公开(公告)号：US20090131015A1

公开(公告)日：2009-05-21

申请号：US11942670

申请日：2007-11-19

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04M1/66

CPC分类号： H04W12/08 ,  H04L63/08 ,  H04L63/107 ,  H04L67/18 ,  H04L67/303 ,  H04L67/325 ,  H04W4/02 ,  H04W88/02

摘要： An apparatus and methods are disclosed for authenticating users of wireless telecommunications terminals. In particular, the present invention enables the timing and type of authentication challenges to vary based on one or more of: the user's current geo-location, the current day and time, the presence or absence of other nearby users, and the identity of any nearby users. In accordance with the illustrative embodiment, the re-authentication time period (i.e., the length of time between authenticating and re authenticating a user) and the authentication challenge type (e.g., username/password, fingerprint recognition, etc.) can be determined based on these factors. The present invention is advantageous in that it enables the shortening of the re-authentication time and the selection of a more secure type of authentication challenge when it is more likely that a user's wireless telecommunications terminal might be accidentally left behind or stolen.

摘要翻译： 公开了用于认证无线电信终端的用户的装置和方法。 特别地，本发明使得认证挑战的时间和类型可以基于以下中的一个或多个来改变：用户的当前地理位置，当前日期和时间，其他附近用户的存在或不存在以及任何 附近的用户。 根据说明性实施例，可以基于重新认证时间段（即，认证和重新认证用户之间的时间长度）和认证挑战类型（例如，用户名/密码，指纹识别等）来确定 关于这些因素。 本发明的优点在于，当用户的无线电信终端更有可能被意外地丢弃或被盗时，能够缩短重认证时间和选择更安全的认证挑战。

公开(公告)号：US09014666B2

公开(公告)日：2015-04-21

申请号：US11611720

申请日：2006-12-15

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04W12/06 ,  H04W4/02 ,  H04L29/06 ,  G06F21/34 ,  H04W88/02

CPC分类号： H04W12/06 ,  G06F21/34 ,  H04L61/609 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/107 ,  H04W12/08 ,  H04W88/02

摘要： Methods and apparatus are disclosed for authenticating a user based on the geo-location history of a geo-location-enabled wireless device (e.g., a GPS-enabled wireless telecommunications terminal, a smart card, an RFID tag, etc.). In a first illustrative embodiment, a user of a geo-location-enabled wireless telecommunications terminal (e.g., a GPS-enabled cell phone, a GPS-enabled notebook computer, etc.) who attempts to access a restricted resource is challenged with one or more questions that are generated from the terminal's geo-location history. In a second illustrative embodiment, a user of a data-processing system who attempts to access a restricted resource is asked to provide a username Z. The user is then challenged with one or more questions that are generated from the geo-location history of a wireless device that is associated with username Z (e.g., a cell phone that belongs to the user whose username is Z, etc.).

摘要翻译： 公开了基于启用地理位置的无线设备（例如，启用GPS的无线电信终端，智能卡，RFID标签等）的地理位置历史来验证用户的方法和装置。 在第一示例性实施例中，试图访问受限资源的地理位置使能的无线电信终端（例如，启用GPS的手机，支持GPS的笔记本电脑等）的用户受到一个或多个 从终端的地理位置历史生成的更多问题。 在第二说明性实施例中，要求尝试访问受限资源的数据处理系统的用户提供用户名Z.然后，向用户挑战一个或多个从地理位置历史生成的问题 与用户名Z相关联的无线设备（例如，属于用户名为Z的用户的手机等）。

公开(公告)号：US08918079B2

公开(公告)日：2014-12-23

申请号：US11942670

申请日：2007-11-19

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04M1/66 ,  H04W12/08 ,  H04L29/06 ,  H04W4/02 ,  H04L29/08 ,  H04W88/02

CPC分类号： H04W12/08 ,  H04L63/08 ,  H04L63/107 ,  H04L67/18 ,  H04L67/303 ,  H04L67/325 ,  H04W4/02 ,  H04W88/02

摘要： An apparatus and methods are disclosed for authenticating users of wireless telecommunications terminals. In particular, the present invention enables the timing and type of authentication challenges to vary based on one or more of: the user's current geo-location, the current day and time, the presence or absence of other nearby users, and the identity of any nearby users. In accordance with the illustrative embodiment, the re-authentication time period (i.e., the length of time between authenticating and re-authenticating a user) and the authentication challenge type (e.g., username/password, fingerprint recognition, etc.) can be determined based on these factors. The present invention is advantageous in that it enables the shortening of the re-authentication time and the selection of a more secure type of authentication challenge when it is more likely that a user's wireless telecommunications terminal might be accidentally left behind or stolen.

摘要翻译： 公开了用于认证无线电信终端的用户的装置和方法。 特别地，本发明使得认证挑战的时间和类型可以基于以下中的一个或多个来改变：用户的当前地理位置，当前日期和时间，其他附近用户的存在或不存在以及任何 附近的用户。 根据说明性实施例，可以确定重新认证时间段（即，认证和重新认证用户之间的时间长度）和认证挑战类型（例如，用户名/密码，指纹识别等） 基于这些因素。 本发明的优点在于，当用户的无线电信终端更有可能被意外地丢弃或被盗时，能够缩短重认证时间和选择更安全的认证挑战。

公开(公告)号：US20080146193A1

公开(公告)日：2008-06-19

申请号：US11611720

申请日：2006-12-15

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04M1/66

CPC分类号： H04W12/06 ,  G06F21/34 ,  H04L61/609 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/107 ,  H04W12/08 ,  H04W88/02

摘要： Methods and apparatus are disclosed for authenticating a user based on the geo-location history of a geo-location-enabled wireless device (e.g., a GPS-enabled wireless telecommunications terminal, a smart card, an RFID tag, etc.). In a first illustrative embodiment, a user of a geo-location-enabled wireless telecommunications terminal (e.g., a GPS-enabled cell phone, a GPS-enabled notebook computer, etc.) who attempts to access a restricted resource is challenged with one or more questions that are generated from the terminal's geo-location history. In a second illustrative embodiment, a user of a data-processing system who attempts to access a restricted resource is asked to provide a username Z. The user is then challenged with one or more questions that are generated from the geo-location history of a wireless device that is associated with username Z (e.g., a cell phone that belongs to the user whose username is Z, etc.).

摘要翻译： 公开了基于启用地理位置的无线设备（例如，启用GPS的无线电信终端，智能卡，RFID标签等）的地理位置历史来验证用户的方法和装置。 在第一示例性实施例中，试图访问受限资源的地理位置使能的无线电信终端（例如，启用GPS的手机，支持GPS的笔记本电脑等）的用户受到一个或多个 从终端的地理位置历史生成的更多问题。 在第二示例性实施例中，要求尝试访问受限资源的数据处理系统的用户提供用户名Z.然后，向用户挑战一个或多个从地理位置历史生成的问题 与用户名Z相关联的无线设备（例如，属于用户名为Z的用户的手机等）。

公开(公告)号：US09027119B2

公开(公告)日：2015-05-05

申请号：US12240912

申请日：2008-09-29

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04L9/32 ,  H04L29/06

CPC分类号： H04L63/0861 ,  H04L9/3271 ,  H04L63/083 ,  H04L63/0846 ,  H04W12/06

摘要： An apparatus and method are disclosed for determining authentication frequency (i.e., the length of time between authenticating and re-authenticating a user) and challenge type (e.g., username/password, fingerprint recognition, voice recognition, etc.) based on what software applications a user is running on a data-processing system, and how those applications are being used (e.g., what functions are used, what data is input to or output by the application, how often and for how long applications are used, what input devices and output devices are used, etc.) Advantageously, the illustrative embodiment enables authentication frequency and challenge type to be adjusted based on the likelihood of malicious activity and/or the potential cost of malicious activity, as inferred from current and past application usage. In addition, the illustrative embodiment enables selection of an authentication challenge type that is less intrusive to a user based on current application usage.

摘要翻译： 公开了一种用于基于什么软件应用来确定认证频率（即，认证和重新认证用户之间的时间长度）和质询类型（例如，用户名/密码，指纹识别，语音识别等）的装置和方法 用户正在数据处理系统上运行，以及如何使用这些应用程序（例如，使用什么功能，应用程序输入或输出哪些数据，应用程序的使用频率和时间以及应用程序的使用时间）什么输入设备 并且使用输出设备等）。有利地，说明性实施例使得能够基于从当前和过去的应用使用推断的恶意活动的可能性和/或恶意活动的潜在成本来调整认证频率和质询类型。 此外，说明性实施例使得能够基于当前应用使用来选择对用户侵入较少的认证挑战类型。

公开(公告)号：US08978117B2

公开(公告)日：2015-03-10

申请号：US12241584

申请日：2008-09-30

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04L29/06 ,  G06F21/32

CPC分类号： G06F21/31 ,  G06F21/32

摘要： An apparatus and method are disclosed for determining authentication frequency (i.e., the length of time between authenticating and re-authenticating a user) and challenge type (e.g., username/password, fingerprint recognition, voice recognition, etc.) based on one or more environmental properties (e.g., ambient noise level, ambient luminosity, temperature, etc.), or one or more physiological properties of a user (e.g., heart rate, blood pressure, etc.), or both. Advantageously, the illustrative embodiment enables authentication frequency and challenge type to be adjusted based on the likelihood of malicious activity, as inferred from these properties. In addition, the illustrative embodiment enables the authentication challenge type to be tailored to particular environmental conditions (e.g., noisy environments, dark environments, etc.).

摘要翻译： 公开了一种用于确定基于一个或多个的认证频率（即，认证和重新认证用户之间的时间长度）和质询类型（例如，用户名/密码，指纹识别，语音识别等）的装置和方法 或环境特性（例如，环境噪声水平，环境亮度，温度等）或用户的一种或多种生理特性（例如，心率，血压等），或两者。 有利地，说明性实施例使得能够基于从这些属性推断的恶意活动的可能性来调整认证频率和质询类型。 此外，说明性实施例使得认证挑战类型能够针对特定环境条件（例如，噪声环境，黑暗环境等）而定制。

公开(公告)号：US07805128B2

公开(公告)日：2010-09-28

申请号：US11561830

申请日：2006-11-20

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04M1/66 ,  H04W24/00 ,  H04W4/02

CPC分类号： G06F21/35 ,  H04L9/3228 ,  H04L63/107 ,  H04W4/02 ,  H04W4/185 ,  H04W12/06

摘要： An apparatus and methods are disclosed for authenticating users of wireless telecommunications terminals. A user is authenticated by instructing the user to travel to a geo-location, where the geo-location is referred to by an identifier that the user has previously associated with the geo-location. When the user chooses identifiers that are meaningful to the user, but that do not indicate the associated geo-locations to other people, the user can be securely authenticated via the following procedure: (i) select one of the identifiers that the user has defined, (ii) instruct the user to “go to ,” and (iii) declare the user authenticated if and only if the user visits the geo-location associated with before a timeout expires.

摘要翻译： 公开了用于认证无线电信终端的用户的装置和方法。 用户通过指示用户前往地理位置来认证用户，其中地理位置被用户先前与地理位置相关联的标识符引用。 当用户选择对用户有意义但不指示与其他人相关联的地理位置的标识符时，可以通过以下过程安全地认证用户：（i）选择用户已经定义的标识符之一 ，（ii）指示用户“去<标识符”，以及（iii）声明用户，如果且仅当用户在超时到期之前访问与相关联的地理位置时进行认证。

公开(公告)号：US20090133106A1

公开(公告)日：2009-05-21

申请号：US12241584

申请日：2008-09-30

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04L9/32

CPC分类号： G06F21/31 ,  G06F21/32

摘要： An apparatus and method are disclosed for determining authentication frequency (i.e., the length of time between authenticating and re-authenticating a user) and challenge type (e.g., username/password, fingerprint recognition, voice recognition, etc.) based on one or more environmental properties (e.g., ambient noise level, ambient luminosity, temperature, etc.), or one or more physiological properties of a user (e.g., heart rate, blood pressure, etc.), or both. Advantageously, the illustrative embodiment enables authentication frequency and challenge type to be adjusted based on the likelihood of malicious activity, as inferred from these properties. In addition, the illustrative embodiment enables the authentication challenge type to be tailored to particular environmental conditions (e.g., noisy environments, dark environments, etc.).

摘要翻译： 公开了一种用于确定基于一个或多个的认证频率（即，认证和重新认证用户之间的时间长度）和质询类型（例如，用户名/密码，指纹识别，语音识别等）的装置和方法 或环境特性（例如，环境噪声水平，环境亮度，温度等）或用户的一种或多种生理特性（例如，心率，血压等），或两者。 有利地，说明性实施例使得能够基于从这些属性推断的恶意活动的可能性来调整认证频率和质询类型。 此外，说明性实施例使得认证挑战类型能够针对特定环境条件（例如，噪声环境，黑暗环境等）而定制。

公开(公告)号：US20080120718A1

公开(公告)日：2008-05-22

申请号：US11561830

申请日：2006-11-20

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： G06F21/00

CPC分类号： G06F21/35 ,  H04L9/3228 ,  H04L63/107 ,  H04W4/02 ,  H04W4/185 ,  H04W12/06

摘要： An apparatus and methods are disclosed for authenticating users of wireless telecommunications terminals. A user is authenticated by instructing the user to travel to a geo-location, where the geo-location is referred to by an identifier that the user has previously associated with the geo-location. When the user chooses identifiers that are meaningful to the user, but that do not indicate the associated geo-locations to other people, the user can be securely authenticated via the following procedure: (i) select one of the identifiers that the user has defined, (ii) instruct the user to “go to ,” and (iii) declare the user authenticated if and only if the user visits the geo-location associated with before a timeout expires.

摘要翻译： 公开了用于认证无线电信终端的用户的装置和方法。 用户通过指示用户前往地理位置来认证用户，其中地理位置被用户先前与地理位置相关联的标识符引用。 当用户选择对用户有意义但不指示与其他人相关联的地理位置的标识符时，可以通过以下过程安全地认证用户：（i）选择用户已经定义的标识符之一 ，（ii）指示用户“去<标识符”，以及（iii）声明用户，如果且仅当用户在超时到期之前访问与相关联的地理位置时进行认证。

公开(公告)号：US20090133117A1

公开(公告)日：2009-05-21

申请号：US12240912

申请日：2008-09-29

申请人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

发明人： Jon Louis Bentley ,  George William Erhart ,  Lawrence O'Gorman ,  Michael J. Sammon ,  David Joseph Skiba

IPC分类号： H04L9/32

CPC分类号： H04L63/0861 ,  H04L9/3271 ,  H04L63/083 ,  H04L63/0846 ,  H04W12/06

摘要： An apparatus and method are disclosed for determining authentication frequency (i.e., the length of time between authenticating and re-authenticating a user) and challenge type (e.g., username/password, fingerprint recognition, voice recognition, etc.) based on what software applications a user is running on a data-processing system, and how those applications are being used (e.g., what functions are used, what data is input to or output by the application, how often and for how long applications are used, what input devices and output devices are used, etc.) Advantageously, the illustrative embodiment enables authentication frequency and challenge type to be adjusted based on the likelihood of malicious activity and/or the potential cost of malicious activity, as inferred from current and past application usage. In addition, the illustrative embodiment enables selection of an authentication challenge type that is less intrusive to a user based on current application usage.

摘要翻译： 公开了一种用于基于什么软件应用来确定认证频率（即，认证和重新认证用户之间的时间长度）和质询类型（例如，用户名/密码，指纹识别，语音识别等）的装置和方法 用户正在数据处理系统上运行，以及如何使用这些应用程序（例如，使用什么功能，应用程序输入或输出哪些数据，应用程序的使用频率以及应用程序的使用时间，输入设备 并且使用输出设备等）。有利地，说明性实施例使得能够基于从当前和过去的应用使用推断的恶意活动的可能性和/或恶意活动的潜在成本来调整认证频率和质询类型。 此外，说明性实施例使得能够基于当前应用使用来选择对用户侵入较少的认证挑战类型。