Applying device policies using a management token
US-2018337951-A1 · Nov 22, 2018 · US
Method, apparatus, and system for processing two-dimensional barcodes
US10790970B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10790970-B2 |
| Application number | US-202016802640-A |
| Country | US |
| Kind code | B2 |
| Filing date | Feb 27, 2020 |
| Priority date | Dec 14, 2016 |
| Publication date | Sep 29, 2020 |
| Grant date | Sep 29, 2020 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
This specification describes techniques for processing service requests. One example method includes receiving an electronic credential request from a client, retrieving an electronic credential that corresponds to the user identifier, generating server signature information, and transmitting the server signature information and the electronic credential to the client. The server signature information includes the electronic credential and a user public key of the client. The electronic credential and the user public are signed using a server private key. The server signature information is configured to be cryptographically verified by the client and configured to enable the client to generate a two-dimensional barcode based on the electronic credential. The electronic credential included in the two-dimensional barcode is configured to be verified by a credential verification device. The credential verification end device is configured to generate the electronic credential based on the user identifier.
First claim
Opening claim text (preview).
The invention claimed is: 1. A computer-implemented method for processing service requests, the computer-implemented method comprising: receiving, by one or more processors, an electronic credential request from a client, wherein the electronic credential request comprises a user identifier; retrieving, by the one or more processors, an electronic credential that corresponds to the user identifier; generating, by the one or more processors, server signature information, wherein the server signature information comprises the electronic credential and a user public key of the client, and wherein the electronic credential and the user public key are signed using a server private key within a predetermined time period; and transmitting, by the one or more processors, the server signature information to the client, wherein the client is configured to cryptographically verify the server signature information within the predetermined time period and to generate a two-dimensional barcode based on the electronic credential, wherein the electronic credential included in the two-dimensional barcode is configured to be verified by a credential verification device. 2. The computer-implemented method of claim 1 , wherein signing the electronic credential using the server private key comprises: allocating a user signature key to the electronic credential, and signing the electronic credential and a first user public key by using the server private key, wherein the user signature key comprises the first user public key. 3. The computer-implemented method of claim 2 , wherein signing the electronic credential using the server private key comprises: obtaining a second user public key sent by the client, and signing the electronic credential and the second user public key by using the server private key. 4. The computer-implemented method of claim 2 , wherein the user signature key is an asymmetric key. 5. The computer-implemented method of claim 2 , wherein the first user public key is signed by using the server private key, transmitting the server signature information and the electronic credential to the client comprises: transmitting the allocated user signature key, the server signature information, and the electronic credential to the client. 6. The computer-implemented method of claim 1 , further comprising: determining a service validity time based on the electronic credential request; and verifying whether the service validity time complies with a service specification. 7. The computer-implemented method of claim 6 , wherein the service validity time is based on a type of the electronic credential. 8. The computer-implemented method of claim 1 , wherein signing the electronic credential and the user public key comprises: performing a hash operation on the user public key and the electronic credential by using a hash algorithm to obtain a hash value; and signing the hash value by using the server private key to obtain the server signature information. 9. A non-transitory, computer-readable medium storing one or more instructions executable by a computer system to perform operations comprising: receiving an electronic credential request from a client, wherein the electronic credential request comprises a user identifier; retrieving an electronic credential that corresponds to the user identifier; generating server signature information, wherein the server signature information comprises the electronic credential and a user public key of the client, and wherein the electronic credential and the user public key are signed using a server private key within a predetermined time period; and transmitting the server signature information to the client, wherein the client is configured to cryptographically verify the server signature information within the predetermined time period and to generate a two-dimensional barcode based on the electronic credential, wherein the electronic credential included in the two-dimensional barcode is configured to be verified by a credential verification device. 10. The non-transitory, computer-readable medium of claim 9 , wherein signing the electronic credential using the server private key comprises: allocating a user signature key to the electronic credential, and signing the electronic credential and a first user public key by using the server private key, wherein the user signature key comprises the first user public key. 11. The non-transitory, computer-readable medium of claim 10 , wherein signing the electronic credential using the server private key comprises: obtaining a second user public key sent by the client, and signing the electronic credential and the second user public key by using the server private key. 12. The non-transitory, computer-readable medium of claim 10 , wherein the user signature key is an asymmetric key. 13. The non-transitory, computer-readable medium of claim 12 , wherein the first user public key is signed by using the server private key, transmitting the server signature information and the electronic credential to the client comprises: transmitting the allocated user signature key, the server signature information, and the electronic credential to the client. 14. The non-transitory, computer-readable medium of claim 9 , further comprising: determining a service validity time based on the electronic credential request; and verifying whether the service validity time complies with a service specification. 15. A computer-implemented system, comprising: one or more computers; and one or more computer memory devices interoperably coupled with the one or more computers and having tangible, non-transitory, machine-readable media storing one or more instructions that, when executed by the one or more computers, perform one or more operations comprising: receiving an electronic credential request from a client, wherein the electronic credential request comprises a user identifier; retrieving an electronic credential that corresponds to the user identifier; generating server signature information, wherein the server signature information comprises the electronic credential and a user public key of the client, and wherein the electronic credential and the user public key are signed using a server private key within a predetermined time period; transmitting the server signature information to the client, wherein the client is configured to cryptographically verify the server signature information within the predetermined time period and to generate a two-dimensional barcode based on the electronic credential, wherein the electronic credential included in the two-dimensional barcode is configured to be verified by a credential verification device. 16. The computer-implemented system of claim 15 , wherein signing the electronic credential using the server private key comprises: allocating a user signature key to the electronic credential, and signing the electronic credential and a first user public key by using the server private key, wherein the user signature key comprises the first user public key. 17. The computer-implemented system of claim 15 , wherein signing the electronic credential using the server private key comprises: obtaining a second user public key sent by the client, and signing the electronic credential and the second user public key by using the server private key. 18. The computer-implemented system of claim 16 , wherein the user signature key is an asymmetric key. 19. The computer-implemented system of claim 18 , wherein the first user
Assignees
Inventors
Classifications
the source of the received data · CPC title
- H04L63/123Primary
received data contents, e.g. message integrity · CPC title
multi-dimensional coding · CPC title
- G06F21/36Primary
by graphic or iconic representation · CPC title
when the policy decisions are valid for a limited amount of time · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10790970B2 cover?
- This specification describes techniques for processing service requests. One example method includes receiving an electronic credential request from a client, retrieving an electronic credential that corresponds to the user identifier, generating server signature information, and transmitting the server signature information and the electronic credential to the client. The server signature info…
- Who is the assignee on this patent?
- Alibaba Group Holding Ltd
- What technology area does this patent fall under?
- Primary CPC classification H04L63/123. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Sep 29 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 3 related publications on this page (citations in our corpus or others sharing the same primary CPC).