DELAYED USER AUTHENTICATION

Abstract

Techniques are disclosed relating to a delayed presentation of authentication challenge for users, such as in the context of a chat session. In various embodiments, a server system receives an indication of a request for service initiated by a user in a chat session within an application executed by a client device. The request for service involves an authentication of the user that is dependent on the authentication being successfully completed within a particular time period after the authentication is initiated. The server system delays the initiation of authentication for the request for service until a readiness condition is satisfied. The readiness condition includes the server system being available to process the request for service, as well as subsequently detecting engagement with the user relating to the request for service. In response to the readiness condition being satisfied, the server system initiates the authentication of the user.

Description

Claims

1. (canceled)

2. A system, comprising: a non-transitory memory; andone or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising: receiving an indication of a request for service that has been initiated by a user in a chat session within an application executed by a client device, wherein the request for service involves an authentication that is to be completed, once initiated, within a particular period of time; anddetecting engagement of the user with the application; andinitiating the authentication of the user, within the particular period of time, based at least in part on the engagement of the user.

3. The system of claim 2, wherein the operations further comprise: determining a readiness condition for the request for service.

4. The system of claim 3, wherein the authentication is initiated based at least in part on the readiness condition and wherein the engagement of the user is detected in response to the determining of the readiness condition.

5. The system of claim 3, wherein the readiness condition is determined as a representative being available for the request for service.

6. The system of claim 2, wherein the operations further comprise: upon receiving the request for service, storing an initial determination regarding an authentication type for the user; andupon subsequently detecting engagement of the user, making a final determination of the authentication type for the user.

7. The system of claim 6, wherein the final determination is determined by changing the initial determination based on an amount of time that has passed between the initial and final determinations.

8. The system of claim 6, wherein the final determination is determined by changing the initial determination based on one or more security events relating to the user that occurred between the initial and final determinations.

9. A method, comprising: receiving an indication of a request for service that has been initiated by a user in a chat session within an application executed by a client device, wherein the request for service involves an authentication that is to be completed, once initiated, within a particular period of time; andinitiating the authentication of the user in response to: determining that a chat representative is available to process the request for service; andafter the determining, detecting engagement with the user, wherein the engagement relates to the request for service.

10. The method of claim 9, further comprising: upon the request for service being provided to a chat representative and the request for service being authorized by the chat representative, pushing a notification to the client device; andreceiving a reply to the notification, wherein receiving the reply constitutes detecting engagement with the user.

11. The method of claim 9, further comprising: upon receiving the request for service, storing an initial determination regarding an authentication type for the user for the chat session; andupon subsequently detecting engagement with the user, making a final determination of the authentication type for the user for the chat session.

12. The method of claim 11, wherein final determination is determined by changing the initial determination based on an amount of time that has passed between the initial and final determinations.

13. The method of claim 11, wherein the final determination is determined by changing the initial determination based on one or more security events relating to the user that occurred between the initial and final determinations.

14. The method of claim 9, wherein the authentication of the user includes determining an authentication type for the user, wherein the authentication type is determined based on an amount of time between receiving the indication of the request for service and detecting engagement with the user.

15. The method of claim 14, wherein the authentication type is determined based on one or more security events relating to the user that occurred between receiving the indication of the request for service and detecting engagement with the user.

16. The method of claim 9, wherein detecting engagement with the user includes receiving information indicating that the application is running as a foreground activity on the client device.

17. A non-transitory machine-readable medium having instructions stored thereon that are executed by a computer system to perform operations comprising: causing display, on a user interface of an application, of an interface element to initiate a chat session through which a user can send a message to a server system requesting performance of a particular service;receiving, via the user interface of the application, a request to initiate the chat session, the request to initiate the chat session associated with an authentication that is to be completed, once initiated, within a particular time period;in response to the chat session being available, determining a user engagement with the application;in response to the user engagement, initiating the authentication of the user; andin response to the authentication of the user, initiating the chat session.

18. The non-transitory machine-readable medium of claim 17, wherein the determining the user engagement with the application further comprise: sending, by the application, a reactivation indication to the server system after the application transitions to a foreground activity on a client computer system.

19. The non-transitory machine-readable medium of claim 18, wherein the operations further comprise: receiving, by the application, a push notification from the server system indicating that a chat representative has authorized the particular service, the push notification indicating the chat session is available;causing display, on the user interface of the application, of a message indicating that the chat representative has authorized the particular service;receiving, via the user interface of the application, user input indicating a continuation of the particular service; andsending, by the application, the reactivation indication to the server system.

20. The non-transitory machine-readable medium of claim 18, wherein the operations further comprise: receiving, by the application, a notification from the server system indicating that a chat representative has authorized the particular service; andautomatically sending, by the application, the reactivation indication to the server system when the application is running as a foreground activity on the client computer system.

21. The non-transitory machine-readable medium of claim 18, wherein the reactivation indication is sent as a periodic heartbeat signal when the application is running as a foreground activity on the client computer system.