to automatically authorize a subsequent attempt to perform an action, without transmitting the permission request to the mobile device. The mobile device may later revoke the preemptive permission request, e.g., based on another change in automation criteria. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.

公开(公告)号：US20180359233A1

公开(公告)日：2018-12-13

申请号：US15621628

申请日：2017-06-13

Applicant: salesforce.com, inc.

Inventor： Josh Alexander ,  Seth Holloway ,  Evan Tyler Grim ,  Ian Glazer ,  William Charles Mortimore, JR.

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L63/0861 ,  H04L63/105 ,  H04L2463/082

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself and/or communications characteristics that are determined from the user's communications. In some embodiments, the degree of preauthentication progressively increases or decreases with the degree of use on the first application; that is, the user is preauthenticated to greater or fewer portions of an authentication procedure, to perform greater or fewer actions, or to perform actions more or less critical to security, as additional information regarding the user's communication on the first application becomes available. In some embodiments, preauthentication may be revoked as additional contextual information becomes available on the first application.

公开(公告)号：US09210150B2

公开(公告)日：2015-12-08

申请号：US14071637

申请日：2013-11-04

Applicant: SALESFORCE.COM, INC.

Inventor： Evan Tyler Grim ,  Josh Alexander

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04L63/08 ,  H04L63/0861 ,  H04L63/107 ,  H04L2463/082 ,  H04W12/06

Abstract: Systems and methods for authenticating defined user actions over a computer network. An authentication service receives an authentication request from an authenticating service to perform an action on behalf of a user. The authentication service then sends a permission request to a mobile device associated with the user, asking the user whether or not the action should be allowed. The user sends a permission response via the mobile device to the authentication service, granting or denying the action. The user may automate future similar responses so long as at least one automation criterion is met (e.g., the physical location of the mobile device), eliminating the need to manually provide a response to future permission requests. Information necessary to determine whether the automation criterion is met is stored locally on the mobile device.

Abstract translation: 用于通过计算机网络认证定义的用户动作的系统和方法。 认证服务从认证服务接收认证请求，以代表用户执行动作。 然后，认证服务向与用户相关联的移动设备发送许可请求，询问用户是否应该允许该动作。 用户通过移动设备向认证服务发送许可响应，授予或拒绝该动作。 只要满足至少一个自动化标准（例如，移动设备的物理位置），用户可以自动化将来的类似响应，消除了对未来许可请求的手动提供响应的需要。 确定是否满足自动化标准所需的信息存储在移动设备本地。

公开(公告)号：US11677732B2

公开(公告)日：2023-06-13

申请号：US16875145

申请日：2020-05-15

Applicant: salesforce.com, inc.

Inventor： Josh Alexander ,  Seth Holloway ,  Evan Tyler Grim ,  Ian Glazer ,  William Charles Mortimore, Jr.

IPC: H04L9/40 ,  H04W12/062

CPC classification number: H04L63/08 ,  H04L63/083 ,  H04L63/0861 ,  H04W12/062 ,  H04L2463/082

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself, communications characteristics that are determined from the user's communications, or both. In some embodiments, the degree of preauthentication progressively increases or decreases with the degree of use on the first application; that is, the user is preauthenticated to greater or fewer portions of an authentication procedure, to perform greater or fewer actions, or to perform actions more or less critical to security, as additional information regarding the user's communication on the first application becomes available. In some embodiments, preauthentication may be revoked as additional contextual information becomes available on the first application.

公开(公告)号：US20190199734A1

公开(公告)日：2019-06-27

申请号：US16290678

申请日：2019-03-01

Applicant: salesforce.com, inc.

Inventor： Evan Tyler Grim ,  Josh Alexander

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04L63/107 ,  H04L63/08 ,  H04L63/0861 ,  H04L2463/082 ,  H04W4/80 ,  H04W12/00502 ,  H04W12/00508 ,  H04W12/06

Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. A mobile device may allow a user to automate responses to future permission requests for multi-factor authentication procedures. The mobile device may automatically respond to subsequent permission requests based on one or more automation criteria. Authorized actions may include login, transaction approval, physical access, vehicle ignition, account recovery, etc. The automation criteria may include location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, image characteristics, etc. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.

公开(公告)号：US10225264B2

公开(公告)日：2019-03-05

申请号：US14849323

申请日：2015-09-09

Applicant: salesforce.com, inc.

Inventor： Evan Tyler Grim ,  Josh Alexander

IPC: H04L29/06 ,  H04W12/06 ,  H04W4/80

Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. A mobile device may display an option to allow a user to automate responses to future permission requests to perform an action. The mobile device may automatically respond to subsequent permission requests based on at least one automation criterion. The action may include login, transaction approval, physical access, vehicle ignition, account recovery, etc. The automation criteria may include location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, image characteristics, etc. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.

公开(公告)号：US20160080348A1

公开(公告)日：2016-03-17

申请号：US14940868

申请日：2015-11-13

Applicant: salesforce.com, inc.

Inventor： Evan Tyler Grim ,  Josh Alexander

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04L63/08 ,  H04L63/0861 ,  H04L63/107 ,  H04L2463/082 ,  H04W12/06

Abstract: Systems and methods for authenticating defined user actions over a computer network. An authentication service receives an authentication request from an authenticating service to perform an action on behalf of a user. The authentication service then sends a permission request to a mobile device associated with the user, asking the user whether or not the action should be allowed. The user sends a permission response via the mobile device to the authentication service, granting or denying the action. The user may automate future similar responses so long as at least one automation criterion is met (e.g., the physical location of the mobile device), eliminating the need to manually provide a response to future permission requests. Information necessary to determine whether the automation criterion is met is stored locally on the mobile device.

公开(公告)号：US20150381602A1

公开(公告)日：2015-12-31

申请号：US14849312

申请日：2015-09-09

Applicant: salesforce.com, inc.

Inventor： Evan Tyler Grim ,  Josh Alexander

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L63/0861 ,  H04L63/107 ,  H04L2463/082 ,  H04W12/06

Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. In some embodiments a mobile device receives permission requests that specify sets of one or more automation criteria. In some embodiments, the mobile device prompts a user for a response to permission requests when the criteria are not met and automatically responds to permission requests (e.g., without requiring user input) when the criteria are met. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.

Abstract translation: 公开了关于自动化许可请求的技术，例如在多因素认证的上下文中。 在一些实施例中，移动设备接收指定一个或多个自动化标准的集合的许可请求。 在一些实施例中，当满足标准时，移动设备提示用户响应许可请求，并且在符合标准时自动响应许可请求（例如，不需要用户输入）。 在一些实施例中，公开的技术可以增加授权安全性，同时减少多因素认证的用户交互。