CN113302606A - 用于检测未授权访问的方法和系统 - Google Patents
用于检测未授权访问的方法和系统 Download PDFInfo
- Publication number
- CN113302606A CN113302606A CN201980089381.6A CN201980089381A CN113302606A CN 113302606 A CN113302606 A CN 113302606A CN 201980089381 A CN201980089381 A CN 201980089381A CN 113302606 A CN113302606 A CN 113302606A
- Authority
- CN
- China
- Prior art keywords
- peer
- account
- user
- failed
- response
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 46
- 230000004044 response Effects 0.000 claims abstract description 55
- 230000009471 action Effects 0.000 claims abstract description 42
- 230000008569 process Effects 0.000 claims description 9
- 238000013475 authorization Methods 0.000 claims description 6
- 230000000903 blocking effect Effects 0.000 claims description 6
- 238000004891 communication Methods 0.000 description 4
- 238000012790 confirmation Methods 0.000 description 3
- 108091027981 Response element Proteins 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000007246 mechanism Effects 0.000 description 2
- 230000006978 adaptation Effects 0.000 description 1
- 230000003542 behavioural effect Effects 0.000 description 1
- 230000001010 compromised effect Effects 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 230000001105 regulatory effect Effects 0.000 description 1
- 238000012552 review Methods 0.000 description 1
- 238000010200 validation analysis Methods 0.000 description 1
- 239000013598 vector Substances 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/104—Grouping of entities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/316—User authentication by observing the pattern of computer usage, e.g. typical user behaviour
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/42—User authentication using separate channels for security data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Social Psychology (AREA)
- Information Transfer Between Computers (AREA)
Abstract
Description
Claims (22)
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US16/250,410 US11616774B2 (en) | 2019-01-17 | 2019-01-17 | Methods and systems for detecting unauthorized access by sending a request to one or more peer contacts |
US16/250,410 | 2019-01-17 | ||
PCT/CA2019/051741 WO2020146935A1 (en) | 2019-01-17 | 2019-12-04 | Methods and systems for detecting unauthorized access |
Publications (1)
Publication Number | Publication Date |
---|---|
CN113302606A true CN113302606A (zh) | 2021-08-24 |
Family
ID=71609220
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201980089381.6A Pending CN113302606A (zh) | 2019-01-17 | 2019-12-04 | 用于检测未授权访问的方法和系统 |
Country Status (4)
Country | Link |
---|---|
US (1) | US11616774B2 (zh) |
EP (1) | EP3877877A4 (zh) |
CN (1) | CN113302606A (zh) |
WO (1) | WO2020146935A1 (zh) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11356472B1 (en) * | 2019-12-16 | 2022-06-07 | Wells Fargo Bank, N.A. | Systems and methods for using machine learning for geographic analysis of access attempts |
US11601435B1 (en) * | 2021-06-07 | 2023-03-07 | Wells Fargo Bank, N.A. | System and method for graduated deny lists |
US11972427B2 (en) * | 2021-07-27 | 2024-04-30 | Subway IP LLC | System for deterring unauthorized access to an account associated with an online ordering platform |
Family Cites Families (36)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6891819B1 (en) * | 1997-09-05 | 2005-05-10 | Kabushiki Kaisha Toshiba | Mobile IP communications scheme incorporating individual user authentication |
US7139917B2 (en) * | 2000-06-05 | 2006-11-21 | Phoenix Technologies Ltd. | Systems, methods and software for remote password authentication using multiple servers |
WO2004008284A2 (en) | 2002-07-12 | 2004-01-22 | Checkspert, Inc. | System and method for remote supervision and authentication of user activities at communication network workstations |
US7568098B2 (en) * | 2003-12-02 | 2009-07-28 | Microsoft Corporation | Systems and methods for enhancing security of communication over a public network |
US7383575B2 (en) * | 2003-12-23 | 2008-06-03 | Lenovo (Singapore) Pte Ltd. | System and method for automatic password reset |
US20050188080A1 (en) * | 2004-02-24 | 2005-08-25 | Covelight Systems, Inc. | Methods, systems and computer program products for monitoring user access for a server application |
US8090945B2 (en) * | 2005-09-16 | 2012-01-03 | Tara Chand Singhal | Systems and methods for multi-factor remote user authentication |
US7650368B2 (en) * | 2007-02-07 | 2010-01-19 | At&T Intellectual Property I, L.P. | Methods, systems, and products for restoring electronic media |
US8130747B2 (en) * | 2007-08-06 | 2012-03-06 | Blue Coat Systems, Inc. | System and method of traffic inspection and stateful connection forwarding among geographically dispersed network appliances organized as clusters |
US8738923B2 (en) * | 2007-09-14 | 2014-05-27 | Oracle International Corporation | Framework for notifying a directory service of authentication events processed outside the directory service |
US7979419B2 (en) * | 2007-11-01 | 2011-07-12 | Sharp Laboratories Of America, Inc. | Distributed search methods for time-shifted and live peer-to-peer video streaming |
US8909297B2 (en) * | 2008-03-04 | 2014-12-09 | Mike Matas | Access management |
US8732829B2 (en) | 2008-04-14 | 2014-05-20 | Tdi Technologies, Inc. | System and method for monitoring and securing a baseboard management controller |
US8615551B2 (en) * | 2009-09-08 | 2013-12-24 | Nokia Corporation | Method and apparatus for selective sharing of semantic information sets |
CN103140833A (zh) * | 2010-10-13 | 2013-06-05 | 中兴通讯(美国)公司 | 用于多媒体多方对等操作(m2p2)的系统和方法 |
US8516607B2 (en) * | 2011-05-23 | 2013-08-20 | Qualcomm Incorporated | Facilitating data access control in peer-to-peer overlay networks |
WO2013016142A1 (en) * | 2011-07-22 | 2013-01-31 | Raketu Communications, Inc. | Self-adapting direct peer to peer communication and messaging system |
US9092969B2 (en) * | 2011-12-29 | 2015-07-28 | Verizon Patent And Licensing Inc. | Method and system for invoking a security function of a device based on proximity to another device |
US20120266209A1 (en) * | 2012-06-11 | 2012-10-18 | David Jeffrey Gooding | Method of Secure Electric Power Grid Operations Using Common Cyber Security Services |
US20140007205A1 (en) * | 2012-06-28 | 2014-01-02 | Bytemobile, Inc. | No-Click Log-In Access to User's Web Account Using a Mobile Device |
US8904480B2 (en) * | 2012-11-29 | 2014-12-02 | International Business Machines Corporation | Social authentication of users |
US9223950B2 (en) * | 2013-03-05 | 2015-12-29 | Intel Corporation | Security challenge assisted password proxy |
US9374364B2 (en) | 2013-10-16 | 2016-06-21 | Teleperformance Se | Method and system for implementing video two factor authentication |
US9544306B2 (en) | 2013-10-29 | 2017-01-10 | Airwatch Llc | Attempted security breach remediation |
US9667637B2 (en) * | 2014-06-09 | 2017-05-30 | Guardicore Ltd. | Network-based detection of authentication failures |
US20160036902A1 (en) * | 2014-07-31 | 2016-02-04 | Google Technology Holdings LLC | Method and apparatus for sharing content between devices in peer-to-peer networks |
CN104333863B (zh) | 2014-10-20 | 2018-11-30 | 小米科技有限责任公司 | 连接管理方法及装置、电子设备 |
US11411826B2 (en) * | 2015-03-30 | 2022-08-09 | Irdeto B.V. | Monitoring a peer-to-peer network |
US9621737B2 (en) * | 2015-08-27 | 2017-04-11 | Google Inc. | Abuse detection for phone number lookups |
US9755949B2 (en) * | 2015-09-21 | 2017-09-05 | Verizon Digital Media Services Inc. | Network failover and loop detection in hierarchical networks |
JP6613909B2 (ja) * | 2016-01-15 | 2019-12-04 | 富士通株式会社 | 相互認証方法、認証装置および認証プログラム |
US10771479B2 (en) * | 2016-09-26 | 2020-09-08 | Splunk Inc. | Configuring modular alert actions and reporting action performance information |
US10547600B2 (en) * | 2016-09-30 | 2020-01-28 | Palo Alto Networks, Inc. | Multifactor authentication as a network service |
US10637963B2 (en) * | 2017-06-26 | 2020-04-28 | Verizon Patent And Licensing Inc. | Method and system for traffic management using a unified network barring mechanism |
US10893053B2 (en) * | 2018-03-13 | 2021-01-12 | Roblox Corporation | Preventing unauthorized account access based on location and time |
US11089036B2 (en) * | 2018-12-27 | 2021-08-10 | Sap Se | Identifying security risks and fraud attacks using authentication from a network of websites |
-
2019
- 2019-01-17 US US16/250,410 patent/US11616774B2/en active Active
- 2019-12-04 CN CN201980089381.6A patent/CN113302606A/zh active Pending
- 2019-12-04 WO PCT/CA2019/051741 patent/WO2020146935A1/en unknown
- 2019-12-04 EP EP19909657.9A patent/EP3877877A4/en active Pending
Also Published As
Publication number | Publication date |
---|---|
EP3877877A4 (en) | 2022-09-07 |
WO2020146935A1 (en) | 2020-07-23 |
US11616774B2 (en) | 2023-03-28 |
US20200236099A1 (en) | 2020-07-23 |
EP3877877A1 (en) | 2021-09-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11888868B2 (en) | Identifying security risks and fraud attacks using authentication from a network of websites | |
US9942220B2 (en) | Preventing unauthorized account access using compromised login credentials | |
US10110585B2 (en) | Multi-party authentication in a zero-trust distributed system | |
US10033715B2 (en) | Password-less authentication system and method | |
US8046827B2 (en) | Access control of interaction context of application | |
US7475252B2 (en) | System, method and program to filter out login attempts by unauthorized entities | |
US8819803B1 (en) | Validating association of client devices with authenticated clients | |
EP1965558B1 (en) | Method, apparatuses and computer program product for robust digest authentication using two types of nonce values | |
EP3726406B1 (en) | Preventing account lockout through request throttling | |
KR101451359B1 (ko) | 사용자 계정 회복 | |
US20080034412A1 (en) | System to prevent misuse of access rights in a single sign on environment | |
US20120151565A1 (en) | System, apparatus and method for identifying and blocking anomalous or improper use of identity information on computer networks | |
US7032026B1 (en) | Method and apparatus to facilitate individual and global lockouts to network applications | |
CA2764573A1 (en) | Shared registration system multi-factor authentication | |
US20180083958A1 (en) | System and method for network user's authentication and registration by way of third party computing device | |
CN113302606A (zh) | 用于检测未授权访问的方法和系统 | |
JP6842951B2 (ja) | 不正アクセス検出装置、プログラム及び方法 | |
CN110875923B (zh) | 对网络提供增强型网络访问控制的方法和系统 | |
KR20130124447A (ko) | 지능형 로그인 인증 시스템 및 그 방법 | |
CN115580416A (zh) | 基于OAuth标准的授权方法、OAuth服务器及存储介质 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 40059603 Country of ref document: HK |
|
TA01 | Transfer of patent application right | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20240329 Address after: Ai Erlandubailin Applicant after: Mariki Innovation Ltd. Country or region after: Ireland Address before: Ontario, Canada Applicant before: BlackBerry Ltd. Country or region before: Canada |