MANAGEMENT OF ACCESS IDENTIFIERS

US 20130036454A1
Filed: 08/05/2011
Published: 02/07/2013
Est. Priority Date: 08/05/2011
Status: Active Grant

First Claim

Patent Images

1. An on-line account management system, comprising:

a network interface operable to receive a request to perform a first action using the on-line account management system, wherein the request comprises a first access identifier;

a global access ID module communicatively coupled to the network interface operable to;

determine a global party identifier associated with the first access identifier;

access restriction information associated with the first access identifier and the global party identifier from a global party profile operable to store at least one of a time-based, a location-based, and a device-based restriction associated with actions capable of being performed using the on-line account management system; and

a processor operable to determine whether the first action is permissible based on the restriction information associated with the first access identifier and the global party identifier.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Access to an on-line account management system is facilitated. A request is received to perform a first action using an on-line account management system. The request comprises a first access identifier. A global party identifier associated with the first access identifier is determined. Restriction information associated with the first access identifier and the global party identifier is accessed from a global party profile operable to store at least one of a time-based, a location-based, and a device-based restriction associated with actions capable of being performed using the on-line account management system. A processor determines whether the first action is permissible based on the restriction information associated with the first access identifier and the global party identifier.

47 Citations

View as Search Results

20 Claims

1. An on-line account management system, comprising:
- a network interface operable to receive a request to perform a first action using the on-line account management system, wherein the request comprises a first access identifier;
  
  a global access ID module communicatively coupled to the network interface operable to;
  
  determine a global party identifier associated with the first access identifier;
  
  access restriction information associated with the first access identifier and the global party identifier from a global party profile operable to store at least one of a time-based, a location-based, and a device-based restriction associated with actions capable of being performed using the on-line account management system; and
  
  a processor operable to determine whether the first action is permissible based on the restriction information associated with the first access identifier and the global party identifier.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The on-line account management system of claim 1, wherein the first action comprises logging on to the on-line account management system.
  - 3. The on-line account management system of claim 1, the global access ID module further operable to determine that a time-based restriction is associated with the first access identifier, wherein the time-based restriction comprises a maximum amount of time that a user is allowed to remain logged on to the on-line account management system during a session using the first access identifier.
  - 4. The on-line account management system of claim 1, the global access ID module further operable to determine that a time-based restriction is associated with the first access identifier, wherein the time-based restriction comprises a maximum number of times that a user may log on to the on-line account management system using the first access identifier.
  - 5. The on-line account management system of claim 1, the global access ID module further operable to determine that a location-based restriction is associated with the first access identifier, wherein the location-based restriction prohibits a user from logging on to the on-line account management system from a location using the first access identifier.
  - 6. The on-line account management system of claim 1, wherein the global party profile is further operable to store a functionality restriction associated with actions capable of being performed using the on-line account management system.
  - 7. The on-line account management system of claim 1, the global access ID module further operable to determine that a functionality restriction is associated with the first access identifier, wherein the functionality restriction prohibits a user, using the first access identifier, from accessing the on-line account management system to conduct transactions that exceed a transaction limit.
  - 8. The on-line account management system of claim 1, wherein:
    - the network interface is further operable to receive a request from a user associated with the first access identifier to create a second access identifier associated with the global party identifier;
      
      the global access ID module is further operable to determine whether the user is allowed to create the second access identifier according to a functionality restriction; and
      
      if the user is allowed to create the second access identifier, the processor is further operable to create the second access identifier and associate the second access identifier with an identifier restriction, wherein the identifier restriction comprises at least one of a time-based, a location-based, a device-based, and a functionality-based restriction.
  - 9. The on-line account management system of claim 1, wherein the processor is further operable to creating a second access identifier associated with the global party identifier for use by an on-line account aggregator.

10. A method for facilitating access to an on-line account management system, comprising:
- receiving a request to perform a first action using an on-line account management system, wherein the request comprises a first access identifier;
  
  determining a global party identifier associated with the first access identifier;
  
  accessing restriction information associated with the first access identifier and the global party identifier from a global party profile operable to store at least one of a time-based, a location-based, and a device-based restriction associated with actions capable of being performed using the on-line account management system; and
  
  determining, by a processor, whether the first action is permissible based on the restriction information associated with the first access identifier and the global party identifier.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The method of claim 10, wherein the first action comprises logging on to the on-line account management system.
  - 12. The method of claim 10, further comprising determining that a time-based restriction is associated with the first access identifier, wherein the time-based restriction comprises a maximum amount of time that a user is allowed to remain logged on to the on-line account management system during a management session using the first access identifier.
  - 13. The method of claim 10, further comprising determining that a time-based restriction is associated with the first access identifier, wherein the time-based restriction comprises a maximum number of times that a user may log on to the on-line account management system using the first access identifier.
  - 14. The method of claim 10, further comprising determining that a location-based restriction is associated with the first access identifier, wherein the location-based restriction prohibits a user from logging on to the on-line account management system from a location using the first access identifier.
  - 15. The method of claim 10, wherein the global party profile is further operable to store a functionality restriction associated with actions capable of being performed using the on-line account management system.
  - 16. The method of claim 10, further comprising determining that a functionality restriction is associated with the first access identifier, wherein the functionality restriction prohibits a user, using the first access identifier, from accessing the on-line account management system to conduct transactions that exceed a transaction limit.
  - 17. The method of claim 10, further comprising:
    - receiving a request from a user associated with the first access identifier to create a second access identifier associated with the global party identifier;
      
      determining whether the user is allowed to create the second access identifier according to a functionality restriction;
      
      if the user is allowed to create the second access identifier, creating the second access identifier and associating the second access identifier with an identifier restriction, wherein the identifier restriction comprises at least one of a time-based, a location-based, a device-based, and a functionality-based restriction.
  - 18. The method of claim 10, further comprising creating a second access identifier associated with the global party identifier for use by an on-line account aggregator.

19. A non-transitory computer readable medium comprising logic, the logic when executed by a processor, operable to:
- receive a request to perform a first action using an on-line account management system, wherein the request comprises a first access identifier;
  
  determine a global party identifier associated with the first access identifier;
  
  access restriction information associated with the first access identifier and the global party identifier from a global party profile operable to store at least one of a time-based, a location-based, and a device-based restriction associated with actions capable of being performed using the on-line account management system; and
  
  determine whether the first action is permissible based on the restriction information associated with the first access identifier and the global party identifier.
- View Dependent Claims (20)
- - 20. The computer readable medium of claim 19, wherein the logic when executed by the processor, is further operable to store a functionality restriction associated with actions capable of being performed using the on-line account management system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Purvis, Chris, Jain, Dipika

Granted Patent

US 9,027,083 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/4
CPC Class Codes

G06F 21/31   User authentication

G06F 21/6218   to a system of files or obj...

G06Q 20/3223   Realising banking transacti...

G06Q 20/3224   Transactions dependent on l...

MANAGEMENT OF ACCESS IDENTIFIERS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

47 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

MANAGEMENT OF ACCESS IDENTIFIERS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

47 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others