Systems and Methods of Using a Temporary Private Key Between Two Devices
First Claim
1. A method, comprising:
- at an authentication server with one or more processors and memory storing one or more programs configured for execution by the one or more processors;
receiving a request from a shared user device, the request seeking access to personal information that is associated with a user and stored at a resource server;
receiving access authentication information from a personal user device;
creating an access token that grants access privileges to the personal information associated with the user;
providing the access token to the shared user device;
receiving from the personal user device a command to revoke access privileges associated with the access token;
receiving a validation request from the resource server, the validation request including the access token;
determining that access privileges associated with the access token have been revoked; and
notifying the resource server that the validation request failed, thereby preventing access to the personal information by the shared user device.
2 Assignments
0 Petitions
Accused Products
Abstract
A method executes at an authentication server. The method receives a request from a shared user device. The request seeks access to personal information that is associated with a user and stored at a resource server. The method receives access authentication information from a personal user device and creates an access token that grants access privileges to the personal information associated with the user. The method provides the access token to the shared user device. The method receives from the personal user device a command to revoke access privileges associated with the access token. When the method receives a validation request from the resource server, including the access token, the method determines that access privileges associated with the access token have been revoked. The method then notifies the resource server that the validation request failed, thereby preventing access to the personal information by the shared user device.
-
Citations
20 Claims
-
1. A method, comprising:
at an authentication server with one or more processors and memory storing one or more programs configured for execution by the one or more processors; receiving a request from a shared user device, the request seeking access to personal information that is associated with a user and stored at a resource server; receiving access authentication information from a personal user device; creating an access token that grants access privileges to the personal information associated with the user; providing the access token to the shared user device; receiving from the personal user device a command to revoke access privileges associated with the access token; receiving a validation request from the resource server, the validation request including the access token; determining that access privileges associated with the access token have been revoked; and notifying the resource server that the validation request failed, thereby preventing access to the personal information by the shared user device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
9. An authentication server system, comprising:
-
one or more processors; memory; and one or more programs stored in the memory and configured for execution by the one or more processors, the one or more programs comprising executable instructions for; receiving a request from a shared user device, the request seeking access to personal information that is associated with a user and stored at a resource server; receiving access authentication information from a personal user device; creating an access token that grants access privileges to the personal information associated with the user; providing the access token to the shared user device; receiving from the personal user device a command to revoke access privileges associated with the access token; receiving a validation request from the resource server, the validation request including the access token; determining that access privileges associated with the access token have been revoked; and notifying the resource server that the validation request failed, thereby preventing access to the personal information by the shared user device. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer readable storage medium storing one or more programs configured for execution by an authentication server computer system having one or more processors and memory, the one or more programs comprising executable instructions for:
-
receiving a request from a shared user device, the request seeking access to personal information that is associated with a user and stored at a resource server; receiving access authentication information from a personal user device; creating an access token that grants access privileges to the personal information associated with the user; providing the access token to the shared user device; receiving from the personal user device a command to revoke access privileges associated with the access token; receiving a validation request from the resource server, the validation request including the access token; determining that access privileges associated with the access token have been revoked; and notifying the resource server that the validation request failed, thereby preventing access to the personal information by the shared user device. - View Dependent Claims (18, 19, 20)
-
Specification