Account management for network sites

US 9,692,740 B2
Filed: 10/13/2014
Issued: 06/27/2017
Est. Priority Date: 02/01/2012
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computer-readable medium embodying an authentication client executable in at least one computing device, wherein when executed the authentication client causes the at least one computing device to at least:

request account data for an account of a user for a network site from an authentication management service using a master security credential supplied by the user, the account data including a security credential for the account;

authenticate with an authentication service corresponding to the network site using the security credential for the account in response to the user accessing the network site;

determine that a logout is to be performed, wherein determining that the logout is to be performed further comprises determining that the user has logged out of an operating system account or determining that a switch user request has been received; and

perform the logout, wherein performing the logout is configured to automatically remove the account data from the at least one computing device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed are various embodiments for managing accounts for network sites. In one embodiment, account information is automatically removed from a client when a logout is performed. In another embodiment, encrypted account information and an authentication client that decrypts the account information are stored upon a portable data store that is removably attached to a computing device. In yet another embodiment, a first user may indicate that account information is to be shared with a second user.

Citations

20 Claims

1. A non-transitory computer-readable medium embodying an authentication client executable in at least one computing device, wherein when executed the authentication client causes the at least one computing device to at least:
- request account data for an account of a user for a network site from an authentication management service using a master security credential supplied by the user, the account data including a security credential for the account;
  
  authenticate with an authentication service corresponding to the network site using the security credential for the account in response to the user accessing the network site;
  
  determine that a logout is to be performed, wherein determining that the logout is to be performed further comprises determining that the user has logged out of an operating system account or determining that a switch user request has been received; and
  
  perform the logout, wherein performing the logout is configured to automatically remove the account data from the at least one computing device.
- View Dependent Claims (2, 3, 12, 15, 16, 18)
- - 2. The non-transitory computer-readable medium of claim 1, wherein performing the logout is configured to end a session with the network site.
  - 3. The non-transitory computer-readable medium of claim 1, wherein when executed the authentication client further causes the at least one computing device to at least decrypt the account data using the master security credential.
  - 12. The non-transitory computer-readable medium of claim 1, wherein the security credential comprises a password.
  - 15. The non-transitory computer-readable medium of claim 1, wherein when executed the authentication client further causes the at least one computing device to at least decrypt the account data using the master security credential.
  - 16. The non-transitory computer-readable medium of claim 1, wherein determining that the logout is to be performed further comprises determining that a predefined period of inactivity has been met for a user session.
  - 18. The non-transitory computer-readable medium of claim 1, wherein performing the logout further comprises sending a logout request to an authentication service of the network site.

4. A system, comprising:
- at least one computing device; and
  
  an authentication client executable in at least one computing device, wherein when executed the authentication client causes the at least one computing device to at least;
  
  request account data for an account of a user for a network site from an authentication management service using a master security credential supplied by the user, the account data including a security credential for the account;
  
  authenticate with an authentication service corresponding to the network site using the security credential for the account in response to the user accessing the network site;
  
  determine that a logout is to be performed by determining that the user has logged out of an operating system account or by determining that a switch user request has been received; and
  
  perform the logout, wherein performing the logout is configured to automatically remove the account data from the at least one computing device.
- View Dependent Claims (5, 6, 13, 17, 19)
- - 5. The system of claim 4, wherein performing the logout is configured to end a session with the network site.
  - 6. The system of claim 4, wherein when executed the authentication client further causes the at least one computing device to at least decrypt the account data using the master security credential.
  - 13. The system of claim 4, wherein the security credential comprises a password.
  - 17. The system of claim 4, wherein determining that the logout is to be performed further comprises determining that a predefined period of inactivity has been met for a user session.
  - 19. The system of claim 4, wherein performing the logout further comprises sending a logout request to an authentication service of the network site.

7. A method, comprising:
- requesting, via at least one of one or more computing devices, account data for an account of a user for a network site from an authentication management service using a master security credential supplied by the user, the account data including a security credential for the account;
  
  authenticating, via at least one of the one or more computing devices, with an authentication service corresponding to the network site using the security credential for the account in response to the user accessing the network site;
  
  determining, via at least one of the one or more computing devices, that a logout is to be performed by determining that a switch user request has been received or by determining that the user has logged out of an operating system account; and
  
  performing, via at least one of the one or more computing devices, the logout, wherein performing the logout is configured to automatically remove the account data from the computing device.
- View Dependent Claims (8, 9, 10, 11, 14, 20)
- - 8. The method of claim 7, wherein determining that the logout is to be performed further comprises determining, via at least one of the one or more computing devices, that a single logout button on a user interface of an authentication management client has been selected.
  - 9. The method of claim 7, wherein determining that the logout is to be performed further comprises determining, via at least one of the one or more computing devices, that a predefined period of inactivity has been met for a user session.
  - 10. The method of claim 7, wherein performing the logout further comprises ending, via at least one of the one or more computing devices, a session with the network site.
  - 11. The method of claim 7, further comprising decrypting, via at least one of the one or more computing devices, the account data using the master security credential.
  - 14. The method of claim 7, wherein the security credential comprises a password.
  - 20. The method of claim 7, wherein performing the logout further comprises sending a logout request to an authentication service of the network site.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Original Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Inventors
Hitchcock, Daniel W., Campbell, Brad Lee
Primary Examiner(s)
Okeke, Izunna

Application Number

US14/512,541
Publication Number

US 20150033302A1
Time in Patent Office

988 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/41 where a single sign-on prov...

H04L 63/08 for authentication of entit...

Account management for network sites

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Account management for network sites

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links