公开(公告)号：US20240250942A1

公开(公告)日：2024-07-25

申请号：US18156974

申请日：2023-01-19

Applicant: Cisco Technology, Inc.

Inventor： Shayne Miel ,  Joshua Terry ,  Richard Harang ,  Kevin Tyler Burchfield ,  Gillian Gacusan ,  Patrick McMahon ,  Robert Small ,  Jake Ingman

IPC: H04L9/40

CPC classification number: H04L63/0853 ,  H04L63/1433

Abstract: The present technology provides for altering an authentication technique in response to a detection of a possible attack to which the authentication technique is vulnerable. An authentication provider can receive an authentication request to authenticate to a first resource, where the authentication to the first resource is permitted using a particular authentication technique, includes contextual information associated with the first access device and information identifying the first resource. Based on the contextual information, the authentication provider can determine that the authentication request is subject to an ongoing attack, and determine, an alternative authentication technique that is less vulnerable to the ongoing attack than the particular authentication technique. The authentication provider can require the first user account to authenticate with the first resource using the alternative authentication technique that is less vulnerable to the ongoing attack than the particular authentication technique.

公开(公告)号：US20240196220A1

公开(公告)日：2024-06-13

申请号：US18349681

申请日：2023-07-10

Applicant: Cisco Technology, Inc.

Inventor： Jordan Neidlinger ,  Benjamin Warren Freiband ,  Kyle Mills ,  Joshua King ,  Marshall Anderson ,  Aparna Ashok ,  Brendan Lau ,  Gursirat Singh ,  Dylan Miles Kite ,  Robert Small ,  Shayne Miel ,  Richard Harang

IPC: H04W12/50 ,  H04W12/03 ,  H04W12/069 ,  H04W12/63

CPC classification number: H04W12/50 ,  H04W12/03 ,  H04W12/069 ,  H04W12/63

Abstract: A device may receive, from a computing device, a request for a two-factor authentication of a user. A device may transmit, from a server to the computing device and based on the request, multi-factor authentication data to the computing device. A device may establish a short-distance wireless communication link between the computing device and a registered mobile device. A device may transmit, from the computing device and via the short-distance wireless communication link, encrypted data which is encrypted based on the multi-factor authentication data, to the registered mobile device. A device may receive, at the server and from the registered mobile device, a confirmation that corrected data was decrypted from the encrypted data. A device may provide, based on the confirmation, the user with access to a service via the computing device.