公开(公告)号：US08452980B1

公开(公告)日：2013-05-28

申请号：US12748619

申请日：2010-03-29

申请人： Robert Seth Black ,  Karl Ackerman

发明人： Robert Seth Black ,  Karl Ackerman

IPC分类号： G06F21/00

CPC分类号： G06F21/554 ,  G06F2221/2105 ,  G06F2221/2135

摘要： A method of detecting a fraudulent login attempt across a network is provided. The method includes (a) receiving, at some time, a login request from a client, the login request including (1) a username associated with a user account, (2) a static password associated with the user account, and (3) a one-time password provided by a token, (b) calculating whether the time is more than a predetermined amount of time after a most-recent login to the account, (c) when the time is more than the predetermined time since the most-recent login, accepting the login request according to a first mode, and (d) when the first time is not more than the predetermined time since the most-recent login, accepting the login request according to a second mode, the second mode rejecting a greater proportion of login attempts than the first mode rejects. An apparatus and computer program product are also provided.

摘要翻译： 提供了一种通过网络检测欺诈性登录尝试的方法。 该方法包括：（a）在某一时刻从客户端接收登录请求，所述登录请求包括：（1）与用户帐户相关联的用户名，（2）与所述用户帐户相关联的静态密码;以及（3） 由令牌提供的一次性密码，（b）在最近登录帐户之后计算时间是否超过预定的时间量，（c）当时间大于预定时间以来最多 - 登录登录，根据第一模式接受登录请求，以及（d）当第一次不大于自最近登录之后的预定时间时，根据第二模式接受登录请求，第二模式拒绝 比第一种模式拒绝更多的登录尝试比例。 还提供了一种装置和计算机程序产品。