公开(公告)号：US20190245851A1

公开(公告)日：2019-08-08

申请号：US16385776

申请日：2019-04-16

Applicant: UnifyID

Inventor： John C. Whaley ,  Kurt W. Somerville

IPC: H04L29/06 ,  H04W4/80 ,  G06K9/00

CPC classification number: G06F21/35 ,  G06F21/316 ,  G06F21/32 ,  G06K9/00348 ,  G06K9/00885 ,  G06N20/00 ,  H04L63/0861 ,  H04L63/0884 ,  H04W4/38 ,  H04W4/80 ,  H04W12/00505 ,  H04W12/00508 ,  H04W12/06

Abstract: The disclosed embodiments provide a system that authenticates a user of an unattended device. In response to sensing a presence of the user in proximity to the unattended device, the system makes a call from the unattended device to an authentication service to authenticate the user. In response to the call, the authentication service authenticates the user based on recently collected sensor data, which was obtained from one or more sensors in a portable electronic device belonging to the user. If authentication succeeds, the system allows the user to proceed with an interaction with the unattended device.

公开(公告)号：US10057289B2

公开(公告)日：2018-08-21

申请号：US13964540

申请日：2013-08-12

Applicant: International Business Machines Corporation

Inventor： Tamer E. Abuelsaad ,  Vishal C. Aslot ,  Adekunle Bello ,  Gregory J. Boss

IPC: G06F7/04 ,  H04L29/06 ,  G06F21/41 ,  G06F21/62 ,  H04W12/06

CPC classification number: H04L63/20 ,  G06F21/41 ,  G06F21/6218 ,  G06F2221/2103 ,  G06F2221/2149 ,  H04L63/107 ,  H04W12/00503 ,  H04W12/00505 ,  H04W12/06

Abstract: A system and method and computer program product for user authentication that uses information about a user's context or context of their personal device(s) to dynamically modify that user's authentication or login requirements to an application in a computer or mobile device. The system is configured to run methods that detect and make use of a user's context that includes: a current environment or personal context, and uses this capability to enable variable strength authentication when attempting to log in or enter another application or resource. In one embodiment, the system implements methods to dynamically adjust the authentication challenge as a differential of all accumulated user contexts (e.g., providing a shorter password or pin-code).

公开(公告)号：US20180025148A1

公开(公告)日：2018-01-25

申请号：US15654096

申请日：2017-07-19

Applicant: Aetna Inc.

Inventor： Salil Kumar Jain ,  Abbie Barbir ,  Derek Swift

IPC: G06F21/40 ,  G06F21/57

CPC classification number: G06F21/40 ,  G06F21/32 ,  G06F21/34 ,  G06F21/35 ,  G06F21/57 ,  G06F21/6218 ,  G06F2221/0708 ,  G06F2221/2109 ,  G06F2221/2111 ,  G06F2221/2137 ,  H04L9/006 ,  H04L9/0872 ,  H04L9/3213 ,  H04L9/3215 ,  H04L9/3234 ,  H04W12/00505

Abstract: Embodiments of the disclosure provide a method for enhancing standard authentication systems to include risk-based decisions. Risk-based decisions can be selectively implemented within existing authentication systems to strategically modify and supplement security if an unacceptable risk is detected. Embodiments capture information pertaining to a user and user device. Information is stored to create a profile for the user and user device. A comparison between the stored information and live data can be performed within authentication systems to optimize security. If the results of the comparison demonstrate the presence of an acceptable risk, then the need for subsequent authentication can be reduced or eliminated, which improves a user experience.

公开(公告)号：US20180006821A1

公开(公告)日：2018-01-04

申请号：US15540759

申请日：2016-02-17

Applicant: Visa International Service Association

Inventor： Veerish KINAGI

IPC: H04L9/32 ,  H04W4/02 ,  H04W12/08 ,  H04W12/06

CPC classification number: H04L9/3234 ,  H04L9/3213 ,  H04L9/3228 ,  H04L63/107 ,  H04L63/108 ,  H04L2209/56 ,  H04L2209/80 ,  H04L2463/121 ,  H04W4/02 ,  H04W4/029 ,  H04W12/00502 ,  H04W12/00503 ,  H04W12/00505 ,  H04W12/02 ,  H04W12/06 ,  H04W12/12

Abstract: Systems and methods for token processing are disclosed. An access device can provide access device data to a mobile communication device. The communication device generates a token request including the access device data and communication device data and sends the token request to a server computer. The server computer returns a token and a token cryptogram to the mobile communication device. The token and the cryptogram may be used in a transaction.

公开(公告)号：US20160381067A1

公开(公告)日：2016-12-29

申请号：US15196252

申请日：2016-06-29

Applicant: Argus Cyber Security Ltd.

Inventor： Yaron GALULA ,  Ofer BEN-NOON ,  Oron LAVI

IPC: H04L29/06 ,  B60R25/30 ,  B60R16/023 ,  B60R25/10 ,  H04L29/08 ,  G07C5/08

CPC classification number: H04L63/1441 ,  B60R16/0231 ,  B60R16/0232 ,  B60R21/01 ,  B60R25/10 ,  B60R25/30 ,  B60R2021/01197 ,  G07C5/0816 ,  G07C5/0841 ,  H04L63/02 ,  H04L63/123 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/20 ,  H04L67/12 ,  H04W12/00502 ,  H04W12/00505 ,  H04W12/00508 ,  H04W12/10 ,  H04W12/12

Abstract: A system and method for providing security to a network may include maintaining, by a processor, a model of an expected behavior of data communications over the in-vehicle communication network; receiving, by the processor, a message sent over the network; determining, by the processor, based on the model and based on content in the message, whether or not the message complies with the model; and if the message does not comply with the model then performing, by the processor, at least one action related to the message.

Abstract translation: 用于向网络提供安全性的系统和方法可以包括由处理器维护车载通信网络上的数据通信的预期行为的模型; 由处理器接收通过网络发送的消息; 由所述处理器基于所述模型并基于所述消息中的内容来确定所述消息是否符合所述模型; 并且如果消息不符合模型，则处理器执行与消息相关的至少一个动作。

公开(公告)号：US20160219436A1

公开(公告)日：2016-07-28

申请号：US15003455

申请日：2016-01-21

Applicant: VODAFONE IP LICENSING LIMITED

Inventor： Jyoti Bhasin ,  Ben Awuah ,  Megha Jasuja

IPC: H04W12/06 ,  H04L29/06

CPC classification number: H04W12/06 ,  H04L63/0876 ,  H04L67/306 ,  H04W4/029 ,  H04W12/00503 ,  H04W12/00505 ,  H04W12/1206

Abstract: A method of verifying user characteristics based on data relating to the user's mobile device, the method being performed at a mobile or wireless telecommunications network and comprising the steps of receiving at a data analysis system of the mobile or wireless telecommunications network via a computer network a query from a remote computer system; the data analysis system retrieving data relating to the user's mobile device from a data store system of the mobile or wireless telecommunications network, wherein the retrieved data is selected based on the query; the data analysis system processing the retrieved data to obtain an answer to the query; and transmitting the answer to the remote computer system.

Abstract translation: 一种基于与用户的移动设备相关的数据验证用户特征的方法，该方法在移动或无线电信网络中执行，并且包括以下步骤：经由计算机网络在移动或无线电信网络的数据分析系统处接收 从远程计算机系统查询; 所述数据分析系统从所述移动或无线电信网络的数据存储系统检索与所述用户的移动设备相关的数据，其中，基于所述查询来选择检索到的数据; 数据分析系统处理检索到的数据以获得查询的答案; 并将答案发送给远程计算机系统。

公开(公告)号：US20160029211A1

公开(公告)日：2016-01-28

申请号：US14876222

申请日：2015-10-06

Applicant: FUJITSU LIMITED

Inventor： Daitarou Furuta

IPC: H04W12/02 ,  H04L9/08

CPC classification number: H04W12/02 ,  H04L9/088 ,  H04L69/24 ,  H04L2209/80 ,  H04W4/18 ,  H04W12/00505 ,  Y02D70/00 ,  Y02D70/122 ,  Y02D70/1242 ,  Y02D70/1262 ,  Y02D70/23

Abstract: A terminal device using a protocol stack including an upper layer and a lower layer includes a first encryption unit configured to perform first encryption and/or first decryption of data in the upper layer, a second encryption unit configured to perform second encryption and/or second decryption of data in the lower layer, a determination unit configured to determine an encryption level of the second encryption and/or second decryption according to a condition of the terminal device, a generation unit configured to generate terminal capability information according to the determined encryption level, a transmission unit configured to transmit the generated terminal capability information to a base station, and a reception unit configured to receive setting information according to the determined encryption level, from the base station, in response to transmission of the terminal capability information.

Abstract translation: 使用包括上层和下层的协议栈的终端装置包括被配置为执行上层数据的第一加密和/或第一解密的第一加密单元，被配置为执行第二加密和/或第二加密的第二加密单元 解密下层的数据，确定单元，被配置为根据终端设备的条件确定第二加密和/或第二解密的加密级别;生成单元，被配置为根据确定的加密级别生成终端能力信息 发送单元，被配置为向基站发送生成的终端能力信息;以及接收单元，被配置为响应于终端能力信息的发送，从基站接收根据所确定的加密级别的设置信息。

公开(公告)号：US20150256550A1

公开(公告)日：2015-09-10

申请号：US14201237

申请日：2014-03-07

Applicant: Comcast Cable Communications, LLC

Inventor： James C. Taylor ,  Anil K. Khanna ,  Jasbir Rajpal ,  VenugopalRao Mudigonda ,  Nirav Dave ,  Padmini Bettadapura ,  Benjamin Lieberman

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L67/18 ,  H04L63/107 ,  H04W4/023 ,  H04W4/029 ,  H04W12/00503 ,  H04W12/00505 ,  H04W12/08 ,  H04W48/04

Abstract: Methods, computing devices, and systems that dynamically determine whether a request is authorized or fraudulent are described herein. A computing device may receive a request from a communication device, and a geographical location of the communication device may be determined. User information may be requested, and based on the information and the geographical location of the communication device, a risk value can be calculated. A determination of whether to honor the request may be based on the subscriber risk value.

Abstract translation: 这里描述了动态地确定请求是授权还是欺诈的方法，计算设备和系统。 计算设备可以从通信设备接收请求，并且可以确定通信设备的地理位置。 可以请求用户信息，并且基于通信设备的信息和地理位置，可以计算风险值。 是否遵守请求的决定可能是基于用户风险值。

公开(公告)号：US20150163668A1

公开(公告)日：2015-06-11

申请号：US14564891

申请日：2014-12-09

Applicant: Tsinghua University

Inventor： Yongwei WU ,  Kai HUANG ,  Kang CHEN ,  Huan FENG

IPC: H04W12/02

CPC classification number: H04W12/02 ,  H04L63/20 ,  H04W12/00505

Abstract: The present disclosure disclosures a protecting system and method for privacy information in a mobile terminal. In the system, a crowdsourcing database stores security strategy information of applications. An interaction management module receives a recommendation request of security strategy sent by the mobile terminal. A recommendation algorithm module calculates according to the recommendation request of security strategy to obtain corresponding recommended security strategy. An interaction management module recommends the recommended security strategy to the privacy protecting module. A privacy protecting module notifies a user and assists the mobile terminal to set privacy protection strategy according to the recommended security strategy recommended by the interaction management module, and protects the privacy information in the mobile terminal according to the privacy protection strategy. The system can set privacy protection dynamically. In this way, user experience is improved.

Abstract translation: 本公开公开了一种用于移动终端中的隐私信息的保护系统和方法。 在系统中，众包数据库存储应用程序的安全策略信息。 交互管理模块接收由移动终端发送的安全策略的推荐请求。 推荐算法模块根据安全策略的推荐请求计算得到相应的推荐安全策略。 交互管理模块向隐私保护模块推荐推荐的安全策略。 隐私保护模块通知用户，并协助移动终端根据交互管理模块推荐的推荐安全策略设置隐私保护策略，并根据隐私保护策略保护移动终端中的隐私信息。 系统可以动态设置隐私保护。 以这种方式，用户体验得到改善。

公开(公告)号：US20140198687A1

公开(公告)日：2014-07-17

申请号：US14214492

申请日：2014-03-14

Applicant: Headwater Partners I LLC

Inventor： Gregory G. Raleigh

IPC: H04L12/14 ,  H04W4/24 ,  H04W48/18

CPC classification number: H04L12/1432 ,  G06Q10/06375 ,  G06Q10/10 ,  G06Q20/102 ,  G06Q20/20 ,  G06Q20/40 ,  G06Q30/0207 ,  G06Q30/0241 ,  G06Q30/0283 ,  G06Q30/04 ,  G06Q30/0601 ,  G06Q40/00 ,  G06Q40/12 ,  H04L12/145 ,  H04L12/1475 ,  H04L12/1485 ,  H04L41/0893 ,  H04L47/24 ,  H04L47/32 ,  H04L63/18 ,  H04L67/06 ,  H04L67/306 ,  H04L67/327 ,  H04M15/58 ,  H04M2215/0188 ,  H04W4/00 ,  H04W4/08 ,  H04W4/24 ,  H04W4/70 ,  H04W4/80 ,  H04W8/02 ,  H04W12/00505 ,  H04W12/08 ,  H04W48/18 ,  H04W88/06

Abstract: A wireless end-user device is disclosed. One or more user inputs indicate that a user of the wireless end-user device authorizes the device to send a first file to a server over a network of a first network type, and that the user does not authorize the device to send a second file to the server over the network of the first type. Based on the one or more user inputs and a determination that the device is connected to the network of the first type, the device sends the first file, but not the second file, to the server over the network of the first network type. Upon detecting that the device is connected to a network of the second network type, the device sends the second file to the server over the network of the second network type.

Abstract translation: 公开了一种无线终端用户设备。 一个或多个用户输入指示无线终端用户设备的用户授权设备通过第一网络类型的网络向服务器发送第一文件，并且用户不授权设备发送第二文件 通过网络上的第一种类型的服务器。 基于一个或多个用户输入和设备连接到第一类型的网络的确定，设备通过第一网络类型的网络将第一文件而不是第二文件发送到服务器。 在检测到设备连接到第二网络类型的网络时，设备通过第二网络类型的网络将第二文件发送到服务器。