Identity risk score generation and implementation

摘要

Embodiments are directed to providing an identity risk score as part of an authentication assertion, applying operating heuristics to determine an operating application's validity and to providing identity risk scores to requesting third parties. In one scenario, an authentication server receives from a cloud service portal various user credentials from a user. The user credentials identify a user to the authentication server. The authentication server verifies the user's identity using the received credentials and generates an identity risk score based on one or more identity factors. The identity factors indicate a likelihood that the user is a valid user. The authentication server encapsulates the generated identity risk score in an authentication assertion and sends the authentication assertion that includes the generated identity risk score to the cloud service portal.

主权项

1. A computer system comprising the following:
one or more processors; memory; and one or more computer-readable storage media having stored thereon computer-executable instructions that are executable by the one or more processors to cause the computer system to create and utilize a risk score by causing the computer system to:
access one or more application operation heuristics including a generated identity risk score that is associated with a cloud service user and that is dynamically updated based on one or more detected identity factors that indicate a likelihood that the user is a valid user;apply the application operation heuristics to an application initiated by the cloud service user, wherein the application determines whether the application is being used fraudulently or legitimately by the cloud service user, and wherein the application uses the identity risk score to determine a level of care the application will use to monitor subsequent actions performed by the cloud service user; andprovide a relative service level to the cloud service user based on the identity risk score that is dynamically updated, wherein the relative service level provided to the cloud service user is distinct from the level of care that the application uses to monitor the subsequent actions performed by the cloud service user, wherein the relative service level includes processing time, and wherein providing the relative service level includes:
dynamically reducing the service level for the cloud service user when the identity risk score of the cloud service user is dynamically updated to be above a threshold, anddynamically increasing the service level for the cloud service user when the identity risk score is dynamically updated to be below the threshold.