| CPC G06F 21/44 (2013.01) [G06F 21/31 (2013.01); G06N 5/013 (2023.01); G06F 2221/2103 (2013.01); G06F 2221/2141 (2013.01)] | 20 Claims |
|
1. A method comprising:
receiving, at an authentication decisioning computing device and from a user device, a request for verification of access, by the user device, to a secured electronic resource provided by an additional computing device, the request comprising: a) input session data describing a session of the user device;
determining, via a passive-dimension decision model included in the authentication decisioning computing device, an authentication challenge level for the user device for access to the secured electronic resource, wherein determining the authentication challenge level comprises applying the passive-dimension decision model to the request by:
modifying the passive-dimension decision model based on one or more weights, the one or more weights received from the additional computing device that provides the secured electronic resource for which the verification of access is requested,
analyzing one or more of (a) identity characteristics associated with the user device or the request, or (b) device characteristics associated with the user device or the request,
comparing the input session data from the request with previously obtained reference data, and
determining, based on the comparison of the input session data and the previously obtained reference data, whether the identity characteristics or the device characteristics are outside a norm for the user device;
and
communicating an access decision to one or more of the user device or the additional computing device, wherein the access decision is determined from a set of access decisions including at least:
authorizing access to the secured electronic resource by the user device without supplemental authentication,
denying access to the secured electronic resource by the user device, and
presenting a supplemental authentication challenge to the user device.
|