公开(公告)号：US08869243B2

公开(公告)日：2014-10-21

申请号：US12646803

申请日：2009-12-23

申请人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyani

发明人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyani

IPC分类号： G06F7/04 ,  G06F21/31

CPC分类号： H04L63/107 ,  G06F21/316 ,  G06F2221/2111 ,  H04L63/08 ,  H04L63/1483

摘要： User sessions are authenticated based on locations associated with a user account used for sending a request for creating a session. Examples of locations of a source of a request include a geographical location, a network address, or a machine cookie associated with a device sending the request. Locations of the request are compared with stored safe locations associated with the user account and a suspiciousness index is determined for the session. The level of authentication required for the session is determined based on the suspiciousness index. Locations are associated with a reputation based on past history of sessions originating from the locations. A location associated with a history of creating suspicious session is considered an unsafe location. Reputation of the location originating the session is used to determine the level of authentication required for the session.

摘要翻译： 用户会话基于与用于发送创建会话的请求的用户帐户相关联的位置进行身份验证。 请求源的位置的示例包括与发送请求的设备相关联的地理位置，网络地址或机器cookie。 将请求的位置与与用户帐户相关联的存储的安全位置进行比较，并为会话确定可疑索引。 会话所需的认证级别是根据可疑指数确定的。 位置与基于来自该地点的会话历史的声誉相关联。 与创建可疑会话的历史相关联的位置被认为是不安全的位置。 使用发起会话的位置的声望来确定会话所需的认证级别。

公开(公告)号：US09576119B2

公开(公告)日：2017-02-21

申请号：US12646800

申请日：2009-12-23

申请人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyani

发明人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyani

IPC分类号： G06F21/00 ,  G06F21/31

CPC分类号： H04L63/107 ,  G06F21/316 ,  G06F2221/2111 ,  H04L63/08 ,  H04L63/1483

摘要： User sessions are authenticated based on locations associated with a user account used for sending a request for creating a session. Examples of locations of a source of a request include a geographical location, a network address, or a machine cookie associated with a device sending the request. Locations of the request are compared with stored safe locations associated with the user account and a suspiciousness index is determined for the session. The level of authentication required for the session is determined based on the suspiciousness index. Locations are associated with a reputation based on past history of sessions originating from the locations. A location associated with a history of creating suspicious session is considered an unsafe location. Reputation of the location originating the session is used to determine the level of authentication required for the session.

摘要翻译： 用户会话基于与用于发送创建会话的请求的用户帐户相关联的位置进行身份验证。 请求源的位置的示例包括与发送请求的设备相关联的地理位置，网络地址或机器cookie。 将请求的位置与与用户帐户相关联的存储的安全位置进行比较，并为会话确定可疑索引。 会话所需的认证级别是根据可疑指数确定的。 位置与基于来自该地点的会话历史的声誉相关联。 与创建可疑会话的历史相关联的位置被认为是不安全的位置。 使用发起会话的位置的声望来确定会话所需的认证级别。

公开(公告)号：US20100211997A1

公开(公告)日：2010-08-19

申请号：US12646803

申请日：2009-12-23

申请人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyani

发明人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyani

IPC分类号： G06F21/00

CPC分类号： H04L63/107 ,  G06F21/316 ,  G06F2221/2111 ,  H04L63/08 ,  H04L63/1483

摘要： User sessions are authenticated based on locations associated with a user account used for sending a request for creating a session. Examples of locations of a source of a request include a geographical location, a network address, or a machine cookie associated with a device sending the request. Locations of the request are compared with stored safe locations associated with the user account and a suspiciousness index is determined for the session. The level of authentication required for the session is determined based on the suspiciousness index. Locations are associated with a reputation based on past history of sessions originating from the locations. A location associated with a history of creating suspicious session is considered an unsafe location. Reputation of the location originating the session is used to determine the level of authentication required for the session.

摘要翻译： 用户会话基于与用于发送创建会话的请求的用户帐户相关联的位置进行身份验证。 请求源的位置的示例包括与发送请求的设备相关联的地理位置，网络地址或机器cookie。 将请求的位置与与用户帐户相关联的存储的安全位置进行比较，并为会话确定可疑索引。 会话所需的认证级别是根据可疑指数确定的。 位置与基于来自该地点的会话历史的声誉相关联。 与创建可疑会话的历史相关联的位置被认为是不安全的位置。 使用发起会话的位置的声望来确定会话所需的认证级别。

公开(公告)号：US20100211996A1

公开(公告)日：2010-08-19

申请号：US12646800

申请日：2009-12-23

申请人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyami

发明人： Ryan McGeehan ,  Lev Timourovich Popov ,  Christopher William Palow ,  Robert J. Read ,  Pedram Keyami

IPC分类号： G06F21/00

CPC分类号： H04L63/107 ,  G06F21/316 ,  G06F2221/2111 ,  H04L63/08 ,  H04L63/1483

摘要： User sessions are authenticated based on locations associated with a user account used for sending a request for creating a session. Examples of locations of a source of a request include a geographical location, a network address, or a machine cookie associated with a device sending the request. Locations of the request are compared with stored safe locations associated with the user account and a suspiciousness index is determined for the session. The level of authentication required for the session is determined based on the suspiciousness index. Locations are associated with a reputation based on past history of sessions originating from the locations. A location associated with a history of creating suspicious session is considered an unsafe location. Reputation of the location originating the session is used to determine the level of authentication required for the session.

摘要翻译： 用户会话基于与用于发送创建会话的请求的用户帐户相关联的位置进行身份验证。 请求源的位置的示例包括与发送请求的设备相关联的地理位置，网络地址或机器cookie。 将请求的位置与与用户帐户相关联的存储的安全位置进行比较，并为会话确定可疑索引。 会话所需的认证级别是根据可疑指数确定的。 位置与基于来自该地点的会话历史的声誉相关联。 与创建可疑会话的历史相关联的位置被认为是不安全的位置。 使用发起会话的位置的声望来确定会话所需的认证级别。

公开(公告)号：US09298890B2

公开(公告)日：2016-03-29

申请号：US13424626

申请日：2012-03-20

申请人： Andrei Bajenov ,  Jonathan H. Frank ,  Matthew Knight Jones ,  Alok Menghranjani ,  Christopher William Palow ,  Allan Stewart

发明人： Andrei Bajenov ,  Jonathan H. Frank ,  Matthew Knight Jones ,  Alok Menghranjani ,  Christopher William Palow ,  Allan Stewart

IPC分类号： G06F21/00

CPC分类号： H04L63/083 ,  G06F21/00 ,  G06F21/31 ,  G06F21/55

摘要： User login information submitted as part of an attempt to log into a computer system is evaluated for unauthorized or illegitimate use based on indicators of suspicious behavior. Example indicators of suspicious behavior include whether the login information is known to have been compromised, whether the login attempt originates from a network source or a physical source that has previously originated an attempt to log in using login information known to have been compromised, and whether multiple login attempts using the login information from multiple users has originated from the source. A suspicion index can be calculated based on the presence of the indicators of suspicious behavior. The system can require enhanced authentication based on the measurement of suspicious behavior.

摘要翻译： 根据可疑行为指标，对用户登录信息作为尝试登录计算机系统的一部分进行评估，以进行未经授权或非法使用。 可疑行为的示例指标包括登录信息是否已知已被入侵，登录尝试是源自网络源还是以前曾使用已知已被破坏的登录信息发起尝试登录的物理源，以及是否 使用来自多个用户的登录信息的多次登录尝试源自源。 可以根据可疑行为指标的存在来计算怀疑指数。 该系统可以根据可疑行为的测量需要增强认证。

公开(公告)号：US20130254857A1

公开(公告)日：2013-09-26

申请号：US13424626

申请日：2012-03-20

申请人： Andrei Bajenov ,  Jonathan H. Frank ,  Matthew Knight Jones ,  Alok Mengharajani ,  Christopher William Palow ,  Allan Stewart

发明人： Andrei Bajenov ,  Jonathan H. Frank ,  Matthew Knight Jones ,  Alok Mengharajani ,  Christopher William Palow ,  Allan Stewart

IPC分类号： G06F21/00

CPC分类号： H04L63/083 ,  G06F21/00 ,  G06F21/31 ,  G06F21/55

摘要： User login information submitted as part of an attempt to log into a computer system is evaluated for unauthorized or illegitimate use based on indicators of suspicious behavior. Example indicators of suspicious behavior include whether the login information is known to have been compromised, whether the login attempt originates from a network source or a physical source that has previously originated an attempt to log in using login information known to have been compromised, and whether multiple login attempts using the login information from multiple users has originated from the source. A suspicion index can be calculated based on the presence of the indicators of suspicious behavior. The system can require enhanced authentication based on the measurement of suspicious behavior.

摘要翻译： 根据可疑行为指标，对用户登录信息作为尝试登录计算机系统的一部分进行评估，以进行未经授权或非法使用。 可疑行为的示例指标包括登录信息是否已知已被入侵，登录尝试是源自网络源还是以前曾使用已知已被破坏的登录信息发起尝试登录的物理源，以及是否 使用来自多个用户的登录信息的多次登录尝试源自源。 可以根据可疑行为指标的存在来计算怀疑指数。 该系统可以根据可疑行为的测量需要增强认证。