Account aggregation system, information processing apparatus and encryption key management method of the account aggregation system

US 8,515,067 B2
Filed: 11/24/2010
Issued: 08/20/2013
Est. Priority Date: 12/18/2009
Status: Expired due to Fees

First Claim

Patent Images

1. An account aggregation system for assisting an entry of authentication data while requesting service from service providing servers, the system comprising:

an information processing apparatus configured to receive service from the service providing servers, each having requested the authentication data; and

an account aggregation server configured to execute encrypted communication with the information processing apparatus,wherein the information processing apparatus comprises;

a database configured to store the authentication data;

an automatic sign-on process module configured to provide the authentication data requested by the service providing servers from the database; and

an encryption key processing module configured to register, for the account aggregation server, an encryption key for encrypting authentication data to be stored in the database or for decrypting the authentication data stored in the database, to acquire the encryption key from the account aggregation server when a process is executed using the encryption key, and to erase the encryption key after the process is executed,the account aggregation server comprises an encryption key management module configured to manage the encryption key;

the encryption key processing module comprises an encryption key updating module configured to update the encryption key managed by the account aggregation server, andthe encryption key updating module is configured to acquire the encryption key not updated yet from the account aggregation server in order to decrypt the authentication data stored in the database, to erase the encryption key not updated yet after decrypting the authentication data, to encrypt the authentication data by using updated encryption key in order to store the authentication data in the database, and to erase the updated encryption key after storing the authentication data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to one embodiment, an account aggregation system includes an information processing apparatus and an account aggregation server. The information processing apparatus includes a database, an automatic sign-on process module and an encryption key processing module. The automatic sign-on process module is configured to provide authentication data the service providing servers have requested for, by using the authentication data stored in the database. The encryption key processing module is configured to register, for the account aggregation server, an encryption key for encrypting authentication data to be stored in the database or for decrypting the authentication data stored in the database, to acquire the encryption key from the account aggregation server when a process is performed by using the encryption key, and to erase the encryption key after the process is performed. The account aggregation server includes an encryption key management module which is configured to manage the encryption key.

Citations

6 Claims

1. An account aggregation system for assisting an entry of authentication data while requesting service from service providing servers, the system comprising:
- an information processing apparatus configured to receive service from the service providing servers, each having requested the authentication data; and
  
  an account aggregation server configured to execute encrypted communication with the information processing apparatus,wherein the information processing apparatus comprises;
  
  a database configured to store the authentication data;
  
  an automatic sign-on process module configured to provide the authentication data requested by the service providing servers from the database; and
  
  an encryption key processing module configured to register, for the account aggregation server, an encryption key for encrypting authentication data to be stored in the database or for decrypting the authentication data stored in the database, to acquire the encryption key from the account aggregation server when a process is executed using the encryption key, and to erase the encryption key after the process is executed,the account aggregation server comprises an encryption key management module configured to manage the encryption key;
  
  the encryption key processing module comprises an encryption key updating module configured to update the encryption key managed by the account aggregation server, andthe encryption key updating module is configured to acquire the encryption key not updated yet from the account aggregation server in order to decrypt the authentication data stored in the database, to erase the encryption key not updated yet after decrypting the authentication data, to encrypt the authentication data by using updated encryption key in order to store the authentication data in the database, and to erase the updated encryption key after storing the authentication data.
- View Dependent Claims (2, 3)
- - 2. The system of claim 1, wherein the authentication data comprises identification data for identifying a user and password data for confirming identification of the user.
  - 3. The system of claim 1, wherein the account aggregation server further comprises an authentication module configured to authenticate the user of the information processing apparatus.

4. An information processing apparatus configured to receive service from service providing servers requesting authentication data in an account aggregation system for assisting the inputting of the authentication data in order to receive service from the service providing servers by cooperating with an account aggregation server executing encrypted communication with the information processing apparatus, the apparatus comprising:
- a database configured to store the authentication data;
  
  an automatic sign-on process module configured to provide the authentication data requested by the service providing servers from the database; and
  
  an encryption key processing module configured to register, for the account aggregation server, an encryption key for encrypting authentication data to be stored in the database or for decrypting the authentication data stored in the database, to acquire the encryption key from the account aggregation server when a process is executed using the encryption key, and to erase the encryption key after the process is executed, wherein;
  
  the encryption key processing module comprises an encryption key updating module configured to update the encryption key registered in the account aggregation server, andthe encryption key processing module is configured to acquire the encryption key not updated yet from the account aggregation server in order to decrypt the authentication data stored in the database, to erase the encryption key not updated yet after decrypting the authentication data, to encrypt the authentication data by using updated encryption key in order to store the authentication data in the database, and to erase the updated encryption key after storing the authentication data.
- View Dependent Claims (5)
- - 5. The apparatus of claim 4, wherein the authentication data comprises identification data for identifying a user and password data for confirming identification of the user.

6. An encryption key management method of an account aggregation system for assisting the inputting of authentication data in order to receive service from service providing servers, the system comprising an information processing apparatus which comprises a storage device and is configured to receive service from service providing servers requesting authentication data, and an account aggregation server configured to execute encrypted communication with the information processing apparatus, the method comprising:
- storing authentication data in the storage device;
  
  providing authentication data requested by the service providing servers from the storage device;
  
  registering, for the account aggregation server, an encryption key for encrypting authentication data to be stored in the storage device or decrypting the authentication data stored in the storage device, acquiring the encryption key from the account aggregation server when a process is executed using the encryption key, and erasing the encryption key after the process is executed; and
  
  managing the encryption key, by the account aggregation server, whereinthe registering the encryption key comprises updating the encryption key managed by the account aggregation server, andthe updating the encryption key comprises acquiring the encryption key not updated yet from the account aggregation server in order to decrypt the authentication data stored in the database, erasing the encryption key not updated yet after decrypting the authentication data, encrypting the authentication data by using updated encryption key in order to store the authentication data in the database, and erasing the updated encryption key after storing the authentication data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Original Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Inventors
Kitada, Noriaki, Watanabe, Hiroyuki, Taniuchi, Kenichi
Primary Examiner(s)
McNally, Michael S

Application Number

US12/954,428
Publication Number

US 20110150221A1
Time in Patent Office

1,000 Days
Field of Search

380/255
US Class Current

380/255
CPC Class Codes

H04L 63/0815 providing single-sign-on or...

Account aggregation system, information processing apparatus and encryption key management method of the account aggregation system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

6 Claims

Specification

Solutions

Use Cases

Quick Links

Account aggregation system, information processing apparatus and encryption key management method of the account aggregation system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

6 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links