Managing an access account using personal area networks and credentials on a mobile device
First Claim
1. A system for use in managing access to a computing resource, comprising:
- (a) a mobile device that comprises;
a data store that is configured to receive and to store an end-user credential;
a personal area network (PAN) component that is configured to enable the mobile device to establish a PAN communication link with another computing device;
a remote access manager coupled to the data store and PAN component that is configured to perform actions, including;
if a PAN communication link is established with the other computing device, automatically providing the end-user credential to the other computing device;
if the mobile device is authenticated based, in part, on the end-user credential, enabling a login to a session with the other computing device; and
receiving information from the other computing device that is associated with the session; and
(b) the other computing device configured to operate as an access point and comprises;
a PAN component that is configured to, at least in part, detect a presence of the mobile device such that the PAN communication link is establishable;
a mobile device access manager component that is coupled to the PAN component and is configured to perform actions, including;
receiving the end-user credential from the mobile device;
if the mobile device is authenticated based, at least in part, on the received end-user credential, automatically creating an access account for use, in part, to establish the session for accessing the computing resource;
providing information associated with the session to the mobile device; and
if the session is terminated, securely cleansing the other computing device of data associated with the session.
1 Assignment
0 Petitions
Accused Products
Abstract
A system, apparatus, and method are directed towards automatically managing an access account at an access point using near field communications and credentials stored on a mobile device. The mobile device receives, out-of-band, information for use in creating an account for accessing network resources from the access point. As the mobile device is brought into proximity with the access point, a wireless network connection is established using a near field communication (NFC) protocol. The information, which may include a user credential, account information, and so forth, is communicated to the access point. The access point employs the information to establish an account and create an environment from which access to the network resources may be obtained. Upon termination, the access point removes from itself any user specific data. The access point may provide also session related information useable in billing the user of the mobile device.
421 Citations
21 Claims
-
1. A system for use in managing access to a computing resource, comprising:
-
(a) a mobile device that comprises;
a data store that is configured to receive and to store an end-user credential;
a personal area network (PAN) component that is configured to enable the mobile device to establish a PAN communication link with another computing device;
a remote access manager coupled to the data store and PAN component that is configured to perform actions, including;
if a PAN communication link is established with the other computing device, automatically providing the end-user credential to the other computing device;
if the mobile device is authenticated based, in part, on the end-user credential, enabling a login to a session with the other computing device; and
receiving information from the other computing device that is associated with the session; and
(b) the other computing device configured to operate as an access point and comprises;
a PAN component that is configured to, at least in part, detect a presence of the mobile device such that the PAN communication link is establishable;
a mobile device access manager component that is coupled to the PAN component and is configured to perform actions, including;
receiving the end-user credential from the mobile device;
if the mobile device is authenticated based, at least in part, on the received end-user credential, automatically creating an access account for use, in part, to establish the session for accessing the computing resource;
providing information associated with the session to the mobile device; and
if the session is terminated, securely cleansing the other computing device of data associated with the session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A server device for use in managing access to a computing resource, the components comprising:
-
a transceiver for receiving and sending information to another computing device, the transceiver configured to employ a near field communications (NFC) network link;
a processor in communication with the transceiver; and
a memory in communication with the processor and for use in storing data and machine instructions that causes the processor to perform a plurality of operations, including;
monitoring for a presence of a mobile device, and if the presence of the mobile device is detected, initiating the NFC network link to be established with the mobile device;
receiving over the NFC network link from the mobile device a credential for use in authentication, wherein the mobile device is configured to provide the mobile device automatically;
determining whether the mobile device is authentic based, at least in part on the received credential, and if the mobile device is authentic, automatically creating an account environment for use in accessing the computing resource;
enabling access to the account environment;
logging information associated with traffic over the NFC network link; and
if the mobile device logs out of the account environment, securely removing the account environment and information associated with the mobile device use of the NFC network link.
-
-
15. A method of managing access to a computing resource over a network, comprising:
-
monitoring for a presence of a mobile device, and if the presence of the mobile device is detected, initiating a near field communications (NFC) network link to be established with the mobile device;
receiving from the mobile device a credential for use in authentication, wherein the mobile device is configured to provide the mobile device credential automatically upon establishment of the NFC network link;
if the mobile device is authenticated based, at least in part, on the received credential, automatically creating an account environment for use in accessing the computing resource;
enabling access to the account environment; and
if the mobile device logs out of the account environment, securely removing the account environment and information associated with an end-user of the mobile device. - View Dependent Claims (16, 17, 18)
-
-
19. A computer-readable medium having computer-executable components for use in managing access to a computing resource, the components comprising:
-
a transceiver for receiving and sending information to another computing device, the transceiver configured to employ a near field communications (NFC) network link;
a processor in communication with the transceiver; and
a memory in communication with the processor and for use in storing data and machine instructions that cause the processor to perform a plurality of operations, including;
monitoring for a presence of a mobile device, and if the presence of the mobile device is detected, initiating the NFC network link to be established with the mobile device;
receiving over the NFC network link from the mobile device a credential for use in authentication, wherein the mobile device is configured to provide the mobile device automatically;
determining whether the mobile device is authentic based, at least in part on the received credential, and if the mobile device is authentic, automatically creating an account environment for use in accessing the computing resource;
enabling access to the account environment;
logging information associated with traffic over the NFC network link; and
if the mobile device logs out of the account environment, securely removing the account environment and information associated with the mobile device use of the NFC network link. - View Dependent Claims (20)
-
-
21. A mobile device for use in accessing a resource, comprising:
-
a display;
a transceiver for receiving and sending information to another computing device;
a processor in communication with the display and the transceiver; and
a memory in communication with the processor and for use in storing data and machine instructions that causes the processor to perform a plurality of operations, including;
establishing a near field communications (NFC) network link with an access point;
automatically providing a stored end-user credential to the access point;
if the mobile device receives a message indicating that it is authenticated based, in part, on the provided end-user credential, performing actions to enable a login to a session with the access point, wherein the access point created an access account for use during the session, and wherein the access account includes a secure walled environment that is configured to enable access to a predetermined resource while inhibiting access to another resource; and
receiving information from the access point associated with network traffic between the mobile device and the access point, wherein at least a portion of the information is useable for a billing purpose.
-
Specification