Touch-share credential management on multiple devices

US 10,667,134 B2
Filed: 11/21/2016
Issued: 05/26/2020
Est. Priority Date: 11/21/2016
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for credential management, the method comprising:

receiving, by a first processing device, a first biometric information, wherein the first processing device has stored one or more credentials,wherein the first biometric information comprises a first finger engaged with a first fingerprint scanner associated with the first processing device, wherein a first fingerprint associated with the first finger is read by the fingerprint scanner, andwherein the finger print is associated with a first user;

responsive to obtaining the first biometric information, determining whether the first biometric information is valid;

creating, by the first processing device, an ad-hoc network based upon the determination that the first biometric information is valid, wherein the ad-hoc network is active while the first finger is engaged with the first fingerprint scanner associated with the first processing device;

receiving a second biometric information from a second processing device through the ad-hoc network, wherein the second processing device transmits the second biometric information over the ad-hoc network to the first processing device based on a determination that the second biometric information is foreign to the second processing device, andwherein the second biometric information comprises a second finger engaged with a second fingerprint scanner associated with the second processing device, wherein a second fingerprint associated with the second finger is read by the second fingerprint scanner, andwherein the second fingerprint is associated with the first user;

analyzing the second biometric information to determine whether the second biometric information is valid;

transmitting, by the first processing device over the ad-hoc network, a credential from the one or more credentials to the second processing device based on determining that the second biometric information is valid and based on a determination that the second finger is engaged with the second fingerprint scanner while the first finger is engaged with the first fingerprint scanner; and

transmitting a denial to the second processing device through the ad-hoc network based upon the second biometric information being invalid.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments include method, systems and computer program products for credential management. Aspects include obtaining a first biometric information by a first processing device, wherein the first processing device has stored one or more credentials. Then, responsive to obtaining the first biometric information, the method determines whether the first biometric information is valid. The method then creates, via the first processing device, an ad-hoc network based upon the determination that the first biometric information is valid. The method, then receives a second biometric information from a second processing device through the ad-hoc network. And, then the method analyzes the second biometric information to determine whether the second biometric information is valid.

Citations

12 Claims

1. A computer-implemented method for credential management, the method comprising:
- receiving, by a first processing device, a first biometric information, wherein the first processing device has stored one or more credentials,wherein the first biometric information comprises a first finger engaged with a first fingerprint scanner associated with the first processing device, wherein a first fingerprint associated with the first finger is read by the fingerprint scanner, andwherein the finger print is associated with a first user;
  
  responsive to obtaining the first biometric information, determining whether the first biometric information is valid;
  
  creating, by the first processing device, an ad-hoc network based upon the determination that the first biometric information is valid, wherein the ad-hoc network is active while the first finger is engaged with the first fingerprint scanner associated with the first processing device;
  
  receiving a second biometric information from a second processing device through the ad-hoc network, wherein the second processing device transmits the second biometric information over the ad-hoc network to the first processing device based on a determination that the second biometric information is foreign to the second processing device, andwherein the second biometric information comprises a second finger engaged with a second fingerprint scanner associated with the second processing device, wherein a second fingerprint associated with the second finger is read by the second fingerprint scanner, andwherein the second fingerprint is associated with the first user;
  
  analyzing the second biometric information to determine whether the second biometric information is valid;
  
  transmitting, by the first processing device over the ad-hoc network, a credential from the one or more credentials to the second processing device based on determining that the second biometric information is valid and based on a determination that the second finger is engaged with the second fingerprint scanner while the first finger is engaged with the first fingerprint scanner; and
  
  transmitting a denial to the second processing device through the ad-hoc network based upon the second biometric information being invalid.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the second biometric information is obtained by the second processing device from a user of the first processing device.
  - 3. The method of claim 1 further comprising:
    - determining a location of the first processing device; and
      
      transmitting a credential from the one or more credentials to the second processing device through the ad-hoc network based upon the location of the first processing device and based upon the second biometric information being valid.
  - 4. The method of claim 1 further comprising:
    - accessing a wireless network by the second processing device by utilizing the credential.
  - 5. The method of claim 4, wherein the credential comprises an access level for the wireless network.
  - 6. The method of claim 5, wherein the access level comprises at least one of a full access and a partial access.

7. A computer system for credential management, the computer system comprising:
- a first processing device configured to;
  
  obtain a first biometric information, wherein the first processing device has stored one or more credentials,wherein the first biometric information comprises a first finger engaged with a first fingerprint scanner associated with the first processing device, wherein a fingerprint associated with the first finger is read by the first fingerprint scanner, andwherein the finger print is associated with a first user;
  
  responsive to obtaining the first biometric information, determine whether the first biometric information is valid;
  
  create an ad-hoc network based upon the determination that the first biometric information is valid, wherein the ad-hoc network is active while the first finger is engaged with the first fingerprint scanner associated with the first processing device;
  
  receive a second biometric information from a second processing device through the ad-hoc network, wherein the second processing device transmits the second biometric information over the ad-hoc network to the first processing device based on a determination that the second biometric information is foreign to the second processing device, andwherein the second biometric information comprises a second finger engaged with a second fingerprint scanner associated with the second processing device, wherein a second fingerprint associated with the second finger is read by the second fingerprint scanner, andwherein the second fingerprint is associated with the first user;
  
  analyze the second biometric information to determine whether the second biometric information is valid;
  
  transmit, over the ad-hoc network, a credential from the one or more credentials to the second processing device based on determining that the second biometric information is valid and based on a determination that the second finger is engaged with the second fingerprint scanner while the first finger is engaged with the first fingerprint scanner; and
  
  transmit a denial to the second processing device through the ad-hoc network based upon the second biometric information being invalid.
- View Dependent Claims (8, 9)
- - 8. The computer system of claim 7, wherein the second biometric information is obtained by the second processing device from a user of the first processing device.
  - 9. The computer system of claim 7, wherein the first processing device is further configured to:
    - determine a location of the first processing device;
      
      transmit a credential from the one or more credentials to the second processing device through the ad-hoc network based upon the location of the first processing device and based upon the second biometric information being valid.

10. A computer program product for credential management, the computer program product comprising a non-transitory computer readable storage medium having program instructions embodied therewith, the program instructions executable by a processor to cause the processor to perform:
- obtaining, by a first processing device, a first biometric information, wherein the first processing device has stored one or more credentials,wherein the first biometric information comprises a first finger engaged with a first fingerprint scanner associated with the first processing device, wherein a first fingerprint associated with the first finger is read by the fingerprint scanner, andwherein the second fingerprint is associated with the first user;
  
  responsive to obtaining the first biometric information, determining whether the first biometric information is valid;
  
  creating, by the first processing device, an ad-hoc network based upon the determination that the first biometric information is valid, wherein the ad-hoc network is active while the first finger is engaged with the first fingerprint scanner associated with the first processing device;
  
  receiving a second biometric information from a second processing device through the ad-hoc network, wherein the second processing device transmits the second biometric information over the ad-hoc network to the first processing device based on a determination that the second biometric information is foreign to the second processing device, andwherein the second biometric information comprises a second finger engaged with a second fingerprint scanner associated with the second processing device, wherein a second fingerprint associated with the second finger is read by the second fingerprint scanner, andwherein the second fingerprint is associated with the first user;
  
  analyzing the second biometric information to determine whether the second biometric information is valid;
  
  transmitting, by the first processing device over the ad-hoc network, a credential from the one or more credentials to the second processing device based on determining that the second biometric information is valid and based on a determination that the second finger is engaged with the second fingerprint scanner while the first finger is engaged with the first fingerprint scanner; and
  
  transmitting a denial to the second processing device through the ad-hoc network based upon the second biometric information being invalid.
- View Dependent Claims (11, 12)
- - 11. The computer program product of claim 10, wherein the second biometric information is obtained by the second processing device from a user of the first processing device.
  - 12. The computer program product of claim 10 wherein the program instructions executable by the processor cause the processor to further perform:
    - determining a location of the first processing device;
      
      transmitting a credential from the one or more credentials to the second processing device through the ad-hoc network based upon the location of the first processing device and based upon the second biometric information being valid.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Anglin, Debbie A., Gu, Yu, Liu, Su
Primary Examiner(s)
Pham, Luu T
Assistant Examiner(s)
Malinowski, Walter J

Application Number

US15/356,707
Publication Number

US 20180145956A1
Time in Patent Office

1,282 Days
Field of Search

726 4, 726 7, 726 19, 713168
US Class Current
CPC Class Codes

H04L 63/0861   using biometrical features,...

H04L 63/102   Entity profiles

H04L 63/105   Multiple levels of security

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 84/18   Self-organising networks, e...

Touch-share credential management on multiple devices

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Touch-share credential management on multiple devices

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links