公开(公告)号：US11227036B1

公开(公告)日：2022-01-18

申请号：US16201975

申请日：2018-11-27

申请人： Amazon Technologies, Inc.

发明人： Daniel Hitchcock ,  Yogesh Golwalkar ,  Dharinee Gupta ,  Bharath Kumar

IPC分类号： G06F21/31 ,  H04L29/06 ,  G06F17/11 ,  G06F21/45 ,  G06F21/40

摘要： Disclosed are various embodiments for determining authentication assurance using algorithmic decay. In an embodiment, an authentication request associated with an account is received. At least one historical authentication event associated with the account is determined. A measure of authentication assurance is determined based at least in part on applying an exponential time decay to at least one authentication assurance value individually corresponding to the historical authentication event(s). A response to the authentication request is generated based at least in part on the measure of authentication assurance.

公开(公告)号：US11233788B1

公开(公告)日：2022-01-25

申请号：US16201958

申请日：2018-11-27

申请人： Amazon Technologies, Inc.

发明人： Daniel Hitchcock ,  Yogesh Golwalkar ,  Dharinee Gupta ,  Bharath Kumar

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06F21/32 ,  G06F21/31

摘要： Disclosed are various embodiments for determining authentication assurance from a combination of historical and runtime-provided inputs. An authentication request associated with an account is received. A composite measure of authentication assurance is determined from a combination of a historical measure of authentication assurance and a runtime measure of authentication assurance. A response to the authentication request is generated based at least in part on the composite measure of authentication assurance.

公开(公告)号：US10911425B1

公开(公告)日：2021-02-02

申请号：US16201804

申请日：2018-11-27

申请人： Amazon Technologies, Inc.

发明人： Daniel Hitchcock ,  Yogesh Golwalkar ,  Dharinee Gupta ,  Bharath Kumar

IPC分类号： H04L29/06 ,  G06F21/34

摘要： Disclosed are various embodiments for determining authentication assurance based on both user-level and account-level indicators. An authentication request associated with an account is received responsive to an input from a user via a user interface. A user-level measure of authentication assurance corresponding to the user is determined. An account-level measure of authentication assurance corresponding to the account is determined. A composite measure of authentication assurance is then determined from a combination of the user-level measure of authentication assurance and the account-level measure of authentication assurance. A response to the authentication request is generated based at least in part on comparing the composite measure of authentication assurance to a threshold.