Privilege revocation for client devices
US-10715507-B1 · Jul 14, 2020 · US
Systems and methods for end user privilege elevation
US12526286B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12526286-B2 |
| Application number | US-202318193955-A |
| Country | US |
| Kind code | B2 |
| Filing date | Mar 31, 2023 |
| Priority date | Mar 31, 2023 |
| Publication date | Jan 13, 2026 |
| Grant date | Jan 13, 2026 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Systems and methods for end user elevation and anonymous administrative login are disclosed. An agent executing on a client device can provide a graphical element within a user interface presented by the client device upon detection of a request for elevated user privileges. Upon an interaction with the graphical element, the agent transmits, to a server, data corresponding to the request for elevated user privileges, and receives, from the server, a message indicating approval of the request for elevated user privileges. The agent provides, to the operating system of the client device, an indication that the request for elevated user privileges is approved.
First claim
Opening claim text (preview).
What is claimed is: 1 . A method comprising: providing, by an agent executing on a client device, a graphical element within a user interface presented by an operating system of the client device responsive to detection of a request for elevated user privileges, wherein the graphical element is provided prior to transmitting any request for elevated privileges to a first server; receiving, by the agent, user interaction with the graphical element; responsive to the user interaction with the graphical element: transmitting, by the agent, to a second server, a file corresponding to the request for elevated user privileges, receiving, by the agent, from the second server, virus scan data generated based on the file, and initiating, by the agent, transmission of the request for elevated privileges to the first server; transmitting, by the agent to the first server, data corresponding to the request for elevated user privileges, the data comprising the request for elevated user privileges and the virus scan data; receiving, by the agent from the first server, a message indicating approval of the request for elevated user privileges; and providing, by the agent to the operating system of the client device, an indication that the request for elevated user privileges is approved. 2 . The method of claim 1 , further comprising generating, by the client device, an entry identifying the agent in a registry of the operating system. 3 . The method of claim 1 , further comprising determining, by the agent, one or more of a program name of a program executed by the client device that initiated the request for elevated user privileges, a publisher of the program, a file path identifying a storage location of the program, a file hash of the program, or a username associated with the request for elevated user privileges. 4 . The method of claim 1 , further comprising: providing, by the agent, within the user interface presented by the operating system, a field that receives text input; and transmitting, by the agent, the text input as part of the data corresponding to the request for elevated user privileges. 5 . The method of claim 1 , further comprising storing, by the client device, the agent in memory of the client device as a dynamic library. 6 . The method of claim 1 , further comprising generating, by the agent, a timestamp corresponding to the request for elevated user privileges. 7 . The method of claim 1 , further comprising providing, by the agent responsive to transmitting the data corresponding to the request for elevated user privileges, a second graphical element within the user interface presented by the operating system, the second graphical element indicating that approval for elevated user privileges has been requested. 8 . The method of claim 1 , further comprising determining, by the agent, a certificate thumbprint of a digital certificate corresponding to a program that initiated the request for elevated user privileges. 9 . The method of claim 1 , wherein the message comprises an authentication credential for the operating system, and providing the indication that the request for elevated user privileges is approved comprises providing the authentication credential to the operating system. 10 . A system comprising: a client device that executes an agent configured to: provide a graphical element within a user interface presented by an operating system of the client device responsive to detection of a request for elevated user privileges, wherein the graphical element is provided prior to transmitting any request for elevated privileges to a first server; receive, by the agent, user interaction with the graphical element; responsive to the user interaction with the graphical element: transmitting, by the agent, to a second server, a file corresponding to the request for elevated user privileges, receiving, by the agent, from the second server, virus scan data generated based on the file, and initiating, by the agent, transmission of the request for elevated privileges to the first server; transmit, to the first server, data corresponding to the request for elevated user privileges, the data comprising the request for elevated user privileges and the virus scan data; receive, from the first server, a message indicating approval of the request for elevated user privileges; and provide, to the operating system of the client device, an indication that the request for elevated user privileges is approved. 11 . The system of claim 10 , wherein the client device is further configured to generate an entry identifying the agent in a registry of the operating system. 12 . The system of claim 10 , wherein the agent is further configured to determine one or more of a program name of a program executed by the client device that initiated the request for elevated user privileges, a publisher of the program, a file path identifying a storage location of the program, a file hash of the program, or a username associated with the request for elevated user privileges. 13 . The system of claim 10 , wherein the agent is further configured to: provide, within the user interface presented by the operating system, a field that receives text input for display; and transmit the text input as part of the data corresponding to the request for elevated user privileges. 14 . The system of claim 10 , wherein the client device is further configured to store the agent in memory of the client device as a dynamic library. 15 . The system of claim 10 , wherein the agent is further configured to generate a timestamp corresponding to the request for elevated user privileges. 16 . The system of claim 10 , wherein the agent is further configured to provide, responsive to transmitting the data corresponding to the request for elevated user privileges, a second graphical element within the user interface presented by the operating system, the second graphical element indicating that approval for elevated user privileges has been requested. 17 . The system of claim 10 , wherein the agent is further configured to determine a certificate thumbprint of a digital certificate corresponding to a program that initiated the request for elevated user privileges. 18 . The system of claim 10 , wherein the message comprises an authentication credential for the operating system, and the agent is further configured to provide the indication that the request for elevated user privileges is approved by providing the authentication credential to the operating system.
Assignees
Inventors
Classifications
Entity profiles · CPC title
- H04L63/08Primary
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
- H04L63/105Primary
Multiple levels of security · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12526286B2 cover?
- Systems and methods for end user elevation and anonymous administrative login are disclosed. An agent executing on a client device can provide a graphical element within a user interface presented by the client device upon detection of a request for elevated user privileges. Upon an interaction with the graphical element, the agent transmits, to a server, data corresponding to the request for e…
- Who is the assignee on this patent?
- Connectwise Llc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/08. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jan 13 2026 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).