Call Authentication Service Systems And Methods

Patent No. US11349987 (titled "Call Authentication Service Systems And Methods") was filed by Silicon Valley Bank on Jun 21, 2019.

’987 is related to the field of call authentication, specifically addressing the problem of spoofed or malicious calls targeting enterprise call centers. Traditional authentication methods, such as Knowledge-Based Authentication (KBA), are time-consuming, frustrating for customers, and ineffective against fraud. Newer approaches focus on authenticating the calling number or device, but existing solutions often lack flexibility and cost-effectiveness, especially in the face of increasingly sophisticated spoofing techniques.

The underlying idea behind ’987 is to leverage a hybrid architecture combining a customer-premise component with a cloud-based Call Authentication Service (CAS) . The premise component monitors call traffic and provides access to raw call signaling data, while the CAS uses a decision engine to orchestrate various authentication plugins. This allows for a more flexible and cost-effective authentication process, adapting to different risk levels and business needs.

The claims of ’987 focus on a method and system for authenticating calls. The system includes a premise component with a SIP/RTP probe and a mediation server, and a cloud-based CAS. The CAS uses a REST API, Quality Authentication Service (QAS) parameters, and a decision engine with authentication plugins. The premise component transmits call information to the CAS, which then determines the necessary plugins based on the QAS parameters, generates an authentication result, and transmits it back to the premise component for use by an IVR system or agent.

In practice, the premise component acts as a local filter and orchestrator, deciding when and how to query the cloud-based CAS. It can access customer-specific data and implement call control actions based on the authentication result. The CAS, residing in the cloud, can quickly integrate new authentication plugins and adapt to evolving threats. The decision engine within the CAS dynamically selects and executes the most appropriate plugins based on factors like cost, speed, and desired level of authentication.

This approach differentiates itself from prior solutions by offering a flexible and scalable architecture that can adapt to different authentication needs and risk levels. Unlike purely premise-based systems, the cloud-based CAS can be easily updated with new authentication techniques, such as STIR/SHAKEN, without requiring changes to the customer's premise equipment. By orchestrating various authentication plugins and leveraging a decision engine, the system aims to provide a more cost-effective and accurate authentication solution compared to traditional methods or standalone approaches.

How does this patent fit in bigger picture?

Technical landscape at the time

In the late 2010s when ’987 was filed, call authentication was typically implemented using knowledge-based authentication (KBA) methods, where systems commonly relied on static information such as PIN numbers or security questions. At that time, hardware or software constraints made real-time analysis of call signaling data and integration of diverse authentication techniques non-trivial, and enterprises often lacked the infrastructure to rapidly deploy new authentication plugins or adapt to evolving spoofing techniques.

Novelty and Inventive Step

The examiner approved the application because the prior art did not teach or fairly suggest providing a Call Authentication Service (CAS) that includes a Representational State Transfer (REST) Application Programming Interface (API), a plurality of Quality Authentication Service (QAS) parameters, and a decision engine comprising a plurality of authentication plug-ins. The examiner stated that the prior art did not teach receiving a call from a calling device at the premise component, transmitting information about the call to the CAS over the REST API, submitting at least one query to the CAS by the premise component, determining which authentication plugins are necessary based on QAS parameters, generating an authentication result by the CAS, transmitting the result to the premise component, and transmitting the result to an Interactive Voice Response (IVR) system or an agent. The dependent claims were allowable for the same reasons as the independent claims.

Claims

This patent contains 12 claims, with claims 1 and 7 being independent. Independent claim 1 focuses on a method for authenticating calls, while independent claim 7 focuses on a system for authenticating calls. The dependent claims generally elaborate on and add detail to the elements and steps described in the independent claims.

Key Claim Terms New

Definitions of key terms used in the patent claims.

Term (Source)	Support for Specification	Interpretation
Call Authentication Service (CAS) (Claim 1, Claim 7)	“This call authentication solution includes a premise component and a Call Authentication Service (CAS). The CAS component is a cloud-resident service that is queried in real time for each call of interest, usually for all calls, to return a score for each call, from 0 (spoofed/malicious) to 100 (clearly authentic). CAS provides one interface to query to simplify integration through customer security systems.”	A cloud-resident service that is queried in real time for each call of interest to return a score for each call.
Mediation server (Claim 1, Claim 7)	“The premise component includes a lightweight, stable, and highly configurable Customer-Premise Equipment (CPE) solution. This component provides access to raw call signaling and media data, access to customer data such as ANI lists that may not be practical to move to the cloud, access to other customer-specific data sources, ability to query the cloud service based on business unit, risk, and other values, and finally, to implement call control or otherwise transmit the authentication result to an Interactive Voice Response (IVR) system or agent.”	A component within the premise component that facilitates communication and data exchange.
Quality Authentication Service (QAS) parameters (Claim 1, Claim 7)	“CAS implements a wide variety of distinct techniques (called plugins) to authenticate the call. CAS orchestrates the use of different plugins, as per customer requirements, to provide the cheapest, fastest, most cost-effective, and/or best authentication score. CAS is not locked to a particular set of proprietary techniques; it uses a combination of proprietary, third-party, and standards-based approaches and selects them based on customer requirements.”	Parameters used by the decision engine to determine which authentication plugins are necessary.
Representational State Transfer (REST) Application Programming Interface (API) (Claim 1, Claim 7)	“The CAS component is a cloud-resident service that is queried in real time for each call of interest, usually for all calls, to return a score for each call, from 0 (spoofed/malicious) to 100 (clearly authentic). CAS provides one interface to query to simplify integration through customer security systems.”	An interface used by the premise component to communicate with the Call Authentication Service.
Session Initiation Protocol (SIP)/Real-Time Protocol (RTP) probe (Claim 1, Claim 7)	“The premise component includes a lightweight, stable, and highly configurable Customer-Premise Equipment (CPE) solution. This component provides access to raw call signaling and media data, access to customer data such as ANI lists that may not be practical to move to the cloud, access to other customer-specific data sources, ability to query the cloud service based on business unit, risk, and other values, and finally, to implement call control or otherwise transmit the authentication result to an Interactive Voice Response (IVR) system or agent.”	A component within the premise component that handles call signaling and media data.

Patent Family

File Wrapper

The dossier documents provide a comprehensive record of the patent's prosecution history - including filings, correspondence, and decisions made by patent offices - and are crucial for understanding the patent's legal journey and any challenges it may have faced during examination.

Date
Description

Get instant alerts for new documents

May 11, 2022
Issue Notification
Apr 26, 2022
Issue Fee Payment (PTO-85B)
Apr 26, 2022
Fee Worksheet (SB06)
Apr 26, 2022
Electronic Filing System Acknowledgment Receipt
Apr 6, 2022
Response to Amendment under Rule 312
Apr 6, 2022
Amendment After Final or under 37CFR 1.312, initialed by the examiner.
Mar 30, 2022
Electronic Filing System Acknowledgment Receipt
Mar 30, 2022
Amendment after Notice of Allowance (Rule 312)
Mar 30, 2022
Claims
Mar 30, 2022
Applicant Arguments/Remarks Made in an Amendment
Jan 28, 2022
Notice of Allowance and Fees Due (PTOL-85)
Jan 28, 2022
Index of Claims
Jan 28, 2022
Issue Information including classification, examiner, name, claim, renumbering, etc.
Jan 28, 2022
Search information including classification, databases and other search related notes
Jan 28, 2022
Examiner's search strategy and results
Jan 28, 2022
List of References cited by applicant and considered by examiner
Jan 7, 2022
Request for Continued Examination (RCE)
Jan 7, 2022
Transmittal Letter
Jan 7, 2022
Information Disclosure Statement (IDS) Form (SB08)
Jan 7, 2022
Fee Worksheet (SB06)
Jan 7, 2022
Electronic Filing System Acknowledgment Receipt
Dec 16, 2021
Notice of Allowance and Fees Due (PTOL-85)
Dec 16, 2021
List of references cited by examiner
Dec 16, 2021
Search information including classification, databases and other search related notes
Dec 16, 2021
Issue Information including classification, examiner, name, claim, renumbering, etc.
Dec 16, 2021
Index of Claims
Dec 16, 2021
Examiner's search strategy and results
Dec 16, 2021
Bibliographic Data Sheet
Nov 22, 2021
Examiner's search strategy and results
Nov 22, 2021
Examiner's search strategy and results
Jun 24, 2021
Notice of Publication
Mar 17, 2021
Notice of Designated Office (DO) / Elected Office (EO) Acceptance Mailed
Mar 16, 2021
Claims Worksheet (PTO-2022)
Mar 16, 2021
Filing Receipt
Mar 16, 2021
Fee Worksheet (SB06)
Dec 16, 2020
Claims
Dec 16, 2020
Abstract
Dec 16, 2020
PCT/RO/101 - Request form for new International Application - Conventional
Dec 16, 2020
PCT/RO/101 - Request form for new International Application - Conventional
Dec 15, 2020
Specification
Dec 15, 2020
Claims
Dec 15, 2020
Abstract
Dec 15, 2020
Drawings-other than black and white line drawings
Dec 15, 2020
Application Data Sheet
Dec 15, 2020
Oath or Declaration filed
Dec 15, 2020
Oath or Declaration filed
Dec 15, 2020
Fee Worksheet (SB06)
Dec 15, 2020
Electronic Filing System Acknowledgment Receipt
Dec 15, 2020
Placeholder sheet indicating presence of supplemental content in Supplemental Complex Repository for Examiners(SCORE)
Dec 15, 2020
Drawings-only black and white line drawings
Dec 15, 2020
Specification
Dec 15, 2020
Certified Copy of Foreign Priority Application
Dec 15, 2020
Drawings-black and white line and/or other drawings

US11349987

SILICON VALLEY BANK

Application Number: US17252406
Filing Date: Jun 21, 2019
Status: Granted
Expiry Date: Jun 21, 2039
External Links: Slate, USPTO, Google Patents

IP Verse