Financial account authentication
First Claim
1. A computer-implemented method, comprising:
- receiving, from a user device at a server computer system of a first entity, a request to include financial data describing a financial account in an interface of the server computer system, the financial account being associated with a financial institution that is a second entity different from the first entity;
identifying, by the server computer system, one or more metadata attributes associated with the financial account of the financial institution;
obtaining, by the server computer system, a public digital key associated with the financial institution;
providing, by the server computer system to the user device, data describing the one or more metadata attributes and the public digital key associated with the financial institution;
receiving, at the server computer system from the user device, respective values for the one or more metadata attributes, the corresponding values having been encrypted by the user device using the public digital key;
providing, by the server computer system to a computer system of the financial institution, the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution;
in response to providing the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution, receiving, by the server computer system from the computer system of the financial institution, an OAuth token for accessing financial data of the financial account associated with the financial institution, the OAuth token providing alternative credentials other than login credentials for the financial account;
storing, at the server computer system, the OAuth token to access and aggregate financial data describing the financial account associated with the financial institution;
accessing, by the server computer system, the computer system of the financial institution using the OAuth token to aggregate financial data describing the financial account associated with the financial institution;
determining, by the server computer system, that the public digital key associated with the financial institution has expired; and
in response to determining, by the server computer system, that the public digital key associated with the financial institution has expired, deleting, by the server computer system, the stored encrypted values for the one or more metadata attributes.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, systems, and apparatus, including computer programs encoded on computer storage media, for receiving, from a user device, a request to include financial data describing a financial account in an interface, the financial account being associated with a particular financial institution; identifying one or more metadata attributes for accessing the financial account associated with the particular financial institution; obtaining a public digital key associated with the financial institution; providing, to the user device, data describing the one or more metadata attributes and the public digital key associated with the financial institution; receiving, from the user device, respective values for the one or more metadata attributes, the corresponding values having been encrypted by the user device using the public digital key; and storing the encrypted values for the one or more metadata attributes for use in accessing and aggregating financial data describing the financial account.
74 Citations
15 Claims
-
1. A computer-implemented method, comprising:
-
receiving, from a user device at a server computer system of a first entity, a request to include financial data describing a financial account in an interface of the server computer system, the financial account being associated with a financial institution that is a second entity different from the first entity; identifying, by the server computer system, one or more metadata attributes associated with the financial account of the financial institution; obtaining, by the server computer system, a public digital key associated with the financial institution; providing, by the server computer system to the user device, data describing the one or more metadata attributes and the public digital key associated with the financial institution; receiving, at the server computer system from the user device, respective values for the one or more metadata attributes, the corresponding values having been encrypted by the user device using the public digital key; providing, by the server computer system to a computer system of the financial institution, the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution; in response to providing the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution, receiving, by the server computer system from the computer system of the financial institution, an OAuth token for accessing financial data of the financial account associated with the financial institution, the OAuth token providing alternative credentials other than login credentials for the financial account; storing, at the server computer system, the OAuth token to access and aggregate financial data describing the financial account associated with the financial institution; accessing, by the server computer system, the computer system of the financial institution using the OAuth token to aggregate financial data describing the financial account associated with the financial institution; determining, by the server computer system, that the public digital key associated with the financial institution has expired; and in response to determining, by the server computer system, that the public digital key associated with the financial institution has expired, deleting, by the server computer system, the stored encrypted values for the one or more metadata attributes. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A non-transitory computer storage medium encoded with a computer program, the program comprising instructions that when executed by data processing apparatus cause the data processing apparatus to perform operations comprising:
-
receiving, at a server computer system of a first entity from a user device, a request to include financial data describing a financial account in an interface, the financial account being associated with a financial institution that is a second entity different from the first entity; identifying, by the server computer system, one or more metadata attributes associated with the financial account of the financial institution; obtaining, by the server computer system, a public digital key associated with the financial institution; providing, by the server computer system to the user device, data describing the one or more metadata attributes and the public digital key associated with the financial institution; receiving, at the server computer system from the user device, respective values for the one or more metadata attributes, the corresponding values having been encrypted by the user device using the public digital key; providing, by the server computer system to a computer system of the financial institution, the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution; in response to providing the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution, receiving, by the server computer system from the computer system of the financial institution, an OAuth token for accessing financial data describing the financial account associated with the financial institution, the OAuth token providing alternative credentials other than login credentials for the financial account; storing, at the server computer system, the OAuth token to access and aggregate financial data describing the financial account associated with the financial institution; accessing, by the server computer system, the computer system of the financial institution using the OAuth token to aggregate financial data describing the financial account associated with the financial institution; determining, by the server computer system, that the public digital key associated with the financial institution has expired; and in response to determining, by the server computer system, that the public digital key associated with the financial institution has expired, deleting, by the server computer system, the stored encrypted values for the one or more metadata attributes. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A server computer system comprising one or more computers programmed to perform operations comprising:
-
receiving, at the server computer system of a first entity, from a user device, a request to include financial data describing a financial account in an interface, the financial account being associated with a financial institution that is a second entity different from the first entity; identifying, by the server computer system, one or more metadata attributes associated with the financial account of the financial institution; obtaining, by the server computer system, a public digital key associated with the financial institution; providing, by the server computer system to the user device, data describing the one or more metadata attributes and the public digital key associated with the financial institution; receiving, at the server computer system from the user device, respective values for the one or more metadata attributes, the corresponding values having been encrypted by the user device using the public digital key; providing, by the server computer system to a computer system of the financial institution, the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution; in response to providing the encrypted values for the one or more metadata attributes to one or more login webpages associated with the financial institution, receiving, by the server computer system from the computer system of the financial institution, an OAuth token for accessing financial data of the financial account associated with the financial institution, the OAuth token providing alternative credentials other than login credentials for the financial account; storing, at the server computer system, the OAuth token to access and aggregate financial data describing the financial account associated with the financial institution; accessing, by the server computer system, the computer system of the financial institution using the OAuth token to aggregate financial data describing the financial account associated with the financial institution; determining, by the server computer system, that the public digital key associated with the financial institution has expired; and in response to determining, by the server computer system, that the public digital key associated with the financial institution has expired, deleting, by the server computer system, the stored encrypted values for the one or more metadata attributes. - View Dependent Claims (12, 13, 14, 15)
-
Specification