| 发明名称 |
Access control to secured application features using client trust levels |
| 摘要 |
Architecture that facilitates the conveyance of a trust level when the caller makes a call, the trust level in dependence on the state of the caller system. The callee (call recipient) receives notification of the trust level and can use this information in the communication such as to request verification from the caller and/or initiate other modes of communication. A caller can authenticate the caller identity in different ways to a communication server. Based on that, the server can assign an appropriate server-verified trust level to the caller. Further, an unsecured phone controller can indicate a lower client-side defined trust level. The server verified and client-side trust levels are then sent to the callee, where the callee determines whether to allow caller access to one or more secured features based on the feature values and the trust level imposed by the callee to access those features. |
| 申请公布号 |
US9531695(B2) |
申请公布日期 |
2016.12.27 |
| 申请号 |
US200912483239 |
申请日期 |
2009.06.12 |
| 申请人 |
Microsoft Technology Licensing, LLC |
发明人 |
Koppolu Lokesh Srinivas;Raghav Amritansh;Krantz Anton W. |
| 分类号 |
G06F15/16;H04L29/06;G06F21/33;G06F21/50 |
主分类号 |
G06F15/16 |
| 代理机构 |
|
代理人 |
Adjemian Monica;Wong Tom;Minhas Micky |
| 主权项 |
1. A computer-implemented communications security system, comprising:
a caller client device that computes caller client device trust level information of the caller client device; a registration server that receives registration sign-in credentials from the caller client device and the caller client device trust level information, and determines registration trust level information based on the registration sign-in credentials and the caller client device trust level information; and a callee client device that receives from the caller client device, the registration trust level information and the caller client device trust level information, the callee client device managing communicative interaction with the caller client based on the registration trust level information, wherein the callee client device requests access to features of secured applications based on the registration trust level information and the computed caller client device trust level information received from the caller client device, and wherein the caller client device creates a verify message designating an access security state of the caller client device, and recomputes the caller client device trust level information based on a change to the access security state of the caller client device and sends the recomputed caller client device trust level information to the callee client device. |
| 地址 |
Redmond WA US |
