Consumption control of protected cloud resources by open authentication-based applications in end user devices
US9690925B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Aug 30, 2012 |
| Grant date | Jun 27, 2017 |
| Priority date | — |
| Expiry date | Mar 28, 2033 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2111
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A server computer system identifies a request from an application hosted on a mobile device to consume a protected resource hosted by a cloud. The request is transmitted via a resource authorization protocol. The server computer system identifies a token state of an application on the mobile device. The token state is stored in a policy data store that is separate from expiration data that is stored on an access token on the mobile device. The server computer system determines whether the token state violates a security policy that is associated with a user that is assigned to the mobile device and prevents consumption of the protected resource in response to a determination that the token state violates the security policy. The server computer system allows consumption of the protected resource in response to a determination that the token state does not violate the security policy.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.