Managing security credentials
First Claim
Patent Images
1. A system, comprising:
- a computing device; and
a first application executing on the at least one computing device, wherein, when executed, the first application causes the computing device to at least;
transmit a plurality of existing security credentials associated with a plurality of network sites to a remote computing device, the plurality of existing security credentials being associated with a particular user account, and the plurality of existing security credentials being managed and stored on the remote computing device via a second application;
obtain network content associated with a particular network site in response to a request from a user;
obtain a configuration file sent by a third computing device, the configuration file including a security credential specification of at least one of an account creation endpoint or an authentication endpoint associated with the particular network site, and the configuration file describing an interface of at least one of the account creation endpoint or the authentication endpoint associated with the particular network site;
determine that the particular network site requires authentication based at least in part on the configuration file;
transmit a master security credential and at least one answer to at least one question to the remote computing device to authenticate a connection with the second application being executed on the remote computing device, the authentication based at least in part on the master security credential, the at least one answer, and an authentication score associated with the at least one answer;
receive a particular security credential from the remote computing device in response to authenticating the connection; and
automatically establish access to the network content according to the particular security credential and the interface of the authentication endpoint.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are various embodiments for managing security credentials. In one embodiment, network content for a network site is obtained in response to a user request. A connection with a remote computing device that stores and manages security credentials for accessing network sites is authenticated using a master security credential and answers to knowledge-based questions. A security credential associated with the network site is provided to the client from the remote computing device based at least in part on the answers. Access to the network site is authenticated according to the security credential.
-
Citations
20 Claims
-
1. A system, comprising:
-
a computing device; and a first application executing on the at least one computing device, wherein, when executed, the first application causes the computing device to at least; transmit a plurality of existing security credentials associated with a plurality of network sites to a remote computing device, the plurality of existing security credentials being associated with a particular user account, and the plurality of existing security credentials being managed and stored on the remote computing device via a second application; obtain network content associated with a particular network site in response to a request from a user; obtain a configuration file sent by a third computing device, the configuration file including a security credential specification of at least one of an account creation endpoint or an authentication endpoint associated with the particular network site, and the configuration file describing an interface of at least one of the account creation endpoint or the authentication endpoint associated with the particular network site; determine that the particular network site requires authentication based at least in part on the configuration file; transmit a master security credential and at least one answer to at least one question to the remote computing device to authenticate a connection with the second application being executed on the remote computing device, the authentication based at least in part on the master security credential, the at least one answer, and an authentication score associated with the at least one answer; receive a particular security credential from the remote computing device in response to authenticating the connection; and automatically establish access to the network content according to the particular security credential and the interface of the authentication endpoint. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method, comprising:
-
obtaining, via a first computing device, network content associated with a network site in response to a user request; obtaining, via the first computing device, a configuration file sent by a third computing device, the configuration file including a security credential specification of at least one of an account creation endpoint or an authentication endpoint associated with the network site, and the configuration file describing an interface of at least one of the account creation endpoint or the authentication endpoint associated with the network site; determining, via the first computing device, that the network site requires authentication based at least in part on the configuration file; authenticating, via the first computing device, a connection with an application executing on a second computing device with respect to a user account based at least in part on a master security credential associated with the user account, at least one answer to at least one question, and an authentication score associated with the at least one answer, the application being configured to store and manage a plurality of security credentials associated with the user account; and automatically establishing access to the network site according to a particular security credential received from the second computing device in response to authenticating the connection and according to the interface of the network site. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory computer-readable medium embodying a program executable in a first computing device, wherein, when executed, the program causes the first computing device to at least:
-
receive a request for network content associated with a network site in response to a user request; obtain the network content from the network site; obtain a configuration file sent by a third computing device, the configuration file including a security credential specification of an authentication endpoint associated with the network site, and the configuration file describing an interface of the authentication endpoint associated with the network site; determine that the network site requires authentication based at least in part on the configuration file; authenticate a connection to a remote application executing on a second computing device based at least in part on a master security credential associated with a user account, at least one answer to at least one question received from the second computing device and provided by a user, and an authentication score associated with the at least one answer; receive a particular security credential from the second computing device in response to authenticating the connection, the particular security credential corresponding to the network site and being unique to the user account; and authenticate access to the network site for the user account using the particular security credential and the interface of the authentication endpoint. - View Dependent Claims (17, 18, 19, 20)
-
Specification