CPC G06F 21/32 (2013.01) [G06F 21/316 (2013.01); G06F 2221/2103 (2013.01); G06F 2221/2113 (2013.01); G06F 2221/2139 (2013.01)] | 20 Claims |
1. A continuous authentication method, comprising:
determining a security value of a requested user action;
in response to the request to perform the user action, determining a subsequent session security level based on the security value of the requested user action and a session security level;
in response to a determination that the subsequent session security level is greater than or equal to a threshold session security level, permitting the requested user action and adjust the session security level based on the security value of the requested user action; and
in response to a determination that the subsequent session security level is less than the threshold session security level, causing a user authentication challenge:
in response to a successful user authentication challenge, permitting the requested user action and adjust the session security level based on one or both of the security value of the requested user action and a security value of a successful user authentication challenge; and
in response to an unsuccessful user authentication challenge, rejecting the user action.
|