| CPC G06F 21/35 (2013.01) [G06F 21/32 (2013.01)] | 24 Claims |
|
1. An identity provider (IDP) apparatus, comprising:
a memory; and
a processor operatively coupled to the memory, the processor configured to:
receive, from a registered user mobile device (RUMD) communicably coupled to the IDP apparatus, a set of dynamic proximity attribute (DPA) Risk Signals (RS) indicating whether a user is within a predetermined proximity of the RUMD and a registered user device (RUD) based on short-range communication between the RUMD and the RUD, the RUMD configured to monitor devices in short-range communication in a dynamic proximity area network (DPxAN) via an IDP application (IDPAmd) associated with the RUMD;
establish a Triangle of Trust (ToT) loop between the IDP apparatus, the RUD, and the RUMD;
send a signal representing a challenge to increase a level of security of the ToT loop;
determine a Risk Parameter Value (RPV) according to the set of DPA RS received from the RUMD;
receive, from a Service Provider (SPn), a request to authenticate the user at the RUD on which a user access request originated; and
send an authentication response to the SPn based on the RPV.
|