Patent · US Active

Verification of client identities based on non-distributed data

US10862689B1 · kind B1 · utility

3Cited by

5References

20Claims

0Family size

Assignee

CyberArk Software Ltd. · IL

Inventors

Evgeni Aizikovich · Netanya, IL
Boris Spivak · Netanya, IL
Michael Yavnilovich · Netanya, IL
Tal Kandel · Pardes Hana-Karkur, IL
Hadas Elkabir · Hod HaSharon, IL

Key dates

Filing date	Jul 23, 2019
Grant date	Dec 8, 2020
Priority date	—
Expiry date	Jul 23, 2039

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0428
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Disclosed embodiments relate to verifying identities based on identity-inherent data that is inaccessible to the system. Techniques include receiving, from a client, an encrypted token, the encrypted token having been encrypted at the client using a cryptographic key created at the client based on identity-inherent data of an identity of the client; wherein the identity-inherent data of the identity is not itself received by the system, and wherein the cryptographic key is accessible only to the client; and storing the encrypted token in association with a hash of a decrypted version of the encrypted token to allow for comparing the stored hash with a created hash and determining whether to verify the identity based on a result of the comparing.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.