Abstract: The authentication of a user across multiple devices includes the generation of authentication related data during an authentication process of a first device. The authentication process relating to a user's use of a second device is conducted in dependence on the authentication data generated during the authentication process of the first device. The authentication data may include the authentication readings that have been authenticated by the first device, a trust in the user, a location of the user, a proximity of the user to the device in use and a network device, and a time elapsed since the authentication process occurred on the first device. Beneficially, basing the authentication of a second device on the authentication process of a first device allows a trust in the user to be transferred.

Abstract: A computer implemented method for authenticating a user, the method including receiving an authentication request from a first computer system, the authentication request including an indication of an identity of the user to be authenticated; receiving one or more authentication factors for verifying the identity of the user, the one or more authentication factors including at least one authentication factor obtained from a second computer system associated with the user having the indicated identity; receiving an auxiliary authentication factor, the auxiliary authentication factor comprising data for verifying that the second computer system is currently in the possession of the user having the indicated identity; and verifying the identity of the user based on the one or more authentication factors and the auxiliary authentication factor.

Abstract: A computer implemented method of controlling access by a requesting user to a restricted resource in an extended reality environment, the method comprising: permitting access, by the requesting user, to the restricted resource; monitoring characteristics of the requesting user during use of the restricted resource, the characteristics including one or more of biometric and behavioural information for the user accessing the resource; accessing a profile data store containing a plurality of profiles of users having accessed the restricted resource, each profile including at least one of biometric and behavioural information for a respective user accessing the resource; responsive to a determination that the characteristics of the requesting user corresponds to at least one profile, inhibiting access, by the requesting user, to the restricted resource.

Abstract: The present disclosure relates to improving ways of making decisions made by, or with the assistance of, computing systems. One aspect relates to a computer-implemented continuous control method, the method comprising: obtaining a policy decision according to an application of a policy to an inference; the inference being of an authorised user's state of mind over a time interval, determined according to a plurality of biometric readings obtained passively from the user over the time interval for continuous authentication of the user; the user's identity having been continuously authenticated according to the plurality of biometric readings; and causing one or more actions in accordance with the policy decision.

Abstract: A computer implemented method to protect data input to a user input device from detection, the device including an artificial haptic feedback mechanism arranged to generate an occurrence of haptic feedback for sensing by a user of the device in response to each input gesture on the device by the user, wherein at least a subset of each occurrence of haptic feedback is adjusted with respect to a previous occurrence of haptic feedback by one or more of: a timing of the haptic feedback with respect to a time of occurrence of a corresponding input gesture; an adjustment to a duration of haptic feedback relative to a duration of the previous occurrence of haptic feedback; and a generation of one or more addition occurrences of haptic feedback.

Abstract: The present disclosure relates to the security of user devices connected to local networks, such as devices comprised in the Internet of Things' (IoT). An aspect relates to a computer-implemented method of securing functionality of a user device connected to a local network provided at a premises, the method comprising: determining a premises trust score indicative of a likelihood that an authorised user of the user device is present at the premises, the determining being in dependence on: (i) data received from one or more biometric-capable devices, distinct from the user device, connected to the local network, that data being indicative of continuous biometric authentication of a current user of the respective biometric-capable device; or (ii) a lack thereof; then causing the user device to respond to a request for functionality made through a local user interface it comprises in a manner which depends on the premises trust score.