Methods and systems for assigning e-keys to users to access and drive vehicles
US-9189900-B1 · Nov 17, 2015 · US
Sharing keys
US9923879B1 · US · B1
| Field | Value |
|---|---|
| Publication number | US-9923879-B1 |
| Application number | US-201514599162-A |
| Country | US |
| Kind code | B1 |
| Filing date | Jan 16, 2015 |
| Priority date | Jan 16, 2014 |
| Publication date | Mar 20, 2018 |
| Grant date | Mar 20, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The subject matter described herein can be embodied in a computer-readable medium storing instructions that cause one or more processors to perform operations including receiving, from a client device associated with a user account of a first user, a request to grant a second user access to a key associated with a credential. The credential is associated with the user account of the first user, the request includes an address of the second user, and the key permits access to a resource. The operations include accessing, at a server, a second user account based on the address of the second user, and associating, by the server, the key with the second user account, such that the second user is enabled to access the resource. The operations further include communicating, to the address of the second user, a message indicating that the second user account has been associated with the key.
First claim
Opening claim text (preview).
What is claimed is: 1. A non-transitory computer-readable storage medium including instructions, which upon execution by one or more processors, cause the one or more processors to perform operations comprising: receiving, from a client device associated with a user account of a first user, a request to grant a second user access to a key associated with a credential, the credential being associated with the user account of the first user, and the request including an address of the second user, wherein the key permits access to a resource; in response to receiving the request, accessing, at a server system, a second user account based on the address of the second user; before granting the second user access to the key: sending, by the server system, a message to the address of the second user, the message identifying the key; before authenticating the second user for access to the key and before modifying one or more permissions or authorizations to grant the second user access to the key, receiving, by the server system from a device associated with the second user, (i) a second message that requests access to the key and (ii) a third message that includes authentication information for the second user; and authenticating, by the server system, the second user based on the received authentication information; in response to authenticating the second user, granting, by the server system, the second user access to the key by modifying one or more permissions or authorizations such that the second user is enabled to obtain, from the server system and using the second user account, a representation of the key that allows access to the resource; communicating, to the address of the second user, a message indicating that the second user account has been associated with the key; after the communicating, receiving, by the server system, a second request associated with the second user account; and in response to receiving the second request, providing, by the server system, (i) credential information indicating a set of credentials associated with the second user account, (ii) key information indicating a set of keys associated with the second user account, or (iii) both the credential information and the key information. 2. The non-transitory computer-readable storage medium of claim 1 , wherein the operations further comprise: determining, at the server system, that the user account of the first user is authorized to provide the second user access to the key associated with the credential. 3. The non-transitory computer-readable storage medium of claim 1 , wherein the operations further comprise: in response to receiving the authentication information for the second user, retrieving the second user account based on the authentication information. 4. The non-transitory computer-readable storage medium of claim 1 , wherein the operations further comprise: determining that the second user does not have an account; sending an invitation to the to the address of the second user to invite the second user to create the second user account upon determining that the second user does not have a user account; receiving a response to the invitation; and generating the second user account based on the response. 5. The non-transitory computer-readable storage medium of claim 4 , wherein the invitation includes a uniform resource locator (URL) that permits the second user to provide authentication information for generating the second user account. 6. The non-transitory computer-readable storage medium of claim 1 , wherein the address of the second user is one of an e-mail address, a social network account address, a phone number, and an instant messaging account address. 7. The non-transitory computer-readable storage medium of claim 1 , wherein: the request to grant the second user access to the key includes one or more constraints on access for the second user to the key; and the third message is received after the second message. 8. The non-transitory computer-readable storage medium of claim 7 , wherein the one or more constraints include at least one of a time, a location, and a presence of the first user. 9. A computer-implemented method comprising: receiving, from a client device associated with a user account of a first user, a request to grant a second user access to a key associated with a credential, the credential being associated with the user account of the first user, and the request including an address of the second user, wherein the key permits access to a resource; in response to receiving the request, accessing, at a server system, a second user account based on the address of the second user; before granting the second user access to the key: sending, by the server system, a message to the address of the second user, the message identifying the key; before authenticating the second user for access to the key and before modifying one or more permissions or authorizations to grant the second user access to the key, receiving, by the server system from a device associated with the second user, (i) a second message that requests access to the key and (ii) a third message that includes authentication information for the second user; and authenticating, by the server system, the second user based on the received authentication information; in response to authenticating the second user, granting, by the server system, the second user access to the key by modifying one or more permissions or authorizations such that the second user is enabled to obtain, from the server system and using the second user account, a representation of the key that allows access to the resource; communicating, to the address of the second user, a message indicating that the second user account has been associated with the key; after the communicating, receiving, by the server system, a second request associated with the second user account; and in response to receiving the second request, providing, by the server system, (i) credential information indicating a set of credentials associated with the second user account, (ii) key information indicating a set of keys associated with the second user account, or (iii) both the credential information and the key information. 10. The computer-implemented method of claim 9 , further comprising: determining, at the server system, that the user account of the first user is authorized to provide the second user access to the key associated with the credential. 11. The computer-implemented method of claim 9 , further comprising: in response to receiving the authentication information for the second user, retrieving the second user account based on the authentication information. 12. The computer-implemented method of claim 9 , further comprising: determining that the second user does not have an account; sending an invitation to the to the address of the second user to invite the second user to create the second user account upon determining that the second user does not have a user account; receiving a response to the invitation; and generating the second user account based on the response. 13. The computer-implemented method of claim 12 , wherein the invitation includes a uniform resource locator (URL) that permits the second user to provide authentication information for generating the second user account; and wherein the address of the second user is one of an e-mail address, a social network account address, a phone number, and an instant messaging account address. 14. The computer-implemented method of claim 9 , wherein: the request to grant the second user access to the
Assignees
Inventors
Classifications
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
- H04L63/06Primary
for supporting key management in a packet data network (cryptographic mechanisms or cryptographic arrangements for key management H04L9/08) · CPC title
Entity profiles · CPC title
when the policy decisions are valid for a limited amount of time · CPC title
wherein the security policies are location-dependent, e.g. entities privileges depend on current location or allowing specific operations only from locally connected terminals · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9923879B1 cover?
- The subject matter described herein can be embodied in a computer-readable medium storing instructions that cause one or more processors to perform operations including receiving, from a client device associated with a user account of a first user, a request to grant a second user access to a key associated with a credential. The credential is associated with the user account of the first user,…
- Who is the assignee on this patent?
- Microstrategy Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/06. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Mar 20 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).