Patent · US Active

Security guidance for creation of multi factor authentication policy

US11477249B2 · kind B2 · utility

0Cited by

1References

20Claims

0Family size

Assignee

Okta, Inc. · US

Inventors

Naomaru Itoi · Fremont, US
Sam Sanjabi · Toronto, CA
Royal Chan · Alameda, US
Vincent Voong · San Francisco, US
Daniel J. Post · Cupertino, US
Cedric Beust · San Francisco, US

Key dates

Filing date	Jan 29, 2021
Grant date	Oct 18, 2022
Priority date	—
Expiry date	May 17, 2041

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/082
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

An identity provider (“IdP”) system maintains a framework of authentication methods and security targets that enables flexible authentication policy authoring and analysis of authentication performed by users of an organization. The IdP system generates authentication method profiles that include authentication factors and attributes, which may be further classified as required or optional. The IdP system also generates security target profiles that indicate security requirements needed to satisfy the corresponding security targets. The IdP system uses the generated profiles to determine relationships between authentication methods and security targets (e.g., a list of authentication methods that satisfy a given security target). Using these relationships, the IdP system may enable users to author policies and analyze how users' authentication behaviors comply with security targets.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.