公开(公告)号：US11233788B1

公开(公告)日：2022-01-25

申请号：US16201958

申请日：2018-11-27

申请人： Amazon Technologies, Inc.

发明人： Daniel Hitchcock ,  Yogesh Golwalkar ,  Dharinee Gupta ,  Bharath Kumar

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06F21/32 ,  G06F21/31

摘要： Disclosed are various embodiments for determining authentication assurance from a combination of historical and runtime-provided inputs. An authentication request associated with an account is received. A composite measure of authentication assurance is determined from a combination of a historical measure of authentication assurance and a runtime measure of authentication assurance. A response to the authentication request is generated based at least in part on the composite measure of authentication assurance.

公开(公告)号：US10911425B1

公开(公告)日：2021-02-02

申请号：US16201804

申请日：2018-11-27

申请人： Amazon Technologies, Inc.

发明人： Daniel Hitchcock ,  Yogesh Golwalkar ,  Dharinee Gupta ,  Bharath Kumar

IPC分类号： H04L29/06 ,  G06F21/34

摘要： Disclosed are various embodiments for determining authentication assurance based on both user-level and account-level indicators. An authentication request associated with an account is received responsive to an input from a user via a user interface. A user-level measure of authentication assurance corresponding to the user is determined. An account-level measure of authentication assurance corresponding to the account is determined. A composite measure of authentication assurance is then determined from a combination of the user-level measure of authentication assurance and the account-level measure of authentication assurance. A response to the authentication request is generated based at least in part on comparing the composite measure of authentication assurance to a threshold.

公开(公告)号：US11227036B1

公开(公告)日：2022-01-18

申请号：US16201975

申请日：2018-11-27

申请人： Amazon Technologies, Inc.

发明人： Daniel Hitchcock ,  Yogesh Golwalkar ,  Dharinee Gupta ,  Bharath Kumar

IPC分类号： G06F21/31 ,  H04L29/06 ,  G06F17/11 ,  G06F21/45 ,  G06F21/40

摘要： Disclosed are various embodiments for determining authentication assurance using algorithmic decay. In an embodiment, an authentication request associated with an account is received. At least one historical authentication event associated with the account is determined. A measure of authentication assurance is determined based at least in part on applying an exponential time decay to at least one authentication assurance value individually corresponding to the historical authentication event(s). A response to the authentication request is generated based at least in part on the measure of authentication assurance.

公开(公告)号：US10713679B1

公开(公告)日：2020-07-14

申请号：US15870491

申请日：2018-01-12

申请人： Amazon Technologies, Inc.

发明人： Bharath Kumar ,  Kevin J. Steuer, Jr.

IPC分类号： G06Q30/02

摘要： This disclosure is directed to techniques and systems to enable customers to make secure electronic payments to entities (e.g., merchants, vending machines, etc.). The entities may be at brick-and-mortar locations or other locations where the entities are “offline” and may not readily receive payments from customers that have payment accounts stored and managed by a host. In various embodiments, a customer may direct the host to transfer a payment to a merchant after the customer and merchant exchange a code that includes a payment instruction. The code may be used in place of usernames, passwords, or other personal information and may be difficult for others (e.g., bystanders, etc.) to intercept. After the exchange of the code, the customer may authorize the host to a transfer payment to the merchant based on the payment instruction.