Location determination for user authentication
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-021/00
H04L-029/06
G06F-021/31
H04W-004/02
H04W-012/06
H04L-029/08
출원번호
US-0834278
(2015-08-24)
등록번호
US-9398011
(2016-07-19)
발명자
/ 주소
Thompson, Micheal
출원인 / 주소
A10 Networks, Inc.
대리인 / 주소
Carr & Ferrell LLP
인용정보
피인용 횟수 :
4인용 특허 :
48
초록▼
User authentication techniques based on geographical locations associated with a client device is provided. A network connection can be established between two or more host machines and a client device. Upon a request received from the client device by one of these host machines, round trip times of
User authentication techniques based on geographical locations associated with a client device is provided. A network connection can be established between two or more host machines and a client device. Upon a request received from the client device by one of these host machines, round trip times of test messages may be measured between the client device and each of the host machines. The round trip times can be utilized to determine the current geographical location of the client device. If the location is within a tolerance geographical area, the client device may be authenticated. Otherwise, the authentication may fail or additional security procedures may be implemented. In some examples, a travel time from a historical geographical location to current geographical location can be determined. This data may be also utilized in the user authentication process.
대표청구항▼
1. A method for user authentication, the method comprising: receiving, by a processor, an authentication request from a client device;acquiring, by the processor, a first geo-identifier and a past timestamp associated with a past geographical location where the client device has been successfully au
1. A method for user authentication, the method comprising: receiving, by a processor, an authentication request from a client device;acquiring, by the processor, a first geo-identifier and a past timestamp associated with a past geographical location where the client device has been successfully authenticated;acquiring, by the processor, a second geo-identifier and a current timestamp associated with a current geographical location of the client device;determining, by the processor, an estimated trip time between the past geographical location and the current geographical location of the client device based at least in part on the past timestamp and the current timestamp;determining, by the processor, that the estimated trip time is less than a difference between the past timestamp when the client device was successfully authenticated and the current timestamp; andin response to the authentication request, authenticating the client device, by the processor, based at least in part on the estimated trip time being less than the difference between the past timestamp when the client device was successfully authenticated and the current timestamp. 2. The method of claim 1, wherein the authentication request includes a request to access networked data or service. 3. The method of claim 1, wherein the authentication request includes user credentials and wherein the authentication of the client device includes verifying a user identity based on the user credentials. 4. The method of claim 1, wherein the geo-identifier of the client device includes at least one name associated with the geographical location. 5. The method of claim 1, wherein the geo-identifier of the client device includes at least a city name associated with the geographical location. 6. The method of claim 1, wherein the geo-identifier of the client device includes at least a state name associated with the geographical location. 7. The method of claim 1, wherein the geo-identifier of the client device includes at least a street address associated with the geographical location. 8. The method of claim 1, wherein the geo-identifier of the client device includes a postal code. 9. The method of claim 1, wherein the geo-identifier of the client device includes absolute coordinates. 10. The method of claim 1, further comprising: receiving, by the processor, one or more HTTP (Hypertext Transfer Protocol) cookies from the client device, wherein the one or more HTTP cookies include metadata associated with one or more geographical locations where the client device has been successfully authenticated in the past; andwherein the authenticating the client device is further based on the one or more HTTP cookies. 11. The method of claim 1, wherein the estimated trip time between the past geographical location and the current geographical location of the client device is based at least in part on calculating a distance between the geographical location associated with the first geo-identifier and the geographical location associated with the second geo-identifier. 12. The method of claim 1, wherein the authentication is further based on the second geo-identifier being within a trusted tolerance geographical area for the client device. 13. The method of claim 12, wherein the tolerance geographical area is defined based at least in part on historical data of past geographical locations of the client device. 14. The method of claim 12, wherein the tolerance geographical area is dynamically updated based at least in part on historical data of past geographical locations of the client device. 15. The method of claim 14, wherein trusted historical data includes one or more geographical locations where the client device has been successfully authenticated in the past. 16. The method of claim 15, further comprising: in response to determining the current geographical location of the client device does not correspond to the one or more geographical locations where the client device has been successfully authenticated in the past, acquiring, by the processor, user credentials; andperforming, by the processor, authentication of the client device based on the user credentials. 17. The method of claim 12, wherein based on a determination that the current geographical location of the client device is not within the tolerance geographical area, the client device is not authenticated. 18. The method of claim 1, wherein a network connection includes a TCP (Transmission Control Protocol) connection.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (48)
Chen, Lee; Chiong, John; Kwan, Phillip, Access record gateway.
Miura, Naoto; Kiyomizu, Harumi; Nagasaka, Akio; Miyatake, Takafumi; Matsuda, Yusuke, Authentication system using biometric information and authentication device.
Bohannon, Philip L.; Jakobsson, Bjorn Markus; Monrose, Fabian; Reiter, Michael Kendrick; Wetzel, Susanne Gudrun, Generation of repeatable cryptographic key based on varying parameters.
MacDoran Peter F. ; Mathews Michael B. ; Ziel Fred A. ; Gold Kenn L. ; Anderson Steven M. ; Coffey Mark A. ; Denning Dorothy E., Method and apparatus for authenticating the location of remote users of networked computing systems.
Peden, II, Jeffrey J.; Gray, Matthew K.; Parker, Coleman P., Method and apparatus for controlling wireless network access privileges based on wireless client location.
Papierniak, Karen A.; Thaisz, James E.; Chiang, Luo-Jen; Diwekar, Anjali M., Method and apparatus for forming user sessions and presenting internet data according to the user sessions.
Tomko George J.,CAX ; Stoianov Alexei,CAX, Method and apparatus for securely handling a personal identification number or cryptographic key using biometric techniq.
Qin, Xiangping; Shao, Huai-Rong; Singh, Harkirat; Ngo, Chiu, System and method for wireless communication network having proximity control based on authorization token.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.