Authorization and authentication based on an individual's social network

US 8,782,753 B2
Filed: 08/02/2012
Issued: 07/15/2014
Est. Priority Date: 07/22/2004
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, by one or more computing devices, a request to send content relating to a first user to a second user, each of the users having a user identifier (ID);

determining, by one or more computing devices, whether sending the content as requested is authorized based on a gray list comprising user IDs of the users whose content is not authorized to be transmitted to the second user, wherein the gray list is based on a black list; and

blocking, by one or more computing devices, the content from being sent as requested to the second user if it is not authorized based on the gray list.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In particular embodiments, a method includes receiving a request to transmit content related to a first user to a second user, determining whether transmission of the content is authorized based on a list of unauthorized users, and transmitting the content to the second user if the transmission is authorized based on the list.

180 Citations

21 Claims

1. A method comprising:
- receiving, by one or more computing devices, a request to send content relating to a first user to a second user, each of the users having a user identifier (ID);
  
  determining, by one or more computing devices, whether sending the content as requested is authorized based on a gray list comprising user IDs of the users whose content is not authorized to be transmitted to the second user, wherein the gray list is based on a black list; and
  
  blocking, by one or more computing devices, the content from being sent as requested to the second user if it is not authorized based on the gray list.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The method of claim 1, further comprising:
    - accessing, by one or more computing devices, a graph structure comprising a plurality of nodes and a plurality of edges connecting the nodes, each of the edges between two of the nodes representing a single degree of separation between them, the nodes comprising a first-user node corresponding to the first user and a second-user node corresponding to the second user.
  - 3. The method of claim 2, further comprising:
    - accessing, by one or more computing devices, the black list comprising a first set of user IDs of a first set of users;
      
      wherein the gray list comprises a second set of user IDs of a second set of users, each of the nodes corresponding to the users in the second set of users being separated in the graph structure from at least one of the nodes corresponding to the users in the first set of users by only one degree of separation.
  - 4. The method of claim 2, further comprising:
    - accessing, by one or more computing devices, the black list comprising a first set of user IDs of a first set of users;
      
      wherein the gray list comprises a second set of user IDs of a second set of users, each of the nodes corresponding to the users in the second set of users being separated in the graph structure from at least one of the nodes corresponding to the users in the first set of users by a threshold degree of separation.
  - 5. The method of claim 4, wherein determining whether sending the content as requested is authorized based on the gray list comprises:
    - authorizing, by one or more computing devices, sending the content as requested to the second user if the first-user node and the second-user node are connected to each other in the graph structure by a series of edges and nodes that does not comprise a node corresponding to a user in the first set of users or the second set of users.
  - 6. The method of claim 4, wherein the gray list further comprises a third set of user IDs of a third set of users, the nodes corresponding to the users of the third set of users being connected to either the first-user node or the second-user node in the graph structure by a series of edges and nodes that comprises a node corresponding to a user in the first set of users or the second set of users.
  - 7. The method of claim 2, wherein the gray list comprises a first set of user IDs of a first set of users, the nodes corresponding to the users of the first set of users being connected to either the first-user node or the second-user node in the graph structure through a series of edges and nodes that comprises an unauthorized node.
  - 8. The method of claim 1, further comprising:
    - accessing, by one or more computing devices, the black list comprising a first set of user IDs of a first set of users.
  - 9. The method of claim 8, further comprising:
    - updating, by one or more computing devices, the first set of user IDs based on input by the second user.
  - 10. The method of claim 8, wherein the black list comprises user IDs of the users whose content is not authorized to be sent to the second user.
  - 11. The method of claim 8, wherein the black list comprises user IDs of the users who are not authorized to view content related to the first user.
  - 12. The method of claim 8, wherein the black list is maintained for either the first user or the second user.
  - 13. The method of claim 1, wherein the content relating to the first user comprises an e-mail communication from the first user.
  - 14. The method of claim 1, wherein the content relating to the first user comprises profile information of the first user.
  - 15. The method of claim 1, wherein the content relating to the first user comprises content posted by the first user.
  - 16. The method of claim 1, wherein determining whether sending the content as requested is authorized based on the gray list comprises:
    - authorizing, by one or more computing devices, sending the content as requested to the second user if the gray list does not comprise a user ID of either the first user or the second user.
  - 17. The method of claim 1, further comprising:
    - accessing, by one or more computing devices, a white list comprising a third set of user IDs of a third set of users.
  - 18. The method of claim 17, wherein determining whether sending the content as requested is authorized based on the gray list comprises:
    - authorizing, by one or more computing devices, sending the content as requested to the second user if either the first user or the second user corresponds to a user in the third set of users from the white list.
  - 19. The method of claim 1, further comprising:
    - communicating, by one or more computing devices, to the first user or the second user a notification if the sending the content as requested to the second user was not authorized.
  - 20. The method of claim 1, further comprising:
    - sending, by one or more computing devices, the content as requested to the second user if it is authorized.

21. A system comprising:
- one or more processors; and
  
  one or more servers having a memory storing computer-executable instructions that when executed by one or more of the processors cause the processors to;
  
  receive a request to send content relating to a first user to a second user, each of the users having a user identifier (ID);
  
  determine whether sending the content as requested is authorized based on a gray list comprising user IDs of the users whose content is not authorized to be transmitted to the second user, wherein the gray list is based on a black list; and
  
  block the content from being sent as requested to the second user if it is not authorized based on the gray list.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Original Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Inventors
Lunt, Christopher
Primary Examiner(s)
Smithers, Matthew

Application Number

US13/565,475
Publication Number

US 20130198809A1
Time in Patent Office

712 Days
Field of Search

726/4
US Class Current

726/4
CPC Class Codes

G06F 16/24575   using context

G06F 16/248   Presentation of query results

G06F 16/9024   Graphs; Linked lists G06F16...

G06F 21/31   User authentication

G06F 21/604   Tools and structures for ma...

G06Q 50/01   Social networking

H04L 51/04   Real-time or near real-time...

H04L 51/212   using filtering or selectiv...

H04L 51/52   for supporting social netwo...

H04L 63/08   for authentication of entit...

H04L 63/10   for controlling access to d...

H04L 63/101   Access control lists [ACL]

H04L 63/145   the attack involving the pr...

H04L 67/02   based on web technology, e....

H04L 67/306   User profiles

H04L 67/60   Scheduling or organising th...

Authorization and authentication based on an individual's social network

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

180 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Authorization and authentication based on an individual's social network

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

180 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links