Authorizing delegated capabilities to applications in a secure end-to-end communications system

Assignee

• SYMPHONY COMMUNICATION SERVICES HOLDINGS LLC · US

Inventors

• David M'Raihi · Redwood City, US
• Aaron Scales · Palo Alto, US
• Bruce Skingle · Cambridge, GB
• Glenn A. Anderson · Holden, US
• Benjamin Liu · Carmel, US
• Paul Teyssier · Palo Alto, US
• Daniel Nathanson · Millbrae, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/126
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

An organization that wishes its messages to be secure (the “communicating organization”) uses services of a secure communications infrastructure to securely exchange communications among its users. The secure communications infrastructure allows granting to third-party applications the permission to act on behalf of the users when using the secure communications infrastructure. This delegation may be accomplished at a very granular level, specifying the particular applications that are authorized to act on behalf of a user, the particular operations that those applications are authorized to perform, and/or in which contexts the applications may perform the operations. An agent component acts as an intermediary between third-party applications and the core of the secure communications infrastructure. This permits the third-party application to take actions on behalf of the user, while also preventing the third-party applications from obtaining the security-specific data that could lead to a breach of security.