Authorization and authentication based on an individual's social network
First Claim
1. A method comprising, by one or more computing devices:
- receiving, from a client device associated with a first entity of a communication service, a request by the first entity to access the communication service, the request comprising an entity identifier (ID) of the first entity;
retrieving, by one or more of the computing devices, a black list comprising entity IDs of entities who are not authorized to access the communication service;
sending, by one or more of the computing devices, a query to a social graph server for a list comprising IDs of entities related to entities on the black list, wherein a relationship database of the social graph server stores a graph data structure comprising a plurality of nodes corresponding to a plurality of entities and a plurality of edges connecting the nodes, each edge establishing a degree of separation between two nodes;
determining, by one or more of the computing devices, a gray list based on the IDs of entities received in response to the query to the social graph server, wherein the gray list comprises entity IDs of entities who are not authorized to access the communication service based on their relationships in the graph data structure to the entities on the black list;
determining, by one or more of the computing devices, whether the first entity is authorized to access the communication service based at least in part on the gray list; and
prohibiting, by one or more of the computing devices, access to the communication service by the first entity if the first entity is not authorized to access the communication service based on the gray list.
1 Assignment
0 Petitions
Accused Products
Abstract
In particular embodiments, a method includes receiving, from a client device associated with a first entity of a communication service, a request by the first entity to access the communication service, the request comprising an entity identifier (ID) of the first entity, determining whether the first entity is authorized to access the communication service based at least in part on a gray list comprising entity IDs of the entities who are not authorized to access the communication service, wherein the gray list is based on a black list, and prohibiting, by one or more of the computing devices, access to the communication service by the first entity if the first entity is not authorized to access the communication service based on the gray list.
87 Citations
33 Claims
-
1. A method comprising, by one or more computing devices:
-
receiving, from a client device associated with a first entity of a communication service, a request by the first entity to access the communication service, the request comprising an entity identifier (ID) of the first entity; retrieving, by one or more of the computing devices, a black list comprising entity IDs of entities who are not authorized to access the communication service; sending, by one or more of the computing devices, a query to a social graph server for a list comprising IDs of entities related to entities on the black list, wherein a relationship database of the social graph server stores a graph data structure comprising a plurality of nodes corresponding to a plurality of entities and a plurality of edges connecting the nodes, each edge establishing a degree of separation between two nodes; determining, by one or more of the computing devices, a gray list based on the IDs of entities received in response to the query to the social graph server, wherein the gray list comprises entity IDs of entities who are not authorized to access the communication service based on their relationships in the graph data structure to the entities on the black list; determining, by one or more of the computing devices, whether the first entity is authorized to access the communication service based at least in part on the gray list; and prohibiting, by one or more of the computing devices, access to the communication service by the first entity if the first entity is not authorized to access the communication service based on the gray list. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A service provider system comprising:
- one or more processors; and
one or more servers having a memory storing computer-executable instructions that when executed by one or more of the processors cause the processors to;receive, from a client device associated with a first entity of a communication service, a request by the first entity to access the communication service, the request comprising an entity identifier (ID) of the first entity; retrieve a black list comprising entity IDs of entities who are not authorized to access the communication service; send a query to a social graph server for a list comprising IDs of entities related to entities on the black list, wherein a relationship database of the social graph server stores a graph data structure comprising a plurality of nodes corresponding to a plurality of entities and a plurality of edges connecting the nodes, each edge establishing a degree of separation between two nodes; determine a gray list based on the IDs of entities received in response to the query to the social graph server, wherein the gray list comprises entity IDs of entities who are not authorized to access the communication service based on their relationships in the graph data structure to the entities on the black list; determine whether the first entity is authorized to access the communication service based at least in part on the gray list; and prohibit access to the communication service by the first entity if the first entity is not authorized to access the communication service based on the gray list.
- one or more processors; and
-
18. A system comprising:
-
means for receiving, from a client device associated with a first entity of a communication service, a request by the first entity to access the communication service, the request comprising an entity identifier (ID) of the first entity; means for retrieving a black list comprising entity IDs of entities who are not authorized to access the communication service; means for sending a query to a social graph server for a list comprising IDs of entities related to entities on the black list, wherein a relationship database of the social graph server stores a graph data structure comprising a plurality of nodes corresponding to a plurality of entities and a plurality of edges connecting the nodes, each edge establishing a degree of separation between two nodes; means for determining a gray list based on the IDs of entities received in response to the query to the social graph server, wherein the gray list comprises entity IDs of entities who are not authorized to access the communication service based on their relationships in the graph data structure to the entities on the black list; means for determining whether the first entity is authorized to access the communication service based at least in part on the gray list; and means for prohibiting access to the communication service by the first entity if the first entity is not authorized to access the communication service based on the gray list. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
-
Specification