-
公开(公告)号:US20160155189A1
公开(公告)日:2016-06-02
申请号:US15016132
申请日:2016-02-04
Applicant: BANK OF AMERICA CORPORATION
Inventor: David M. Grigg , Joseph Neil Johansen , Michael E. Toth , Daniel Lynn Carpenter , Hood Qaim-Maqami , Carrie Anne Hanson , Elizabeth S. Votaw
CPC classification number: G06Q20/108 , G06F21/30 , G06F21/31 , G06F2221/2113 , G06F2221/2149 , G06Q40/02 , H04L63/08 , H04L63/083 , H04L63/0853 , H04L63/105 , H04L2463/102
Abstract: Embodiments are directed to systems, methods and computer program products for sorting mobile banking functions into authentication buckets. Embodiments determine, for each of a plurality of mobile banking functions, a corresponding authentication buckets, where each authentication bucket corresponds with a level of authentication. Some embodiments receive a request, from a user, to access a function; access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function; determine the level of authentication associated with the determined authentication bucket; determine which authentication types are associated with the level of authentication; request authentication credentials corresponding to the authentication types; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, enable access to the function requested by the user.
-
公开(公告)号:US20150227724A1
公开(公告)日:2015-08-13
申请号:US14175956
申请日:2014-02-07
Applicant: BANK OF AMERICA CORPORATION
Inventor: David M. Grigg , Joseph Neil Johansen , Michael E. Toth , Daniel Lynn Carpenter , Hood Qaim-Maqami , Carrie Anne Hanson , Elizabeth S. Votaw
CPC classification number: G06Q20/108 , G06F21/30 , G06F21/31 , G06F2221/2113 , G06F2221/2149 , G06Q40/02 , H04L63/08 , H04L63/083 , H04L63/0853 , H04L63/105 , H04L2463/102
Abstract: Embodiments are directed to systems, methods and computer program products for sorting mobile banking functions into authentication buckets. Embodiments determine, for each of a plurality of mobile banking functions, a corresponding authentication buckets, where each authentication bucket corresponds with a level of authentication. Some embodiments receive a request, from a user, to access a function; access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function; determine the level of authentication associated with the determined authentication bucket; determine which authentication types are associated with the level of authentication; request authentication credentials corresponding to the authentication types; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, enable access to the function requested by the user.
Abstract translation: 实施例涉及用于将移动银行功能分类到认证桶中的系统,方法和计算机程序产品。 对于多个移动银行业务中的每一个,实施例确定相应的认证桶,其中每个认证桶对应于认证级别。 一些实施例从用户接收到访问功能的请求; 访问所述多个认证桶以确定所述认证桶中的哪一个对应于所请求的功能; 确定与确定的认证桶相关联的认证级别; 确定哪些认证类型与认证级别相关联; 请求与认证类型相对应的认证凭证; 从用户接收认证凭证; 验证身份验证凭证,从而导致验证凭证成功验证; 并且响应于认证证书的成功验证,使得能够访问由用户请求的功能。
-
公开(公告)号:US09836594B2
公开(公告)日:2017-12-05
申请号:US14280849
申请日:2014-05-19
Applicant: Bank of America Corporation
Inventor: Xianhong Zhang , Andrew T. Keys , Kapil Pruthi , Daniel Lynn Carpenter , Mark A. Pender , Spencer Yezo , Apeksh M. Dave
CPC classification number: G06F21/44 , G06F21/45 , G06F21/73 , H04L29/06 , H04L63/08 , H04L63/0807 , H04L63/0838 , H04L63/0861 , H04L63/0876 , H04L63/10 , H04L63/105
Abstract: A computer system receives an authentication request from a user device and determines a determined device identification from a set of received device attributes. When the device is properly authenticated, the computer system generates an authentication token that is signed by the determined device identification and returns the authentication token to the user device. When the computer system subsequently receives a service request with an authentication token and a plurality of device attributes for a protected resource from a user device, the computer system determines a derived device identification from some or all of the received device attributes. When a signed device identification of the authentication token and the derived device identification are equal, the apparatus continues processing the service request. Otherwise, the service request is rejected.
-
公开(公告)号:US09647999B2
公开(公告)日:2017-05-09
申请号:US14175962
申请日:2014-02-07
Applicant: BANK OF AMERICA CORPORATION
Inventor: David M. Grigg , Joseph Neil Johansen , Michael E. Toth , Daniel Lynn Carpenter , Hood Qaim-Maqami , Carrie Anne Hanson , Elizabeth S. Votaw
CPC classification number: H04L63/08 , G06Q40/02 , H04L63/105
Abstract: Embodiments are directed to systems, methods and computer program products for assigning a level of authentication to an authentication bucket. Embodiments determine a current level of authentication corresponding to a first authentication bucket comprising a plurality of mobile banking functions; collect a set of circumstantial data corresponding with the apparatus; determine a circumstances score based at least in part on the set of circumstantial data; and determine whether the current level of authentication corresponding to the first authentication bucket is appropriate based at least in part on the circumstances score.
-
公开(公告)号:US20150326574A1
公开(公告)日:2015-11-12
申请号:US14274115
申请日:2014-05-09
Applicant: Bank of America Corporation
Inventor: Vijayanandraj Amaladoss , Andrew L. Saar , Daniel Lynn Carpenter
CPC classification number: H04L63/0876 , G06F21/57 , H04L63/0272 , H04L67/14
Abstract: Embodiments of the invention are directed to apparatuses, methods and computer program products for validating a device. An exemplary apparatus is configured to: determine a device accesses an application; determine whether the device is a trusted device based on a device fingerprint associated with the device; in response to determining the device is a trusted device, create an authenticated session; and enable performance of a transaction using the device during the authenticated session.
Abstract translation: 本发明的实施例涉及用于验证设备的设备,方法和计算机程序产品。 示例性设备被配置为:确定设备访问应用; 基于与设备相关联的设备指纹来确定设备是否是可信设备; 响应于确定设备是可信设备,创建经认证的会话; 并在验证的会话期间使用该设备实现事务性能。
-
Patent Agency Ranking
公开(公告)号:US10430578B2
公开(公告)日:2019-10-01
申请号:US15801514
申请日:2017-11-02
Applicant: Bank of America Corporation
Inventor: Xianhong Zhang , Andrew T. Keys , Kapil Pruthi , Daniel Lynn Carpenter , Mark A. Pender , Spencer Yezo , Apeksh M. Dave
Abstract: A computer system receives an authentication request from a user device and determines a determined device identification from a set of received device attributes. When the device is properly authenticated, the computer system generates an authentication token that is signed by the determined device identification and returns the authentication token to the user device. When the computer system subsequently receives a service request with an authentication token and a plurality of device attributes for a protected resource from a user device, the computer system determines a derived device identification from some or all of the received device attributes. When a signed device identification of the authentication token and the derived device identification are equal, the apparatus continues processing the service request. Otherwise, the service request is rejected.
-
公开(公告)号:US09548997B2
公开(公告)日:2017-01-17
申请号:US15042669
申请日:2016-02-12
Applicant: Bank of America Corporation
Inventor: Andrew T. Keys , Kapil Pruthi , Xianhong Zhang , Mark A. Pender , Daniel Lynn Carpenter
IPC: H04L29/06
CPC classification number: H04L63/20 , H04L63/08 , H04L63/0807 , H04L63/0838 , H04L63/0853 , H04L63/0861 , H04L63/0876 , H04L63/105
Abstract: A computer system receives a service request over a service channel from a user device, initiates a challenge to the user device to provide authentication information based on a set of authenticators, and determines an initial level of authentication. When the initial level of authentication is not sufficient for the service channel or protected resource, the apparatus generates a challenge to the user device with at least one additional authenticator and determines an achieved level of authentication based on the further authentication information. When the achieved level of authentication reaches a target authentication level for the service channel, the apparatus continues processing the service request by the service channel. The computer may transfer the service request to another service channel with the authentication token obtained on the original service channel and further challenges the user device with additional authenticators when a higher level of authentication is necessary.
Abstract translation: 计算机系统通过用户设备通过服务信道接收服务请求,向用户设备发起质询,以基于一组认证者提供认证信息,并确定认证的初始级别。 当初始级别的认证对于服务信道或受保护的资源不足时,设备利用至少一个附加认证器向用户设备生成挑战,并且基于进一步的认证信息确定所实现的认证级别。 当所实现的认证级别达到服务信道的目标认证级别时,设备继续通过服务信道处理服务请求。 计算机可以使用在原始服务信道上获得的认证令牌将服务请求转移到另一服务信道,并且当需要更高级别的认证时,进一步用附加认证者挑战用户设备。
-
公开(公告)号:US20160171460A1
公开(公告)日:2016-06-16
申请号:US15016138
申请日:2016-02-04
Applicant: BANK OF AMERICA CORPORATION
Inventor: David M. Grigg , Joseph Neil Johansen , Michael E. Toth , Daniel Lynn Carpenter , Hood Qaim-Maqami , Carrie Anne Hanson , Elizabeth S. Votaw
CPC classification number: G06Q20/108 , G06F21/30 , G06F21/31 , G06F2221/2113 , G06F2221/2149 , G06Q40/02 , H04L63/08 , H04L63/083 , H04L63/0853 , H04L63/105 , H04L2463/102
Abstract: Embodiments are directed to systems, methods and computer program products for sorting mobile banking functions into authentication buckets. Embodiments determine, for each of a plurality of mobile banking functions, a corresponding authentication buckets, where each authentication bucket corresponds with a level of authentication. Some embodiments receive a request, from a user, to access a function; access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function; determine the level of authentication associated with the determined authentication bucket; determine which authentication types are associated with the level of authentication; request authentication credentials corresponding to the authentication types; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, enable access to the function requested by the user.
-
公开(公告)号:US20160164921A1
公开(公告)日:2016-06-09
申请号:US15042669
申请日:2016-02-12
Applicant: Bank of America Corporation
Inventor: Andrew T. Keys , Kapil Pruthi , Xianhong Zhang , Mark A. Pender , Daniel Lynn Carpenter
IPC: H04L29/06
CPC classification number: H04L63/20 , H04L63/08 , H04L63/0807 , H04L63/0838 , H04L63/0853 , H04L63/0861 , H04L63/0876 , H04L63/105
Abstract: A computer system receives a service request over a service channel from a user device, initiates a challenge to the user device to provide authentication information based on a set of authenticators, and determines an initial level of authentication. When the initial level of authentication is not sufficient for the service channel or protected resource, the apparatus generates a challenge to the user device with at least one additional authenticator and determines an achieved level of authentication based on the further authentication information. When the achieved level of authentication reaches a target authentication level for the service channel, the apparatus continues processing the service request by the service channel. The computer may transfer the service request to another service channel with the authentication token obtained on the original service channel and further challenges the user device with additional authenticators when a higher level of authentication is necessary.
-
公开(公告)号:US09305149B2
公开(公告)日:2016-04-05
申请号:US14175956
申请日:2014-02-07
Applicant: BANK OF AMERICA CORPORATION
Inventor: David M. Grigg , Joseph Neil Johansen , Michael E. Toth , Daniel Lynn Carpenter , Hood Qaim-Maqami , Carrie Anne Hanson , Elizabeth S. Votaw
CPC classification number: G06Q20/108 , G06F21/30 , G06F21/31 , G06F2221/2113 , G06F2221/2149 , G06Q40/02 , H04L63/08 , H04L63/083 , H04L63/0853 , H04L63/105 , H04L2463/102
Abstract: Embodiments are directed to systems, methods and computer program products for sorting mobile banking functions into authentication buckets. Embodiments determine, for each of a plurality of mobile banking functions, a corresponding authentication buckets, where each authentication bucket corresponds with a level of authentication. Some embodiments receive a request, from a user, to access a function; access the plurality of authentication buckets to determine which of the authentication buckets corresponds with the requested function; determine the level of authentication associated with the determined authentication bucket; determine which authentication types are associated with the level of authentication; request authentication credentials corresponding to the authentication types; receive authentication credentials from the user; validate the authentication credentials, thereby resulting in a successful validation of the authentication credentials; and, in response to the successful validation of the authentication credentials, enable access to the function requested by the user.
Abstract translation: 实施例涉及用于将移动银行功能分类到认证桶中的系统,方法和计算机程序产品。 对于多个移动银行业务中的每一个,实施例确定相应的验证桶,其中每个验证桶与认证级别相对应。 一些实施例从用户接收到访问功能的请求; 访问所述多个认证桶以确定所述认证桶中的哪一个对应于所请求的功能; 确定与确定的认证桶相关联的认证级别; 确定哪些认证类型与认证级别相关联; 请求与认证类型相对应的认证凭证; 从用户接收认证凭证; 验证身份验证凭证,从而导致验证凭证成功验证; 并且响应于认证证书的成功验证,使得能够访问由用户请求的功能。
-
-
-
-
-
-
-
-
-
Search Results
18
records
(took 0.018 seconds)
