公开(公告)号：US12074878B2

公开(公告)日：2024-08-27

申请号：US17364745

申请日：2021-06-30

Applicant: Microsoft Technology Licensing, LLC

Inventor： Steve Ball ,  Justin Anthony Niles ,  Muhammad Omer Iqbal ,  Sadie Elise Henry ,  Sangeeta Ranjit ,  Sarat Chandra Subramaniam ,  Michael Vincent McLaughlin ,  Rachel Anne Brown Teller

IPC: G06Q20/20 ,  H04L9/40 ,  H04L67/306

CPC classification number: H04L63/102 ,  G06Q20/20 ,  G06Q20/206 ,  H04L63/101 ,  H04L67/306

Abstract: An account provisioning manager is disclosed. A placeholder account is generated with a primary work set attribute and a plurality of enhanced work set attributes. Initially, the primary work set attribute is populated with data to convert the placeholder account into an onboarded operating account. Subsequently, the plurality of enhanced work set attributes are populated via data propagation into the onboarded operating account, wherein an enhanced work set attribute of the plurality of enhanced work set attributes is selectively populated in response to a trigger for the onboarded operating account.

公开(公告)号：US20230007004A1

公开(公告)日：2023-01-05

申请号：US17364745

申请日：2021-06-30

Applicant: Microsoft Technology Licensing, LLC

Inventor： Steve Ball ,  Justin Anthony Niles ,  Muhammad Omer Iqbal ,  Sadie Elise Henry ,  Sangeeta Ranjit ,  Sarat Chandra Subramaniam ,  Michael Vincent McLaughlin ,  Rachel Anne Brown Teller

IPC: H04L29/06 ,  H04L29/08

Abstract: An account provisioning manager is disclosed. A placeholder account is generated with a primary work set attribute and a plurality of enhanced work set attributes. Initially, the primary work set attribute is populated with data to convert the placeholder account into an onboarded operating account. Subsequently, the plurality of enhanced work set attributes are populated via data propagation into the onboarded operating account, wherein an enhanced work set attribute of the plurality of enhanced work set attributes is selectively populated in response to a trigger for the onboarded operating account.

公开(公告)号：US10536450B2

公开(公告)日：2020-01-14

申请号：US15490657

申请日：2017-04-18

Applicant: Microsoft Technology Licensing, LLC

Inventor： Ariel Gordon ,  Sarat Chandra Subramaniam ,  Ben Vincent ,  Paul Garner

IPC: H04L29/06 ,  G06F21/31 ,  G06F21/41 ,  H04W4/14 ,  H04L29/08

Abstract: A method and system performed by a computing system for signing in using personal identifiers input via a sign-in portal that supports multiple tenants is provided. The system receives a sign-in request for a user that includes a personal identifier. The personal identifier uniquely identifies a person but does not include an identification of a tenant. The system performs a verification based on the personal identifier to authenticate the user. The system identifies, from a mapping, a tenant to which the personal identifier is mapped. The mapping maps personal identifiers of users to tenants. The system retrieves, from a user store for the tenant, user information relating to the user. The system then creates a security token based on the user information. If verification of the user was successful, the system sends the security token to the sign-in portal as evidence that the user has been authenticated.

公开(公告)号：US20180139200A1

公开(公告)日：2018-05-17

申请号：US15825523

申请日：2017-11-29

Applicant: Microsoft Technology Licensing, LLC

Inventor： Ariel Gordon ,  Samuel Devasahayam ,  Lu Zhao ,  Yordan Rouskov ,  Parmeshwar Miguel Sequeira Arewar ,  Venkatesh Gopalakrishnan ,  Sarat Chandra Subramaniam ,  Titus Constantin Miron

IPC: H04L29/06

CPC classification number: H04L63/083 ,  H04L63/08 ,  H04L63/102 ,  H04L63/1416 ,  H04L67/02 ,  H04L67/14 ,  H04L69/28

Abstract: Embodiments are directed to revoking user sessions using signaling. In one scenario, an identity platform operating on a computer system receives an indication indicating that a user's login account has been compromised, where the user's login account has an associated login session and corresponding session artifact that is valid for a specified amount of time. The identity platform generates a signal indicating that the login session is no longer trusted and that the user is to be re-directed to the identity platform to re-authenticate and renew the session artifact and provides the generated signal to various relying parties including at least one relying party that is hosting the login session for the user.

公开(公告)号：US09537851B2

公开(公告)日：2017-01-03

申请号：US14452726

申请日：2014-08-06

Applicant: Microsoft Technology Licensing, LLC

Inventor： Ariel Gordon ,  Samuel Devasahayam ,  Lu Zhao ,  Yordan Rouskov ,  Parmeshwar Arewar ,  Venkatesh Gopalakrishnan ,  Sarat Chandra Subramaniam ,  Titus Constantin Miron

IPC: H04L29/06 ,  H04L29/08

CPC classification number: H04L63/083 ,  H04L63/08 ,  H04L63/102 ,  H04L63/1416 ,  H04L67/02 ,  H04L67/14 ,  H04L69/28

Abstract: Embodiments are directed to revoking user sessions using signaling. In one scenario, an identity platform operating on a computer system receives an indication indicating that a user's login account has been compromised, where the user's login account has an associated login session and corresponding session artifact that is valid for a specified amount of time. The identity platform generates a signal indicating that the login session is no longer trusted and that the user is to be re-directed to the identity platform to re-authenticate and renew the session artifact and provides the generated signal to various relying parties including at least one relying party that is hosting the login session for the user.

Abstract translation: 实施例旨在使用信令撤销用户会话。 在一种情况下，在计算机系统上操作的身份平台接收指示用户的登录帐户已经被泄密的指示，其中用户的登录帐户具有相关联的登录会话以及在指定的时间量内有效的对应的会话伪像。 身份平台产生指示登录会话不再被信任的信号，并且用户将被重定向到身份平台以重新认证和更新会话伪像，并将生成的信号提供给各种依赖方，包括至少 一个为用户托管登录会话的依赖方。