Systems and methods for authenticating data access requests

Assignee

• The Toronto-Dominion Bank · CA

Inventors

• Denny Devasia Kuruvilla · Toronto, CA
• Esli Gjini · Mississauga, CA
• Sarah Reeve · Toronto, CA
• Matija Bosnjakovic · Oakville, CA
• Guy Dagmara · Toronto, CA
• Jaspal Singh Samra · Brampton, CA
• Abhiney Natarajan · Stoney Creek, CA
• Haobin Li · Hubei, CN
• Richard Yu · Mississauga, CA
• Md Abdur Razzak Chowdhury · Mississauga, CA
• Dani Kartikay · Brampton, CA
• Ryan Haoyun Wu · San Jose, US
• Andrey Petrov · San Jose, US
• Peter Horvath · Bietigheim-Bissingen, DE
• Prashanth Dappula · King City, CA
• Sivashanthan Sivapalan · Markham, CA
• Nolan Glynn-Udrow · Mississauga, CA

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/083
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A computer-implemented method is disclosed. The method includes: authenticating a user for login to a service for a first authenticated user session; in response to authenticating the user, sending, to a client device associated with the user, a first data string associated with a first validity period; receiving, from the client device after expiry of the first authenticated user session, a data access request to access protected data, the data access request including the first data string; validating the first data string based on checking the first validity period; and in response to determining that the first data string is valid, transmitting, to the client device, a data access response including at least a subset of the requested protected data.