Reset and recovery of managed security credentials
First Claim
Patent Images
1. A method comprising:
- storing, by a client computing device, account data including a plurality of security credentials associated with a plurality of network sites for a user, the account data being stored in an encrypted form, wherein the plurality of security credentials satisfy a security credential specification;
obtaining, by the client computing device, a request for temporarily changing the account data, the request specifying a master security credential for accessing the account data;
resetting, by the client computing device, each of the plurality of security credentials to a single temporary security credential based on user input, wherein the single temporary security credential has an expiration period;
sending, by the client computing device, the account data including the plurality of security credentials to a server computing device;
after expiration of the expiration period, resetting, by the client computing device, the account data by changing the plurality of security credentials to a plurality of different security credentials based at least in part on the security credential specification; and
sending, by the client computing device, the account data including the plurality of different security credentials to the server computing device.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are various embodiments for management functions relating to security credentials. Account data, which includes multiple security credentials for multiple network sites for a user, is stored in an encrypted form. A request to temporarily change the account data is obtained from a client. The request specifies a master security credential for accessing the account data. In response to the request, the multiple security credentials for the account data are changed to a single temporary security credential, as specified by a user. After an expiration period expires, the multiple security credentials are automatically reset to a plurality of different security credentials.
-
Citations
20 Claims
-
1. A method comprising:
-
storing, by a client computing device, account data including a plurality of security credentials associated with a plurality of network sites for a user, the account data being stored in an encrypted form, wherein the plurality of security credentials satisfy a security credential specification; obtaining, by the client computing device, a request for temporarily changing the account data, the request specifying a master security credential for accessing the account data; resetting, by the client computing device, each of the plurality of security credentials to a single temporary security credential based on user input, wherein the single temporary security credential has an expiration period; sending, by the client computing device, the account data including the plurality of security credentials to a server computing device; after expiration of the expiration period, resetting, by the client computing device, the account data by changing the plurality of security credentials to a plurality of different security credentials based at least in part on the security credential specification; and sending, by the client computing device, the account data including the plurality of different security credentials to the server computing device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system, comprising:
-
a data store; and at least one computing device configured to at least; store account data including a plurality of security credentials associated with a plurality of network sites for a user at the data store, the account data being stored in an encrypted form, wherein the plurality of security credentials satisfy a security credential specification; obtain a request for temporarily changing the account data, the request specifying a master security credential for accessing the account data; reset each of the plurality of security credentials to a single temporary security credential based on user input, wherein the single temporary security credential has an expiration period; send the account data including the plurality of security credentials to a server computing device; after expiration of the expiration period, reset the account data within the data store by changing the plurality of security credentials to a plurality of different security credentials based at least in part on the security credential specification; and send the account data including the plurality of different security credentials to the server computing device. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A method comprising:
-
storing, by a server computing device, account data including a plurality of security credentials associated with a plurality of network sites for a user, the account data being stored in an encrypted form, wherein the plurality of security credentials satisfy a security credential specification; obtaining, by the server computing device, a request for temporarily changing the account data from a client, the request specifying a master security credential for accessing the account data; resetting, by the server computing device, each of the plurality of security credentials to a single temporary security credential based on user input, wherein the single temporary security credential has an expiration period; sending the account data including the plurality of security credentials to the client; after expiration of the expiration period, resetting the account data by changing the plurality of security credentials to a plurality of different security credentials based at least in part on the security credential specification; and sending the account data including the plurality of security credentials to the client. - View Dependent Claims (19, 20)
-
Specification