Revoking sessions using signaling

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• Ariel Gordon · Mercer Island, US
• Samuel Devasahayam · Kirkland, US
• Lu Zhao · Redmond, US
• Yordan Rouskov · Kirkland, US
• Parmeshwar Miguel Sequeira Arewar · Bothell, US
• Venkatesh Gopalakrishnan · Bellevue, US
• Sarat Chandra Subramaniam · Bellevue, US
• Titus C. Miron · Bellevue, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L67/02
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Embodiments are directed to revoking user sessions using signaling. In one scenario, an identity platform operating on a computer system receives an indication indicating that a user's login account has been compromised, where the user's login account has an associated login session and corresponding session artifact that is valid for a specified amount of time. The identity platform generates a signal indicating that the login session is no longer trusted and that the user is to be re-directed to the identity platform to re-authenticate and renew the session artifact and provides the generated signal to various relying parties including at least one relying party that is hosting the login session for the user.