公开(公告)号：US20200280552A1

公开(公告)日：2020-09-03

申请号：US16875145

申请日：2020-05-15

Applicant: salesforce.com, inc.

Inventor： Josh Alexander ,  Seth Holloway ,  Evan Tyler Grim ,  Ian Glazer ,  William Charles Mortimore, JR.

IPC: H04L29/06 ,  H04W12/06

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself, communications characteristics that are determined from the user's communications, or both. In some embodiments, the degree of preauthentication progressively increases or decreases with the degree of use on the first application; that is, the user is preauthenticated to greater or fewer portions of an authentication procedure, to perform greater or fewer actions, or to perform actions more or less critical to security, as additional information regarding the user's communication on the first application becomes available. In some embodiments, preauthentication may be revoked as additional contextual information becomes available on the first application.

公开(公告)号：US11108764B2

公开(公告)日：2021-08-31

申请号：US16025885

申请日：2018-07-02

Applicant: salesforce.com, inc.

Inventor： Joshua David Alexander ,  Seth Holloway ,  Alexa Staudt ,  Ian Michael Glazer ,  William C. Mortimore, Jr.

IPC: H04W12/06 ,  G06N5/02 ,  H04L29/06

Abstract: Techniques are disclosed relating to automating authentication decisions for a multi-factor authentication scheme based on computer learning. In disclosed embodiments, a mobile device receives a first request corresponding to a factor in a first multi-factor authentication procedure. Based on user input approving or denying the first request, the mobile device sends a response to the first request and stores values of multiple parameters associated with the first request. The mobile device receives a second request corresponding to a factor in a second multi-factor authentication procedure where the second request is for authentication for a different account than the first request. The mobile device automatically generates an approval response to the second request based on performing a computer learning process on inputs that include values of multiple parameters for the second request and the stored values of the multiple parameters associated with the first request. The approval response is automatically generated and sent without receiving user input to automate the second request.

公开(公告)号：US20220060465A1

公开(公告)日：2022-02-24

申请号：US17461303

申请日：2021-08-30

Applicant: salesforce.com, inc.

Inventor： Joshua David Alexander ,  Seth Holloway ,  Alexa Staudt ,  Ian Michael Glazer ,  William C. Mortimore, JR.

IPC: H04L29/06 ,  H04W12/06 ,  G06N5/02

Abstract: Techniques are disclosed relating to automating authentication decisions for a multi-factor authentication scheme based on computer learning. In disclosed embodiments, a mobile device receives a first request corresponding to a factor in a first multi-factor authentication procedure. Based on user input approving or denying the first request, the mobile device sends a response to the first request and stores values of multiple parameters associated with the first request. The mobile device receives a second request corresponding to a factor in a second multi-factor authentication procedure where the second request is for authentication for a different account than the first request. The mobile device automatically generates an approval response to the second request based on performing a computer learning process on inputs that include values of multiple parameters for the second request and the stored values of the multiple parameters associated with the first request. The approval response is automatically generated and sent without receiving user input to automate the second request.

公开(公告)号：US10659446B2

公开(公告)日：2020-05-19

申请号：US15621628

申请日：2017-06-13

Applicant: salesforce.com, inc.

Inventor： Josh Alexander ,  Seth Holloway ,  Evan Tyler Grim ,  Ian Glazer ,  William Charles Mortimore, Jr.

IPC: G06F7/04 ,  H04L29/06 ,  H04W12/06

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself and/or communications characteristics that are determined from the user's communications. In some embodiments, the degree of preauthentication progressively increases or decreases with the degree of use on the first application; that is, the user is preauthenticated to greater or fewer portions of an authentication procedure, to perform greater or fewer actions, or to perform actions more or less critical to security, as additional information regarding the user's communication on the first application becomes available. In some embodiments, preauthentication may be revoked as additional contextual information becomes available on the first application.

公开(公告)号：US20200099682A1

公开(公告)日：2020-03-26

申请号：US16140265

申请日：2018-09-24

Applicant: salesforce.com, inc.

Inventor： Joshua ALEXANDER ,  Seth Holloway

IPC: H04L29/06 ,  H04L29/08

Abstract: Embodiments of the present disclosure relate to authenticating user communication sessions. Other embodiments may be described and/or claimed.

公开(公告)号：US20180359233A1

公开(公告)日：2018-12-13

申请号：US15621628

申请日：2017-06-13

Applicant: salesforce.com, inc.

Inventor： Josh Alexander ,  Seth Holloway ,  Evan Tyler Grim ,  Ian Glazer ,  William Charles Mortimore, JR.

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L63/0861 ,  H04L63/105 ,  H04L2463/082

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself and/or communications characteristics that are determined from the user's communications. In some embodiments, the degree of preauthentication progressively increases or decreases with the degree of use on the first application; that is, the user is preauthenticated to greater or fewer portions of an authentication procedure, to perform greater or fewer actions, or to perform actions more or less critical to security, as additional information regarding the user's communication on the first application becomes available. In some embodiments, preauthentication may be revoked as additional contextual information becomes available on the first application.

公开(公告)号：US20230244775A1

公开(公告)日：2023-08-03

申请号：US17649479

申请日：2022-01-31

Applicant: salesforce.com, inc.

Inventor： Joshua David Alexander ,  Seth Holloway ,  Alexa Staudt ,  Ian Michael Glazer ,  William C. Mortimore, JR.

IPC: G06F21/40 ,  G06N20/00

CPC classification number: G06F21/40 ,  G06N20/00

Abstract: Techniques are disclosed relating to determining risk associated with automated authentication decisions for a multi-factor authentication scheme. In disclosed embodiments, a server system sends requests corresponding to factors in a current multi-factor authentication procedure to a mobile device. The system receives, from the mobile device, automatically generated responses for the factors, where the responses are automatically generated at the mobile device using a machine learning model based on a current set of parameters for the current procedure and a previous set of parameters for a prior procedure. Based on a current state of the mobile device received with the automatically generated responses and prior states of the mobile device stored at the server computer system, the system determines a risk score for the automatically generated responses. Based on the risk score, the system generates an authorization decision for an authorization request corresponding to the current multi-factor authentication procedure.

公开(公告)号：US11677732B2

公开(公告)日：2023-06-13

申请号：US16875145

申请日：2020-05-15

Applicant: salesforce.com, inc.

Inventor： Josh Alexander ,  Seth Holloway ,  Evan Tyler Grim ,  Ian Glazer ,  William Charles Mortimore, Jr.

IPC: H04L9/40 ,  H04W12/062

CPC classification number: H04L63/08 ,  H04L63/083 ,  H04L63/0861 ,  H04W12/062 ,  H04L2463/082

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself, communications characteristics that are determined from the user's communications, or both. In some embodiments, the degree of preauthentication progressively increases or decreases with the degree of use on the first application; that is, the user is preauthenticated to greater or fewer portions of an authentication procedure, to perform greater or fewer actions, or to perform actions more or less critical to security, as additional information regarding the user's communication on the first application becomes available. In some embodiments, preauthentication may be revoked as additional contextual information becomes available on the first application.

公开(公告)号：US20200007532A1

公开(公告)日：2020-01-02

申请号：US16025885

申请日：2018-07-02

Applicant: salesforce.com, inc.

Inventor： Joshua David Alexander ,  Seth Holloway ,  Alexa Staudt ,  Ian Michael Glazer ,  William C. Mortimore, JR.

IPC: H04L29/06 ,  H04W12/06 ,  G06N5/02

Abstract: Techniques are disclosed relating to automating authentication decisions for a multi-factor authentication scheme based on computer learning. In disclosed embodiments, a mobile device receives a first request corresponding to a factor in a first multi-factor authentication procedure. Based on user input approving or denying the first request, the mobile device sends a response to the first request and stores values of multiple parameters associated with the first request. The mobile device receives a second request corresponding to a factor in a second multi-factor authentication procedure where the second request is for authentication for a different account than the first request. The mobile device automatically generates an approval response to the second request based on performing a computer learning process on inputs that include values of multiple parameters for the second request and the stored values of the multiple parameters associated with the first request. The approval response is automatically generated and sent without receiving user input to automate the second request.