Abstract: Techniques for generating dynamic challenge questions for use in an authentication process are provided herein. An example computer-implemented method can include outputting a first prompt to a user via a user device interface, wherein the first prompt comprises a first set of information-gathering questions; generating dynamic challenge questions for use in an authentication process, wherein the dynamic challenge questions are generated based on user responses to the first set of information-gathering questions; generating a second prompt in connection with an authentication request, wherein the second prompt is based at least in part on at least one of the dynamic challenge questions; processing a user response to the at least one dynamic challenge question, wherein said processing comprises determining a likelihood that the user response matches an automatically estimated response; and resolving the authentication request based on the processing.

Abstract: Techniques are disclosed for use in authentication. In one embodiment, a method is disclosed. The method comprises receiving an electronic request to access a computerized resource. The electronic request comprises a user identifier identifying a user associated with the electronic request and a first access token. The method comprises retrieving, in response to receiving the electronic request, a time-varying token seed associated with the generation of access tokens during a time period. The time-varying token seed is different if retrieved after the expiration of the time period. The method comprises generating a second access token based on the time-varying token seed and the user identifier identifying the user. The method comprises comparing the first and second access tokens to determine a similarity between the respective access tokens. The method comprises determining whether to allow the user access to the computerized resource based on the similarity between the access tokens.

Abstract: A technique controls access to a resource. The technique includes deriving, by processing circuitry, a password based on a phrase/thought provided by a user. The technique further includes confirming with the user that the password is to control access to the resource. The technique further includes, after confirming with the user that the password is to control access to the resource, imposing a requirement that the user provide the password before obtaining access to the resource. Such a password may be formed by concatenating multiple words (e.g., four words) that may be unrelated to each other. Such a password may be relatively strong since the resulting concatenation would not be found in any dictionary, and since it would be an extremely difficult and time consuming endeavor to predict such a password by attempting to combine words from a dictionary to form the concatenations.

Abstract: Techniques are disclosed for verifying caller identification in voice communications. In one embodiment, there is disclosed a method comprising receiving a request to establish a voice call between communications devices. The request comprising encrypted information and an identifier identifying a caller associated with the request to establish the voice call. The method further comprises retrieving, in response to receiving the request, a decryption key from an authentication source by requesting from the authentication source the decryption key associated with the identifier. The method further comprises utilizing the decryption key to decrypt the encrypted information and produce decrypted information as well as comparing the decrypted information and the identifier to determine a similarity therebetween. The method further comprises providing, based on the comparison, an indication of whether or not the request is deemed associated with fraud.

Abstract: Improved techniques of performing authentication involve extracting metadata from posts made by legitimate users on a social networking website and generating authentication results based in part on the extracted metadata. For example, in response to an authentication request being made from a device of a legitimate user, an authentication server obtains metadata describing one or more posts made by the legitimate user on the social networking website. The authentication server may then input the metadata to a risk engine, along with information gathered from the user's device. The risk engine then generates a risk score that indicates a likelihood that the request is fraudulent, based at least in part of whether the metadata obtained from the social networking website is consistent with the information obtained from the user's device.