公开(公告)号：US10887301B1

公开(公告)日：2021-01-05

申请号：US16218191

申请日：2018-12-12

申请人： United Services Automobile Association (USAA)

发明人： Alejandro Vera ,  Miguel Solis, Jr. ,  Hieu Nguyen ,  Jason Paul Hendry ,  Nathan Mahoney ,  Debra Randall Casillas

IPC分类号： H04L29/06 ,  H04L29/08 ,  H04L9/06 ,  G06F16/182

摘要： Techniques are described for client registration for authorizing an aggregator service to access data on behalf of an application, through self-registration of an application client identifier and issuance of authorization token(s) based on the application client identifier. Implementations provide a technique for dynamic client registration that avoids the need for manual vetting and manual generation of the client credential grant. Additionally, the implementations described herein enforce domain values around the scope and/or purpose of the client grant. This allows for support of application providers through a single point of registration that supports multi-layer and channel. This also allows for support of a scalable authorization solution for any suitable number of clients. The dynamic client registration process adds an additional layer of security through the OAuth client grant and mutual authentication.

公开(公告)号：US11063925B1

公开(公告)日：2021-07-13

申请号：US17112439

申请日：2020-12-04

申请人： United Services Automobile Association (USAA)

发明人： Alejandro Vera ,  Miguel Solís, Jr. ,  Hieu Nguyen ,  Jason Paul Hendry ,  Nathan Mahoney ,  Debra Randall Casillas

IPC分类号： H04L29/06 ,  H04L9/06 ,  G06F16/182 ,  H04L29/08

摘要： Techniques are described for client registration for authorizing an aggregator service to access data on behalf of an application, through self-registration of an application client identifier and issuance of authorization token(s) based on the application client identifier. Implementations provide a technique for dynamic client registration that avoids the need for manual vetting and manual generation of the client credential grant. Additionally, the implementations described herein enforce domain values around the scope and/or purpose of the client grant. This allows for support of application providers through a single point of registration that supports multi-layer and channel. This also allows for support of a scalable authorization solution for any suitable number of clients. The dynamic client registration process adds an additional layer of security through the OAuth client grant and mutual authentication.

公开(公告)号：US11888837B1

公开(公告)日：2024-01-30

申请号：US17356863

申请日：2021-06-24

申请人： United Services Automobile Association (USAA)

发明人： Alejandro Vera ,  Miguel Solís, Jr. ,  Hieu Nguyen ,  Jason Paul Hendry ,  Nathan Mahoney ,  Debra Randall Casillas

IPC分类号： H04L29/06 ,  H04L9/40 ,  G06F16/182 ,  H04L9/06 ,  H04L67/51 ,  H04L9/00

CPC分类号： H04L63/0807 ,  G06F16/1824 ,  G06F16/1834 ,  H04L9/0643 ,  H04L63/0884 ,  H04L67/51 ,  H04L9/50 ,  H04L2209/56

摘要： Techniques are described for client registration for authorizing an aggregator service to access data on behalf of an application, through self-registration of an application client identifier and issuance of authorization token(s) based on the application client identifier. Implementations provide a technique for dynamic client registration that avoids the need for manual vetting and manual generation of the client credential grant. Additionally, the implementations described herein enforce domain values around the scope and/or purpose of the client grant. This allows for support of application providers through a single point of registration that supports multi-layer and channel. This also allows for support of a scalable authorization solution for any suitable number of clients. The dynamic client registration process adds an additional layer of security through the OAuth client grant and mutual authentication.