Browse Prior Art Database

A new authorization and authentication mechanism and system for temporary accessing

IP.com Disclosure Number: IPCOM000235749D
Publication Date: 2014-Mar-25
Document File: 6 page(s) / 120K

Publishing Venue

The IP.com Prior Art Database

Abstract

The key idea of this invention is to provide a new authorization and authentication mechanism to let a user can share his account to another user without exposing his username/password, he can generate a temporary string token which encrypted his account info, authorization message and session expiry time. Account user can use it token to login the target system to do the authorized operation.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 52% of the total text.

Page 01 of 6

A new authorization and authentication mechanism and system for temporary accessing

Most people had an experience of sharing his account and password with another user in a special condition. For example,
1. In BPM system, an admin user wants to process an urgent task while he is not available, he has to share his account with his backup to do the job.

2. User wants to ask somebody else to buy something online. He needs to share his/her account so that others can do shopping for him/her conveniently.

3. Customer wants to share his account with Technical Support Engineers so that Technical Support Engineers can log in his/her system to reproduce the problem customer encountered so that Technical Support Engineers can solve the problem conveniently.

In one word, there are many chances that people needs to share his username and password with others. Obviously, there is risk to share one's username and password. One solution is to change the password, but most people can't afford changing the password frequently and repeatedly. Another solution is to use a guest account but we can't control it safely and freely. If we can find a way to help us to do some kind of routine conveniently with necessary privilege of our account without disclosing the credentials of our own account, it will greatly make our life or work better.

In this invention, a new method is provided to address the above problem. You can authorize the user with your account at any time and selectively choose functions, expire time and other controllable factors to this temporary time of accessing your system.

The key idea of this invention is to provide a new authorization and authentication mechanism to let a user can share his account to another user without exposing his us...