| 发明名称 | Behavior based identity system | ||
| 摘要 | Disclosed are various embodiments for a behavior-based identity system that recognizes and/or authenticates users based at least in part on stored behavioral events which have been observed previously or have been preconfigured. Multiple behavioral events expressed by a client relative to multiple resources of a network site are observed. The behavioral events correspond to data that a user has elected to share, and the user may opt-in or opt-out of the behavior-based identity system. A comparison is performed between the observed behavioral events and multiple stored behavioral events associated with a user identity. An identity confidence level as to whether the user identity belongs to a user at the client is generated based at least in part on the comparison. | ||
| 申请公布号 | US9053307(B1) | 申请公布日期 | 2015.06.09 |
| 申请号 | US201213555724 | 申请日期 | 2012.07.23 |
| 申请人 | Amazon Technologies, Inc. | 发明人 | Johansson Jesper M.;Stathakopoulos George N. |
| 分类号 | H04L9/32;G06F21/30;G06F21/31 | 主分类号 | H04L9/32 |
| 代理机构 | Thomas | Horstemeyer, LLP | 代理人 | Thomas | Horstemeyer, LLP |
| 主权项 | 1. A non-transitory computer-readable medium embodying an identity management program executable in a computing device, comprising: code that stores, in a memory, a preconfigured sequence of behavioral events specified by an authenticated user in association with a user identity; code that, in response to receiving an assertion of the user identity from a client and receiving behavior verification data created by a server associated with a first network site, performs a comparison between a plurality of behavioral events and the preconfigured sequence of behavioral events associated with the user identity, the behavior verification data recording the plurality of behavioral events expressed by the client relative to a resource of the first network site, the plurality of behavioral events corresponding to at least one of: a client-side behavior relative to a rendered resource obtained from the first network site, a particular search query being executed in the first network site, a particular item being purchased in the first network site, or a particular resource being accessed; code that generates an identity confidence level as to whether the user identity belongs to a user at the client based at least in part on the comparison; and code that authenticates the user at the client to access a secured resource of a second network site in response to determining that the identity confidence level meets a threshold. | ||
| 地址 | Seattle WA US | ||