WO2016048129A3 - A system and method for authenticating a user based on user behaviour and environmental factors - Google Patents

A system and method for authenticating a user based on user behaviour and environmental factors Download PDF

Info

Publication number
WO2016048129A3
WO2016048129A3 PCT/MY2015/050098 MY2015050098W WO2016048129A3 WO 2016048129 A3 WO2016048129 A3 WO 2016048129A3 MY 2015050098 W MY2015050098 W MY 2015050098W WO 2016048129 A3 WO2016048129 A3 WO 2016048129A3
Authority
WO
WIPO (PCT)
Prior art keywords
user
authenticating
environmental factors
behaviour
user based
Prior art date
Application number
PCT/MY2015/050098
Other languages
French (fr)
Other versions
WO2016048129A2 (en
Inventor
Khairul Azmi ABU BAKAR
Kang Siong Ng
Goh ALWYN
Chin Wei BONG
Holtby DEREK WILLIAM
Original Assignee
Mimos Berhad
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mimos Berhad filed Critical Mimos Berhad
Publication of WO2016048129A2 publication Critical patent/WO2016048129A2/en
Publication of WO2016048129A3 publication Critical patent/WO2016048129A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention relates to a system and method for authenticating a user based on user behaviour and environmental factors. The system (100) allows the user to access to an application server by evaluating the trust value of environmental and user behaviour factors. The system (100) comprises a Client Platform (101), an Authentication Gateway (102), an Authentication Server (103), an Application Server (104), and a Trust Engine (105).
PCT/MY2015/050098 2014-09-26 2015-09-04 A system and method for authenticating a user based on user behaviour and environmental factors WO2016048129A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
MYPI2014702836A MY184704A (en) 2014-09-26 2014-09-26 A system and method for authenticating a user based on user behaviour and environmental factors
MYPI2014702836 2014-09-26

Publications (2)

Publication Number Publication Date
WO2016048129A2 WO2016048129A2 (en) 2016-03-31
WO2016048129A3 true WO2016048129A3 (en) 2016-05-19

Family

ID=55582223

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/MY2015/050098 WO2016048129A2 (en) 2014-09-26 2015-09-04 A system and method for authenticating a user based on user behaviour and environmental factors

Country Status (2)

Country Link
MY (1) MY184704A (en)
WO (1) WO2016048129A2 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11627121B2 (en) * 2017-11-15 2023-04-11 Charter Communications Operating, Llc Multi-option authentication portal implementation in a network environment
CN109886596B (en) * 2019-03-01 2023-01-13 中南大学 Method for improving cooperative rate of crowd sensing system based on psychological account theory
CN112504348B (en) * 2020-12-11 2023-07-25 厦门汇利伟业科技有限公司 Object state display method and system integrating environmental factors
CN114465759A (en) * 2021-12-21 2022-05-10 奇安信科技集团股份有限公司 Trust level evaluation method and device, electronic equipment and storage medium
CN114745128B (en) * 2022-03-28 2023-07-07 中国人民解放军战略支援部队信息工程大学 Trust estimation method and device for network terminal equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070186106A1 (en) * 2006-01-26 2007-08-09 Ting David M Systems and methods for multi-factor authentication
US20080101658A1 (en) * 2005-12-22 2008-05-01 James Ahern Biometric authentication system
US20090089869A1 (en) * 2006-04-28 2009-04-02 Oracle International Corporation Techniques for fraud monitoring and detection using application fingerprinting
WO2014051695A1 (en) * 2012-09-28 2014-04-03 Hassler Christian J Method for mobile security context authentication
US20140289534A1 (en) * 2012-04-09 2014-09-25 Brivas Llc Systems, methods and apparatus for multivariate authentication

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080101658A1 (en) * 2005-12-22 2008-05-01 James Ahern Biometric authentication system
US20070186106A1 (en) * 2006-01-26 2007-08-09 Ting David M Systems and methods for multi-factor authentication
US20090089869A1 (en) * 2006-04-28 2009-04-02 Oracle International Corporation Techniques for fraud monitoring and detection using application fingerprinting
US20140289534A1 (en) * 2012-04-09 2014-09-25 Brivas Llc Systems, methods and apparatus for multivariate authentication
WO2014051695A1 (en) * 2012-09-28 2014-04-03 Hassler Christian J Method for mobile security context authentication

Also Published As

Publication number Publication date
MY184704A (en) 2021-04-18
WO2016048129A2 (en) 2016-03-31

Similar Documents

Publication Publication Date Title
SG10202108677WA (en) Trusted login method, server, and system
EP3905081A4 (en) Method and device for authenticating identity information, and server
WO2016190903A3 (en) Method and apparatus for securing a mobile application
EP3350961A4 (en) Computer-implemented cryptographic method for improving a computer network, and terminal, system and computer-readable medium for the same
EP3537733A4 (en) Network sharing method, and method and system for accessing network
WO2016022705A8 (en) Cyber security posture validation platform
EP3461060A4 (en) Block of blockchain generation method, device, node, and signature device and system
WO2014153462A3 (en) Advanced authentication techniques and applications
EP3148112A4 (en) Information processing method, network node, authentication method and server
PL3319292T3 (en) Methods, client and server for checking security based on biometric features
EP3543650A4 (en) Locating method, terminal and server
EP3410373A4 (en) Resource sharing method, resource acquisition method, terminal and server
EP4274166A3 (en) Methods and systems for protecting a secured network
EP3316544A4 (en) Token generation and authentication method, and authentication server
WO2016048129A3 (en) A system and method for authenticating a user based on user behaviour and environmental factors
EP3661146A4 (en) Method for updating network access application authentication information, terminal and server
EP3525410A4 (en) Account login method, apparatus, and server
WO2015148369A3 (en) Invariant object representation of images using spiking neural networks
EP3673361A4 (en) System and method for aggregating client data and cyber data for authentication determinations
EP3389244A4 (en) Domain name resolution system, domain name resolution server, and domain name resolution method
EP3544224A4 (en) Communication system, vehicle, server device, communication method, and computer program
WO2015029037A3 (en) Method and system handling malware
EP3481001A4 (en) Authentication method, server, terminal, and gateway
WO2015160384A8 (en) Eliciting user sharing of content
WO2015127170A3 (en) Method and system for providing a robust and efficient virtual asset vulnerability management and verification service

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15843140

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15843140

Country of ref document: EP

Kind code of ref document: A2