公开(公告)号：US12033142B2

公开(公告)日：2024-07-09

申请号：US17633509

申请日：2019-08-21

Applicant: Google LLC

Inventor： Hannia Zia ,  Heman Khanna ,  Animesh Chatterji ,  Stavan Parikh ,  Ridhima Kedia ,  Bogdan Brinzarea Iamandi

IPC: G06Q20/38 ,  G06Q20/32 ,  G06Q20/40 ,  H04L9/08

CPC classification number: G06Q20/38215 ,  G06Q20/3227 ,  G06Q20/326 ,  G06Q20/4014 ,  H04L9/0825 ,  G06Q2220/00 ,  H04L2209/56

Abstract: A method 1000 for authenticating operations within consent architecture includes obtaining an operation request 142 requesting a service application 140 to access a remote entity 130 to perform an operation (138). The method also includes issuing, by the service application, an authentication request 152 requesting an authenticator application 150 to obtain user authentication credentials 154 for authenticating a user 12 before the remote entity performs the operation. The method also includes encrypting, by the authenticator application, the obtained user authentication credentials using a public key 132 of the remote entity. The service application is restricted from obtaining the user authentication credentials in unencrypted form. The method also includes providing, by the authenticator application, the encrypted user authentication credentials to the service application and transmitting, by the service application, the operation request and the encrypted user authentication credentials to the remote entity.

公开(公告)号：US20220300962A1

公开(公告)日：2022-09-22

申请号：US17633509

申请日：2019-08-21

Applicant: Google LLC

Inventor： Hannia Zia ,  Heman Khanna ,  Animesh Chatterji ,  Stavan Parikh ,  Ridhima Kedia ,  Bogdan Brinzarea Iamandi

IPC: G06Q20/38 ,  G06Q20/32 ,  G06Q20/40 ,  H04L9/08

Abstract: A method 1000 for authenticating operations within consent architecture includes obtaining an operation request 142 requesting a service application 140 to access a remote entity 130 to perform an operation (138). The method also includes issuing, by the service application, an authentication request 152 requesting an authenticator application 150 to obtain user authentication credentials 154 for authenticating a user 12 before the remote entity performs the operation. The method also includes encrypting, by the authenticator application, the obtained user authentication credentials using a public key 132 of the remote entity. The service application is restricted from obtaining the user authentication credentials in unencrypted form. The method also includes providing, by the authenticator application, the encrypted user authentication credentials to the service application and transmitting, by the service application, the operation request and the encrypted user authentication credentials to the remote entity.