A security platform architecture is described herein. A user identity platform architecture which uses a multitude of biometric analytics to create an identity token unique to an individual human. This token is derived on biometric factors like human behaviors, motion analytics, human physical characteristics like facial patterns, voice recognition prints, usage of device patterns, user location actions and other human behaviors which can derive a token or be used as a dynamic password identifying the unique individual with high calculated confidence. Because of the dynamic nature and the many different factors, this method is extremely difficult to spoof or hack by malicious actors or malware software.

An electronic device includes at least one processor and at least one memory storing instructions executable by the at least one processor. The at least one processor operates to obtain a credential value string indicating a sequence of credential values entered by a user through a user interface as a part of a credential key. The at least one processor operates to obtain an input order string indicating an order in which individual ones of the sequence of credential values were separately entered by the user through the user interface as another part of the credential key. The at least one processor operates to validate the credential key based on the credential value string and based on the input order string.

An electronic device includes at least one processor and at least one memory storing instructions executable by the at least one processor. The at least one processor operates to obtain a credential value string indicating a sequence of credential values entered by a user through a user interface as a part of a credential key. The at least one processor operates to obtain an input order string indicating an order in which individual ones of the sequence of credential values were separately entered by the user through the user interface as another part of the credential key. The at least one processor operates to validate the credential key based on the credential value string and based on the input order string.

A system for leveraging a tokening system to authenticate a traveler while maintaining anonymity of the traveler is provided. The system may include a secure central server configured to store identification data associated with a plurality of users. The system may also include a mobile token application for providing a token identifier representing a user's identification data. The mobile token application may be activated by the central server on a mobile device of the user registered with the central server and stored in a secure storage on the mobile device of the user. The system may also include a travel service provider. The travel service provider may be configured to enable reserving a travel reservation file. The travel service provider may be enabled to retrieve a token identifier from the user's mobile device as representing the identification of the user and verify the token identifier with the central server.

A security platform architecture is described herein. The security platform architecture includes multiple layers and utilizes a combination of encryption and other security features to generate a secure environment.

Techniques are disclosed relating to a method that includes, in response to a request from a user to complete a secure transaction, determining, by a computer system, that a plurality of transaction options is available for completing the secure transaction. The method further includes generating, by the computer system, a plurality of authentication codes, each authentication code of the plurality corresponding to a respective one of the plurality of transaction options. Receiving a particular authentication code of the plurality of authentication codes from a computing device associated with the user causes a selection of a corresponding transaction option.

Disclosed herein is a technique for detecting potential phishing attacks by monitoring outbound web traffic from an endpoint, along with inbound electronic mail traffic addressed to a user of the endpoint. With this information, a search can be performed for possible sources in the web traffic of a request for a hyperlink located in the inbound mail traffic, and when no source is located, phishing remediation can be performed, including restrictions on access to the hyperlink at an endpoint operated by the user.

Disclosed herein is a technique for detecting potential phishing attacks by monitoring outbound web traffic from an endpoint, along with inbound electronic mail traffic addressed to a user of the endpoint. With this information, a search can be performed for possible sources in the web traffic of a request for a hyperlink located in the inbound mail traffic, and when no source is located, phishing remediation can be performed, including restrictions on access to the hyperlink at an endpoint operated by the user.

A system for granting access to an account at an access device includes a computer server having a hardware processor and a memory storing a software code. The hardware processor executes the software code to receive a login request from the access device through a first communications socket, open a second communications socket between the access device and the computer server, transmit a verification request message including a required call-to-action to a verification device through a third communications socket, and receive a verification response message verifying that the required call-to-action has been completed at the verification device. Upon receiving the verification response message, the software code sends an access token for accessing the account to the access device through the second communications socket, receives the access token from the access device, and grants the access device access to the account.

An example device includes a connection engine to establish a secure connection with a second device. The device includes a security engine to determine a shared security state for the first device and the second device based on a security state of the first device and a security state of the second device. The security engine is to detect a change in the security state of the first device should occur. The security engine is to change the shared security state at the first device. The security engine is to indicate to the second device the change in the shared security state at the first device.