Patent · US Active

Passive security enforcement

US8898758B2 · kind B2 · utility

9Cited by

6References

20Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

David Steeves · Seattle, US
Kim Cameron · Bellevue, US
Todd L. Carpenter · Monroe, US
David Foster · Swindon, GB
Quentin S. Miller · Sammamish, US

Key dates

Filing date	Nov 22, 2013
Grant date	Nov 25, 2014
Priority date	—
Expiry date	Nov 22, 2033

Classification

Technology area (CPC H)Electricity
CPC primaryH04W12/40
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Technology is described for enabling passive enforcement of security at computing systems. A component of a computing system can passively authenticate or authorize a user based on observations of the user's interactions with the computing system. The technology may increase or decrease an authentication or authorization level based on the observations. The level can indicate what level of access the user should be granted. When the user or a component of the computing device initiates a request, an application or service can determine whether the level is sufficient to satisfy the request. If the level is insufficient, the application or service can prompt the user for credentials so that the user is actively authenticated. The technology may enable computing systems to “trust” authentication so that two proximate devices can share authentication levels.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.