Systems and methods of using a temporary private key between two devices
First Claim
1. A method, comprising:
- at a personal user device with one or more processors and memory storing programs for execution by the one or more processors;
receiving a request initiated by a user of the personal user device, wherein the user initiates the request from a shared user device distinct from the personal user device, the personal user device is a mobile device configured for use by one person and associated with the user, the shared user device is usable by two or more people and has a larger display than the personal user device, and the request seeks access to personal information that is associated with the user and stored at a resource server;
receiving access authentication information from the user;
in response to receiving the access authentication information from the user;
sending the access authentication information to an authentication server;
receiving an access token from the authentication server, the access token granting access privileges to the personal information associated with the user;
sending the access token to the shared user device, thereby permitting an application executing on the shared user device to use the access token for retrieving at least a portion of the personal information;
detecting, by the personal user device, a physical movement of the personal user device, the movement meeting predefined motion criteria; and
in response to detecting the physical movement, sending, by the personal user device, a message to the authentication server to revoke the granted access privileges associated with the access token.
2 Assignments
0 Petitions
Accused Products
Abstract
A method executes at a personal user device associated with a user. The method receives a request from a shared user device, the request seeking access to personal information associated with the user. The personal information is stored at a resource server. The method receives access authentication information from the user. The method then sends the access authentication information to an authentication server, and receives an access token. The access token grants access privileges to the personal information. The method sends the access token to the shared user device, thereby permitting an application executing on the shared user device to use the access token for retrieving at least a portion of the personal information. The method detects a physical movement of the personal user device, then sends a message to the authentication server to revoke access privileges associated with the access token.
-
Citations
24 Claims
-
1. A method, comprising:
at a personal user device with one or more processors and memory storing programs for execution by the one or more processors; receiving a request initiated by a user of the personal user device, wherein the user initiates the request from a shared user device distinct from the personal user device, the personal user device is a mobile device configured for use by one person and associated with the user, the shared user device is usable by two or more people and has a larger display than the personal user device, and the request seeks access to personal information that is associated with the user and stored at a resource server; receiving access authentication information from the user; in response to receiving the access authentication information from the user; sending the access authentication information to an authentication server; receiving an access token from the authentication server, the access token granting access privileges to the personal information associated with the user; sending the access token to the shared user device, thereby permitting an application executing on the shared user device to use the access token for retrieving at least a portion of the personal information; detecting, by the personal user device, a physical movement of the personal user device, the movement meeting predefined motion criteria; and in response to detecting the physical movement, sending, by the personal user device, a message to the authentication server to revoke the granted access privileges associated with the access token. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
9. A personal user device, comprising:
-
one or more processors; memory; and one or more programs stored in the memory for execution by the one or more processors, the one or more programs comprising executable instructions for; receiving a request initiated by a user of the personal user device, wherein the user initiates the request from a shared user device distinct from the personal user device, the personal user device is a mobile device configured for use by one person and associated with the user, the shared user device is usable by two or more people and has a larger display than the personal user device, and the request seeks access to personal information that is associated with the user and stored at a resource server; receiving access authentication information from the user; in response to receiving the access authentication information from the user; sending the access authentication information to an authentication server; receiving an access token from the authentication server, the access token granting access privileges to the personal information associated with the user; sending the access token to the shared user device, thereby permitting an application executing on the shared user device to use the access token for retrieving at least a portion of the personal information; detecting, by the personal user device, a physical movement of the personal user device, the movement meeting predefined motion criteria; and in response to detecting the physical movement, sending, by the personal user device, a message to the authentication server to revoke the granted access privileges associated with the access token. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A non-transitory computer readable storage medium storing one or more programs configured for execution by a personal user device having one or more processors and memory storing one or more programs for execution by the one or more processors, the one or more programs comprising executable instructions for:
-
receiving a request initiated by a user of the personal user device, wherein the user initiates the request from a shared user device distinct from the personal user device, the personal user device is a mobile device configured for use by one person and associated with the user, the shared user device is usable by two or more people and has a larger display than the personal user device, and the request seeks access to personal information that is associated with the user and stored at a resource server; receiving access authentication information from the user; in response to receiving the access authentication information from the user; sending the access authentication information to an authentication server; receiving an access token from the authentication server, the access token granting access privileges to the personal information associated with the user; sending the access token to the shared user device, thereby permitting an application executing on the shared user device to use the access token for retrieving at least a portion of the personal information; detecting, by the personal user device, a physical movement of the personal user device, the movement meeting predefined motion criteria; and in response to detecting the physical movement, sending, by the personal user device, a message to the authentication server to revoke the granted access privileges associated with the access token. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
Specification