Secure resource access based on psychometrics
Abstract
Controlling access to a secure resource. Data relating to social media history information, demographic information, and psychometric information regarding a user having access to a secure resource is mined by a computer system. Mined data that indicates a potential security risk that meets a predefined security criteria with respect to the secure resource is identified by the computer system. A security risk level based on the identified data is determined. A level of access to the secure resource by the user computing device is set, based on one or more predetermined threshold values that are met, in response to a determination regarding such. Access is granted to the secure resource in accordance with the set level of access, in response to receiving a request to access the secure resource by the computer system.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A method for controlling access to a secure resource, the method comprising:
mining, by a computer system, data relating to social media history information, demographic information, and psychometric information with respect to a user having access to a secure resource; receiving, by the computer system from a user computing device, a request to access the secure resource; identifying, by the computer system, data in the mined data that indicates a potential security risk that meets a predefined security criteria with respect to the secure resource; determining, by the computer system, a security risk level based on the identified data; in response to determining, by the computer system, that the determined security risk level meets one or more predetermined threshold values, setting a level of access to the secure resource by the user computing device based on the one or more predetermined threshold values that are met; and responding, by the computer system, to the received request to access the secure resource by granting access to the secure resource in accordance with the set level of access.
2 . The method of claim 1 , wherein identifying, by the computer system, data in the mined data that indicates a potential security risk that meets a predefined security criteria with respect to the secure resource further comprises:
performing one or more from a group consisting of: Natural Language Processing (NLP), sentiment analyses, user behavioral analytics, classification engines, and other machine learning techniques.
3 . The method of claim 1 , wherein mining, by the computer system, is performed by one or more crawlers selected from a group consisting of: a web crawler, an email crawler, and a database crawler.
4 . The method of claim 1 , wherein in response to determining, by the computer system, that the determined security risk level meets one or more predetermined threshold values, setting a level of access to the secure resource by the user computing device based on the one or more predetermined threshold values that are met further comprises:
performing one or more from a group consisting of: requiring the completion of education by the user regarding security habits, and communicating an alert to a system administrator with respect to the user.
5 . The method of claim 1 , wherein determining, by the computer system, a security risk level based on the identified data further comprises:
generating, by the computer system, a security risk level score based on information relating to one or more from a group consisting of: one or more patterns of behavior exhibited by the user, and one or more human factors information with respect to the user.
6 . The method of claim 1 , wherein receiving, by the computer system from the user computing device, the request to access the secure resource further comprises:
receiving, by the computer system from the user computing device, the request by a proxy configured to act as an intermediary with respect to the secure resource.
7 . A computer system for controlling access to a secure resource, the computer system comprising:
one or more computer processors, one or more computer-readable storage media, and program instructions stored on one or more of the computer-readable storage media for execution by at least one of the one or more processors, the program instructions, when executed by the at least one of the one or more processors, causing the computer system to perform a method comprising:
mining, by a computer system, data relating to social media history information, demographic information, and psychometric information with respect to a user having access to a secure resource;
receiving, by the computer system from a user computing device, a request to access the secure resource;
identifying, by the computer system, data in the mined data that indicates a potential security risk that meets a predefined security criteria with respect to the secure resource;
determining, by the computer system, a security risk level based on the identified data;
in response to determining, by the computer system, that the determined security risk level meets one or more predetermined threshold values, setting a level of access to the secure resource by the user computing device based on the one or more predetermined threshold values that are met; and
responding, by the computer system, to the received request to access the secure resource by granting access to the secure resource in accordance with the set level of access.
8 . The computer system of claim 7 , wherein identifying, by the computer system, data in the mined data that indicates a potential security risk that meets a predefined security criteria with respect to the secure resource further comprises:
performing one or more from a group consisting of: Natural Language Processing (NLP), sentiment analyses, user behavioral analytics, classification engines, and other machine learning techniques.
9 . The computer system of claim 7 , wherein mining, by the computer system, is performed by one or more crawlers selected from a group consisting of: a web crawler, an email crawler, and a database crawler.
10 . The computer system of claim 7 , wherein in response to determining, by the computer system, that the determined security risk level meets one or more predetermined threshold values, setting a level of access to the secure resource by the user computing device based on the one or more predetermined threshold values that are met further comprises:
performing one or more from a group consisting of: requiring the completion of education by the user regarding security habits, and communicating an alert to a system administrator with respect to the user.
11 . The computer system of claim 7 , wherein determining, by the computer system, a security risk level based on the identified data further comprises:
generating, by the computer system, a security risk level score based on information relating to one or more from a group consisting of: one or more patterns of behavior exhibited by the user, and one or more human factors information with respect to the user.
12 . The computer system of claim 7 , wherein receiving, by the computer system from the user computing device, a request to access the secure resource further comprises:
receiving, by the computer system from the user computing device, the request by a proxy configured to act as an intermediary with respect to the secure resource.
13 . A computer program product for controlling access to a secure resource, the computer program product comprising:
One or more computer-readable storage devices and program instructions stored on at least one of the one or more tangible storage devices, the program instructions comprising:
program instructions to mine, by a computer system, data relating to social media history information, demographic information, and psychometric information with respect to a user having access to a secure resource;
program instructions to receive, by the computer system from a user computing device, a request to access the secure resource;
program instructions to identify, by the computer system, data in the mined data that indicates a potential security risk that meets a predefined security criteria with respect to the secure resource;
program instructions to determine, by the computer system, a security risk level based on the identified data;
in response to determining, by the computer system, that the determined security risk level meets one or more predetermined threshold values, program instructions to set a level of access to the secure resource by the user computing device based on the one or more predetermined threshold values that are met; and
program instructions to respond, by the computer system, to the received request to access the secure resource by granting access to the secure resource in accordance with the set level of access.
14 . The computer program product of claim 13 , wherein program instructions to identify, by the computer system, data in the mined data that indicates a potential security risk that meets a predefined security criteria with respect to the secure resource further comprises:
program instructions to perform one or more from a group consisting of: Natural Language Processing (NLP), sentiment analyses, user behavioral analytics, classification engines, and other machine learning techniques.
15 . The computer program product of claim 13 , wherein program instructions to mine, by a computer system, comprises program instructions to be performed by one or more crawlers selected from a group consisting of: a web crawler, an email crawler, and a database crawler.
16 . The computer program product of claim 13 , wherein in response to determining, by the computer system, that the determined security risk level meets one or more predetermined threshold values, program instructions to set a level of access to the secure resource by the user computing device based on the one or more predetermined threshold values that are met further comprises:
program instructions to perform one or more from a group consisting of: requiring the completion of education by the user regarding security habits, and communicating an alert to a system administrator with respect to the user.
17 . The computer program product of claim 13 , wherein program instructions to determine, by the computer system, a security risk level based on the identified data further comprises:
program instructions to generate, by the computer system, a security risk level score based on information relating to one or more from a group consisting of: one or more patterns of behavior exhibited by the user, and one or more human factors information with respect to the user.
18 . The computer program product of claim 13 , wherein program instructions to receive, by the computer system from a user computing device, a request to access the secure resource; further comprises:
program instructions to receive, by the computer system from the user computing device, the request by a proxy configured to act as an intermediary with respect to the secure resource.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.