Patent · US Active

Preventing phishing attacks based on reputation of user locations

US9576119B2 · kind B2 · utility

23Cited by

3References

22Claims

0Family size

Assignee

FACEBOOK, INC. · US

Inventors

Ryan McGeehan · San Francisco, US
Lev Popov · Palo Alto, US
Christopher William Palow · Palo Alto, US
Robert J. Read · Burlingame, US
Pedram Keyani · Redwood City, US

Key dates

Filing date	Dec 23, 2009
Grant date	Feb 21, 2017
Priority date	—
Expiry date	Feb 8, 2032

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2111
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

User sessions are authenticated based on locations associated with a user account used for sending a request for creating a session. Examples of locations of a source of a request include a geographical location, a network address, or a machine cookie associated with a device sending the request. Locations of the request are compared with stored safe locations associated with the user account and a suspiciousness index is determined for the session. The level of authentication required for the session is determined based on the suspiciousness index. Locations are associated with a reputation based on past history of sessions originating from the locations. A location associated with a history of creating suspicious session is considered an unsafe location. Reputation of the location originating the session is used to determine the level of authentication required for the session.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.