Provisioning account credentials via a trusted channel
First Claim
Patent Images
1. A non-transitory computer-readable medium embodying a program executable by a client computing device, comprising:
- code that, in response to receiving a security credential for an email account from a user, configures the client computing device to access the email account, the email account being designated as a trusted channel of communication by an organization associated with one of a plurality of accounts;
code that, in response to receiving an identification of the plurality of accounts from the user, automatically sends a credential access request to a plurality of services corresponding to the plurality of accounts; and
code that, in response to receiving a respective email message for individual ones of the plurality of accounts, automatically configures a plurality of applications executable by the client computing device to access the plurality of accounts based at least in part on respective security credentials received in the respective email messages.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are various embodiments for provisioning client credentials via a trusted channel. A client computing device is configured to access a trusted channel of communication. An account configuration manager automatically requests access to accounts linked to the trusted channel of communication. A respective security credential communication is received for the accounts via the trusted channel of communication. One or more applications are configured to access the accounts based at least in part on the respective security credential communications.
41 Citations
20 Claims
-
1. A non-transitory computer-readable medium embodying a program executable by a client computing device, comprising:
-
code that, in response to receiving a security credential for an email account from a user, configures the client computing device to access the email account, the email account being designated as a trusted channel of communication by an organization associated with one of a plurality of accounts; code that, in response to receiving an identification of the plurality of accounts from the user, automatically sends a credential access request to a plurality of services corresponding to the plurality of accounts; and code that, in response to receiving a respective email message for individual ones of the plurality of accounts, automatically configures a plurality of applications executable by the client computing device to access the plurality of accounts based at least in part on respective security credentials received in the respective email messages. - View Dependent Claims (2, 3)
-
-
4. A system, comprising:
-
a client computing device configured to access a trusted channel of communication; and an account configuration manager executable by the client computing device, the account configuration manager comprising; logic that automatically sends an access request to a credential management endpoint corresponding to at least one account linked to the trusted channel of communication; logic that, in response to receiving a respective credential reset token for the at least one account via the trusted channel of communication, provides the respective credential reset token to a service corresponding to the at least one account; and logic that, in response to receiving a respective replacement security credential from the service, configures at least one application executable by the client computing device to access the at least one account based at least in part on the respective replacement security credential. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system, comprising:
-
a client computing device configured to access a trusted channel of communication; and an account configuration manager executable by the client computing device, the account configuration manager comprising; logic that automatically sends an access request to a credential management endpoint corresponding to at least one account linked to the trusted channel of communication; logic that, in response to receiving a respective security credential communication for the at least one account via the trusted channel of communication, configures at least one application executable by the client computing device to access the at least one account based at least in part on the respective security credential communication; and wherein the trusted channel of communication comprises a first trusted channel of communication and a second trusted channel of communication, a first portion of the respective security credential communication is received via the first trusted channel of communication, a second portion of the respective security credential communication is received via the second trusted channel of communication, and a security credential is split across the first portion and the second portion.
-
-
15. A system, comprising:
-
a client computing device configured to access a trusted channel of communication; and an account configuration manager executable by the client computing device, the account configuration manager comprising; logic that automatically sends a security credential reset request to a credential management endpoint corresponding to at least one account linked to the trusted channel of communication; logic that, in response to receiving a respective security credential communication for the at least one account via the trusted channel of communication, configures at least one application executable by the client computing device to access the at least one account based at least in part on the respective security credential communication; and wherein the security credential reset request includes a public key, and the respective security credential communication is encrypted using the public key. - View Dependent Claims (16)
-
-
17. A method, comprising:
-
receiving, by a client computing device, an identification of an account from a user; automatically requesting, by the client computing device, a security credential reset corresponding to the account, the account being linked to a trusted channel of communication for reset purposes; receiving, by the client computing device, a security credential communication corresponding to the account via the trusted channel of communication; and automatically configuring, by the client computing device, at least one application to access the account based at least in part on the security credential communication. - View Dependent Claims (18, 19, 20)
-
Specification