CPC H04L 63/0861 (2013.01) [H04L 43/04 (2013.01); H04L 63/083 (2013.01); H04L 63/0876 (2013.01); H04L 63/105 (2013.01); H04L 63/1433 (2013.01); H04L 63/1408 (2013.01); H04L 2463/082 (2013.01)] | 7 Claims |
1. A system for contextual and risk-based multi-factor authentication, comprising:
a computing device comprising a memory and a processor, the computing device being connected to a computer network; and
a validation module comprising a plurality of programming instructions stored in the memory of, and operable on the processor of, the computing device, wherein the plurality of programming instructions, when operating on the processor, causes the computing device to:
receive time series network traffic data for the computer network;
establish a baseline network usage profile for a user from the time series data;
determine a context in which an attempted access to a network resource is made by the user, the context comprising a degree to which the attempted access is determined to be anomalous relative to the baseline network usage profile;
establish a required verification score for granting the user access to the resource based on the context;
receive a number of points awarded from the user's successful completion of one or more verification methods; and
grant access to the network resource when the received number of points is equal to or greater than the verification score.
|