| CPC G06Q 20/4016 (2013.01) [G06Q 20/425 (2013.01); H04L 63/0869 (2013.01); H04L 63/0892 (2013.01); H04L 63/18 (2013.01); H04L 67/306 (2013.01); H04L 67/535 (2022.05); H04L 63/0861 (2013.01)] | 15 Claims |
|
1. A system for using user entity context and behavior information for providing and restricting access to a secure computer network comprising:
a plurality of processors and memory coupled to a network interface, the processors configured to:
capture behavioral and contextual factors of a user entity interacting with a client device used to access cloud services, wherein the behavioral and contextual factors include the user entity behavior and habits, client device characteristics, client device browser characteristics and network traffic;
calculate a transaction risk score of the user entity, the client device and the client device browser for a transaction request based on the user entity behavior and habits and client device characteristics, wherein the number of behavioral and contextual factors used to determine the transaction risk score are increased depending on a level of risk determined from a deviation between the user entity and client device normal behavior;
compare the transaction risk score to a predetermined threshold required risk score to determine whether the transaction request is automatically approved and if not approved, send an out of band authentication request to the user entity device to authenticate and authorize access; and
continuously monitor the user entity using a virtual quick response code of the user entity after access by the user entity is authorized according to predetermined policies for maintaining access.
|