US2019319965A1PendingUtilityA1

Method and apparatus for geographic location based electronic security management

54
Assignee: AVERON US INCPriority: Aug 20, 2015Filed: Feb 14, 2019Published: Oct 17, 2019
Est. expiryAug 20, 2035(~9.1 yrs left)· nominal 20-yr term from priority
H04L 63/0853H04L 63/0492H04W 4/80H04L 63/0861H04W 12/06H04L 63/107G06F 21/34H04L 67/42H04W 12/068
54
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

Provided herein are embodiments directed to facilitating an authentication process before allowing an action. An example apparatus may be configured to receive a request, via an authentication session established during a log-in process of a second device, to cause the action, send an alert to a first device associated with an account associated with the requested action, cause the first device to communicate, via the short-range wireless communication protocol, with the second device to verify a proximity, receive verification of the proximity, receive, from the second device, a first identifying data originating at the second device, having been used to start the authentication session, receive, from the first device, a second identifying data string originating from a trusted agent, configured as software or hardware, and upon confirmation of a match of the first identifying data string and the second identifying data string, authorize the action.

Claims

exact text as granted — not AI-modified
1 .- 21 . (canceled) 
     
     
         22 . An authentication apparatus configured for verifying, validating or otherwise confirming a location of a first device before enabling or allowing an action, the authentication apparatus comprising at least one processor and at least one memory including computer program code, the at least one memory and the computer program code configured to, with the processor, cause the authentication apparatus to at least:
 receive a request, via an authentication session established during a log-in process of a second device, to cause the action;   send an alert to a first device associated with an account associated with the requested action;   cause the first device to communicate, via the short-range wireless communication protocol, with the second device to verify a proximity;   receive verification of the proximity;   receive, from the second device, a first identifying data originating at the second device, having been used to start the authentication session;   receive, from the first device, a second identifying data string originating from a trusted agent, configured as software or hardware; and   upon confirmation of a match of the first identifying data string and the second identifying data string, authorize the action.   
     
     
         23 . The authentication apparatus of  claim 22 , wherein the at least one memory and the computer program code are further configured to, with the processor, cause the apparatus to:
 receive data indicative of a biometric input at the first device; and   preceding authorization of the action, confirming a match of the data indicative of the biometric input to stored biometric data associated with a user of the first device.   
     
     
         24 . The authentication apparatus according to  claim 22 , wherein the at least one memory and the computer program code configured to cause the first device to communicate with the second device to verify the proximity of the first device and the second device is further configured to, with the processor, cause the apparatus to:
 receive an indication of a location of the first device by means of GPS, Wi-Fi, or mobile network location information;   compare the location of the first device to a location of the second device, the second device having a verifiable or confirmed location and being independent to the first device;   verifying the proximity of the first device to the second device, confirming the location of the first device based on the verifiable or confirmed location of the second device.   
     
     
         25 . The authentication apparatus according to  claim 22 , wherein the at least one memory and the computer program code are further configured to, with the processor, cause the apparatus to:
 upon determination of the location of the first device and preceding authorization of the action, determine the location is within a predefined authorized geo-region.   
     
     
         26 . The authentication apparatus according to  claim 22 , wherein the at least one memory and the computer program code are further configured to, with the processor, cause the apparatus to:
 upon determination of the location of the first device and preceding authorization of the action, determine the location is within a predefined range of a pre-defined authorized location.   
     
     
         27 . The authentication apparatus according to  claim 22 , wherein the at least one memory and the computer program code are further configured to, with the processor, cause the apparatus to:
 upon determination of the location of the first device and preceding authorization of the action, determine the location is not within a predefined un-authorized geo-region.   
     
     
         28 . The authentication apparatus according to  claim 22 , wherein the at least one memory and the computer program code are further configured to, with the processor, cause the apparatus to:
 upon determination of the location of the first device by means of GPS, Wi-Fi, or mobile network location information and preceding authorization of the action, receive input at a third device; and   upon verification of input at the third device, authorize the action.   
     
     
         29 . A computer implemented authentication method for verifying, validating or otherwise confirming a location of a first device before enabling or allowing an action, the method comprising:
 receiving a request, via an authentication session established during a log-in process of a second device, to cause the action;   sending an alert to a first device associated with an account associated with the requested action;   causing the first device to communicate, via the short-range wireless communication protocol, with the second device to verify a proximity;   receiving verification of the proximity;   receiving, from the second device, a first identifying data originating at the second device, having been used to start the authentication session;   receiving, from the first device, a second identifying data string originating from a trusted agent, configured as software or hardware; and   upon confirmation of a match of the first identifying data string and the second identifying data string, authorizing the action.   
     
     
         30 . The computer implemented authentication method of  claim 29 , further comprising:
 receiving data indicative of a biometric input at the first device; and   preceding authorization of the action, confirming a match of the data indicative of the biometric input to stored biometric data associated with a user of the first device.   
     
     
         31 . The computer implemented authentication method according to  claim 29 , wherein the causing the first device to communicate with the second device to verify the proximity of the first device and the second device, further comprising:
 receiving an indication of a location of the first device by means of GPS, Wi-Fi, or mobile network location information;   comparing the location of the first device to a location of the second device, the second device having a verifiable or confirmed location and being independent to the first device;   verifying the proximity of the first device to the second device, confirming the location of the first device based on the verifiable or confirmed location of the second device.   
     
     
         32 . The computer implemented authentication method according to  claim 29 , further comprising:
 upon determination of the location of the first device and preceding authorization of the action, determining the location is within a predefined authorized geo-region.   
     
     
         33 . The computer implemented authentication method according to  claim 29 , further comprising:
 upon determination of the location of the first device and preceding authorization of the action, determining the location is within a predefined range of a pre-defined authorized location.   
     
     
         34 . The computer implemented authentication method according to  claim 29 , further comprising:
 upon determination of the location of the first device and preceding authorization of the action, determining the location is not within a predefined un-authorized geo-region.   
     
     
         35 . The computer implemented authentication method according to  claim 29 , further comprising:
 upon determination of the location of the first device by means of GPS, Wi-Fi, or mobile network location information and preceding authorization of the action, receive input at a third device; and   upon verification of input at the third device, authorizing the action.   
     
     
         36 . A computer program product configured for verifying, validating or otherwise confirming a location of a first device before enabling or allowing an action, the computer program product comprising at least one non-transitory computer-readable storage medium having computer-executable program code instructions stored therein, the computer-executable program code instructions comprising program code instructions for:
 receiving a request, via an authentication session established during a log-in process of a second device, to cause the action;   sending an alert to a first device associated with an account associated with the requested action;   causing the first device to communicate, via the short-range wireless communication protocol, with the second device to verify a proximity;   receiving verification of the proximity;   receiving, from the second device, a first identifying data originating at the second device, having been used to start the authentication session;   receiving, from the first device, a second identifying data string originating from a trusted agent, configured as software or hardware; and   upon confirmation of a match of the first identifying data string and the second identifying data string, authorizing the action.   
     
     
         37 . The computer program product of  claim 36 , wherein the computer-executable program code instructions further comprise program code instructions for:
 receiving data indicative of a biometric input at the first device; and   preceding authorization of the action, confirming a match of the data indicative of the biometric input to stored biometric data associated with a user of the first device.   
     
     
         38 . The computer program product according to  claim 36 , wherein the computer-executable program code instructions for causing the first device to communicate with the second device to verify the proximity of the first device and the second device, further comprise program code instructions for:
 receiving an indication of a location of the first device by means of GPS, Wi-Fi, or mobile network location information;   comparing the location of the first device to a location of the second device, the second device having a verifiable or confirmed location and being independent to the first device;   verifying the proximity of the first device to the second device, confirming the location of the first device based on the verifiable or confirmed location of the second device.   
     
     
         39 . The computer program product according to  claim 36 , wherein the computer-executable program code instructions further comprise program code instructions for:
 upon determination of the location of the first device and preceding authorization of the action, determining the location is within a predefined authorized geo-region.   
     
     
         40 . The computer program product according to  claim 36 , wherein the computer-executable program code instructions further comprise program code instructions for:
 upon determination of the location of the first device and preceding authorization of the action, determining the location is within a predefined range of a pre-defined authorized location.   
     
     
         41 . The computer program product according to  claim 36 , wherein the computer-executable program code instructions further comprise program code instructions for:
 upon determination of the location of the first device and preceding authorization of the action, determining the location is not within a predefined un-authorized geo-region.   
     
     
         42 . The computer program product according to  claim 36 , wherein the computer-executable program code instructions further comprise program code instructions for:
 upon determination of the location of the first device by means of GPS, Wi-Fi, or mobile network location information and preceding authorization of the action, receive input at a third device; and   upon verification of input at the third device, authorizing the action.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.