Security using velocity metrics identifying authentication performance for a set of devices

Assignee

• EMC IP Holding Company LLC · US

Inventors

• Yedidya Dotan · Newton, US
• Lakshmi Suresh · Westford, US
• John Watts · Fort Wayne, US
• Marcelo Blatt · Holon, IL

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/316
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A technique performs authentication. The technique involves performing, by processing circuitry, a set of authentication operations in response to a set of authentication requests, and updating a set of velocity metrics which identifies authentication performance for a set of authentication request sources that originated the set of authentication requests. The technique further involves, after updating the set of velocity metrics, receiving, by the processing circuitry, an authentication request from an authentication request source. The technique further involves providing, by the processing circuitry, an authentication result in response to the authentication request from the authentication request source. The authentication result (i) is based on the set of velocity metrics and (ii) indicates whether the authentication request is considered to be legitimate. Such a technique can detect malicious activity even if a person tries to authenticate just a few times to several accounts in a “touch the fence” style of attack.