Abstract: Techniques are provided for preventing suspicious computer operations using a multi-channel protocol. An exemplary method includes detecting an operation comprising suspicious activity on a first device of a user; in response to the detecting, providing a control signal to suspend the operation on the first device; providing a notification of the suspicious activity to an identity system, wherein the identity system (i) provides an approval request to a distinct second device of the user to verify whether the operation is an authorized operation, (ii) receives a reply from the second device comprising an indication of whether the operation is an authorized operation, and (iii) notifies the first device of whether the operation is an authorized operation; and providing a control signal to enable the operation to proceed on the first device responsive to the reply from the second device indicating that the operation was an authorized operation.

Abstract: A technique identifies risky transactions by mapping raw user location data to a particular cell in a fixed grid. Along these lines, when a user initiates a transaction with a service provider over a mobile device, the service provider collects raw location data such as a latitude and longitude for the user and transmits the location data to an adaptive authentication server. The adaptive authentication server then accesses a fixed set of geographical areas overlaid on a map of the Earth. The adaptive authentication server finds a particular geographical area which contains the latitude and longitude for the user. The adaptive authentication server also obtains information in connection with previous transactions in the particular geographical area using the identifier of the particular geographical area to obtain the information. Based on this information, the adaptive authentication server determines the riskiness of the particular geographical area.

Abstract: There is disclosed herein a technique for use in providing an assessment of authentication requests. In one embodiment, the technique comprises obtaining authentication data that relates to an attribute of authentication requests in a current time period and a previous time period. The technique also comprises applying a weight to the authentication data that relates to the attribute of authentication requests in the previous time period and performing a computation involving the weighted authentication data and the authentication data that relates to the attribute of authentication requests in the current time period. The computation producing a computational result. The technique still further comprises providing the computational result for use in processing future authentication requests.

Abstract: A technique is described that determines if a request for authentication is made on the mobile device belonging to the authorized user by examining non confidential memory parameters of the mobile device, for example a total free memory, or a number of stored phone numbers. The technique examines past authorized user values for the memory parameters and performs a statistical analysis and projects a current memory range for each of the parameters for the authorized user. The projection may include factors such as the amount of time elapsed since the mobile device was acquired, the normal variation over a day, a week, a month or a year, and cyclic variations such as many new applications during a specific month each year. The projection may also include baseline variations which may be provided by analysis of a large number of different people. If the device used for the authorization request has memory parameters different from the projected range of authorized user values, then authorization may be refused.