User authentication based on historical transaction data
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-007/04
G06F-015/16
G06F-017/30
H04L-029/06
H04W-012/04
출원번호
US-0175701
(2014-02-07)
등록번호
US-9331994
(2016-05-03)
발명자
/ 주소
Grigg, David M.
Bertanzetti, Peter John
Toth, Michael E.
Hanson, Carrie Anne
Votaw, Elizabeth S.
출원인 / 주소
Bank of America Corporation
대리인 / 주소
Springs, Michael A.
인용정보
피인용 횟수 :
12인용 특허 :
47
초록▼
Embodiments are directed to systems, methods and computer program products for providing user authentication based on transaction data. Embodiments receive from a user, a request to execute a user action associated with an application, wherein execution of the user action requires validation of auth
Embodiments are directed to systems, methods and computer program products for providing user authentication based on transaction data. Embodiments receive from a user, a request to execute a user action associated with an application, wherein execution of the user action requires validation of authentication credentials; collect a transaction set of data comprising information related to transactions conducted by the user; collect a location set of data comprising information related to a physical location of the user; determine a transaction proximity score associated with the user and the transactions; determine a level of authentication associated with the determined transaction proximity score; determine which authentication types are associated with the level of authentication; request authentication credentials; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, execute the user action.
대표청구항▼
1. An apparatus for increasing confidence in user authentication based on transaction data indicating that one or more geographically proximate, card-present transactions were recently approved, the apparatus comprising: a memory;a processor; andcomputer-executable instructions stored in the memory,
1. An apparatus for increasing confidence in user authentication based on transaction data indicating that one or more geographically proximate, card-present transactions were recently approved, the apparatus comprising: a memory;a processor; andcomputer-executable instructions stored in the memory, executable by the processor, and configured to cause the processor to: receive from a user, a request to execute a user action associated with an application, wherein execution of the user action requires validation of one or more authentication credentials;collect a transaction set of data comprising information related to one or more card-present transactions conducted by the user, the information indicating that the one or more card-present transactions were approved and indicating one or more transaction locations at which the one or more card-present transactions were approved;collect a location set of data comprising information related to a physical location of the user;determine a current time of day;determine a transaction proximity score associated with the user and the one or more card-present transactions, comprising: determining a geographic distance between one or more of the card-present transactions represented in the transaction set of data and the location of the user;determining an amount of time expired between approval of the one or more card-present transactions and the current time of day;determining a proximity threshold associated with the one or more card-present transactions and the amount of time expired;determining whether the user is within the proximity threshold based at least in part on the geographic distance; anddetermining the transaction proximity score based at least in part on the determination whether the user is within the proximity threshold;determine a level of authentication associated with the determined transaction proximity score, wherein the determined level of authentication increases as the geographic distance increases and decreases as the geographic distance decreases;determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the transaction proximity score;request one or more authentication credentials corresponding to the determined one or more authentication types;receive one or more authentication credentials from the user;validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; andin response to the successful validation of the one or more authentication credentials, execute the user action. 2. The apparatus of claim 1, wherein determining the transaction proximity score further comprises: selecting one or more second transactions of the user;determining a second proximity threshold associated with the one or more second transactions of the user;determining whether the user is within the second proximity threshold; andwherein determining the transaction proximity score is further based at least in part on the determination of whether the user is within the second proximity threshold. 3. The apparatus of claim 2, wherein determining the transaction proximity score comprises: determining a first partial score based at least in part on the determination of whether the user is within the proximity threshold, wherein the first partial score is weighted by a first weighting factor;determining a second partial score based at least in part on the determination of whether the user is within the second proximity threshold, wherein the second partial score is weighted by a second weighting factor; andcombining the first partial score and the second partial score, thereby determining the transaction proximity score. 4. The apparatus of claim 3, wherein at least one of the first weighting factor and the second weighting factor are based on the elapsed time since their respective transactions occurred. 5. The apparatus of claim 1, wherein determining the transaction proximity score comprises: determining a historical transaction pattern associated with the user;determining whether the transaction set of data indicates a current transaction pattern that falls within a predetermined acceptable variance of the historical transaction pattern; andif not, determining the transaction proximity score based at least in part on a variance of the current transaction pattern from the historical transaction pattern. 6. The apparatus of claim 1, wherein determining the transaction proximity score comprises: determining a historical transaction pattern associated with the user;determining the transaction proximity score based at least in part on a variance of the current transaction pattern from the historical transaction pattern. 7. A method for increasing confidence in user authentication based on transaction data indicating that one or more geographically proximate, card-present transactions were recently approved, the method comprising: receiving, by a mobile device of a user and from the user, a request to execute a user action associated with an application, wherein execution of the user action requires validation of one or more authentication credentials;collecting a transaction set of data comprising information related to one or more card-present transactions conducted by the user, the information indicating that the one or more card-present transactions were approved and indicating one or more transaction locations at which the one or more card-present transactions were approved;collecting, by the mobile device, a location set of data comprising information related to a physical location of the user;determining a current time of day;determining, by the mobile device, a transaction proximity score associated with the user and the one or more card-present transactions, comprising: determining a geographic distance between one or more of the card-present transactions represented in the transaction set of data and the location of the user;determining an amount of time expired between approval of the one or more card-present transactions and the current time of day;determining a proximity threshold associated with the one or more card-present transactions and the amount of time expired;determining whether the user is within the proximity threshold based at least in part on the geographic distance; anddetermining the transaction proximity score based at least in part on the determination whether the user is within the proximity threshold;determining, by the mobile device, a level of authentication associated with the determined transaction proximity score, wherein the determined level of authentication increases as the geographic distance increases and decreases as the geographic distance decreases;determining, by the mobile device, which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the transaction proximity score;requesting, by the mobile device, from the user one or more authentication credentials corresponding to the determined one or more authentication types;receiving, by the mobile device and from the user, one or more authentication credentials from the user;validating, by the mobile device, the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; andin response to the successful validation of the one or more authentication credentials, executing, by the mobile device, the user action. 8. The method of claim 7, wherein determining the transaction proximity score further comprises: selecting one or more second transactions of the user;determining a second proximity threshold associated with the one or more second transactions of the user;determining whether the user is within the second proximity threshold; andwherein determining the transaction proximity score is further based at least in part on the determination of whether the user is within the second proximity threshold. 9. The method of claim 8, wherein determining the transaction proximity score comprises: determining a first partial score based at least in part on the determination of whether the user is within the proximity threshold, wherein the first partial score is weighted by a first weighting factor;determining a second partial score based at least in part on the determination of whether the user is within the second proximity threshold, wherein the second partial score is weighted by a second weighting factor; andcombining the first partial score and the second partial score, thereby determining the transaction proximity score. 10. The method of claim 9, wherein at least one of the first weighting factor and the second weighting factor are based on the elapsed time since their respective transactions occurred. 11. The method of claim 7, wherein determining the transaction proximity score comprises: determining a historical transaction pattern associated with the user;determining whether the transaction set of data indicates a current transaction pattern that falls within a predetermined acceptable variance of the historical transaction pattern; andif not, determining the transaction proximity score based at least in part on a variance of the current transaction pattern from the historical transaction pattern. 12. The method of claim 7, wherein determining the transaction proximity score comprises: determining a historical transaction pattern associated with the user;determining the transaction proximity score based at least in part on a variance of the current transaction pattern from the historical transaction pattern. 13. A computer program product for increasing confidence in user authentication based on transaction data indicating that one or more geographically proximate, card-present transactions were recently approved, the computer program product comprising a non-transitory computer-readable medium comprising code causing a first apparatus to: receive from a user, a request to execute a user action associated with an application, wherein execution of the user action requires validation of one or more authentication credentials; collect a transaction set of data comprising information related to one or more card-present transactions conducted by the user, the information indicating that the one or more card-present transactions were approved and indicating one or more transaction locations at which the one or more card-present transactions were approved;collect a location set of data comprising information related to a physical location of the user;determine a current time of day;determine a transaction proximity score associated with the user and the one or more card-present transactions, comprising: determining a geographic distance between one or more of the card-present transactions represented in the transaction set of data and the location of the user;determining an amount of time expired between approval of the one or more card-present transactions and the current time of day;determining a proximity threshold associated with the one or more card-present transactions and the amount of time expired;determining whether the user is within the proximity threshold based at least in part on the geographic distance; anddetermining the transaction proximity score based at least in part on the determination whether the user is within the proximity threshold;determine a level of authentication associated with the determined transaction proximity score, wherein the determined level of authentication increases as the geographic distance increases and decreases as the geographic distance decreases;determine which one or more authentication types from a plurality of authentication types are associated with the level of authentication associated with the transaction proximity score;request one or more authentication credentials corresponding to the determined one or more authentication types;receive one or more authentication credentials from the user;validate the one or more authentication credentials, thereby resulting in a successful validation of the one or more authentication credentials; andin response to the successful validation of the one or more authentication credentials, execute the user action. 14. The computer program product of claim 13, wherein determining the transaction proximity score further comprises: selecting one or more second transactions of the user;determining a second proximity threshold associated with the one or more second transactions of the user;determining whether the user is within the second proximity threshold; andwherein determining the transaction proximity score is further based at least in part on the determination of whether the user is within the second proximity threshold. 15. The computer program product of claim 14, wherein determining the transaction proximity score comprises: determining a first partial score based at least in part on the determination of whether the user is within the proximity threshold, wherein the first partial score is weighted by a first weighting factor;determining a second partial score based at least in part on the determination of whether the user is within the second proximity threshold, wherein the second partial score is weighted by a second weighting factor; andcombining the first partial score and the second partial score, thereby determining the transaction proximity score. 16. The computer program product of claim 15, wherein at least one of the first weighting factor and the second weighting factor are based on the elapsed time since their respective transactions occurred. 17. The computer program product of claim 13, wherein determining the transaction proximity score comprises: determining a historical transaction pattern associated with the user;determining whether the transaction set of data indicates a current transaction pattern that falls within a predetermined acceptable variance of the historical transaction pattern; andif not, determining the transaction proximity score based at least in part on a variance of the current transaction pattern from the historical transaction pattern.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (47)
Davies Stephen W., Alarm server systems, apparatus, and processes.
Ayanamcottil, Antony Aloysius; Chandrappa, Varun Yarehalli; Revankar, Natesh Shridhar; Verma, Priya; Alam, Mohammad Dilshad; Sharma, Nitin Prakash; Pullaikudi, Praveen Prakash Thazhalhu, Method for destructive readout of data in case of mobile theft.
Natsuno,Takeshi, Method for inhibiting use of mobile communication terminal having memory where card information is stored, mobile communication network, and mobile communication terminal.
Aravamudan, Murali; Rajasekharan, Ajit; Ramakrishnan, Kajamalai G.; Gupta, Mayank, Methods and systems for segmenting relative user preferences into fine-grain and coarse-grain collections.
Grigg, David M.; Thomas, Susan Smith; Harkey, Scott Lee; Bondesen, Laura; Calman, Matthew A., Providing automated initial and final payment for an activity based on determining the location of an activity participant's mobile communication device.
Ellis, Stephen M.; Kennedy, Michael J.; Kurani, Ashish Bhoopen; Lowry, Melissa; Meyyappan, Uma; Sahni, Bipin; Stroke, Nikolai, System and method for a mobile wallet.
Berardi,Michael J.; Bliman,Michal; Bonalle,David S.; Elwood,Jennifer Anne; Hood,Matthew C.; Isenberg,Susan E.; Mayers,Alexandra; Saunders,Peter D.; Scheding,Kathryn D.; Shah,Sejal Ajit; Williamson,Jo, System and method for payment using radio frequency identification in contact and contactless transactions.
Dhesi, Rajkaran Singh; Hunt, Simon; Parke, Paul Martin, System, method, and computer program product for disabling a communication channel during authentication.
Grigg, David M.; Johansen, Joseph Neil; Toth, Michael E.; Carpenter, Daniel Lynn; Qaim-Maqami, Hood; Hanson, Carrie Anne; Votaw, Elizabeth S., Authentication level of function bucket based on circumstances.
Votaw, Elizabeth S.; Jones-McFadden, Alicia C.; Grigg, David M.; Bertanzetti, Peter John; Toth, Michael E.; Hanson, Carrie Anne, Determining user authentication based on user/device interaction.
Grigg, David M.; Bertanzetti, Peter John; Burrell, Charles Jason; Hanson, Carrie Anne; Johansen, Joseph Neil; Toth, Michael E., Determining user authentication requirements along a continuum based on a current state of the user and/or the attributes related to the function requiring authentication.
Grigg, David M.; Bertanzetti, Peter John; Burrell, Charles Jason; Hanson, Carrie Anne; Johansen, Joseph Neil; Toth, Michael E., Determining user authentication requirements based on the current location of the user being within a predetermined area requiring altered authentication requirements.
Grigg, David M.; Bertanzetti, Peter John; Burrell, Charles Jason; Hanson, Carrie Anne; Johansen, Joseph Neil; Toth, Michael E., Determining user authentication requirements based on the current location of the user being within a predetermined area requiring altered authentication requirements.
Grigg, David M.; Bertanzetti, Peter John; Burrell, Charles Jason; Hanson, Carrie Anne; Johansen, Joseph Neil; Toth, Michael E., Determining user authentication requirements based on the current location of the user in comparison to the users's normal boundary of location.
Grigg, David M.; Johansen, Joseph Neil; Hanson, Carrie Anne; Burrell, Charles Jason; Votaw, Elizabeth S., Self-selected user access based on specific authentication types.
Grigg, David M.; Bertanzetti, Peter John; Burrell, Charles Jason; Hanson, Carrie Anne; Johansen, Joseph Neil; Toth, Michael E.; Votaw, Elizabeth S., User authentication based on other applications.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.