主权项 |
1. A method for distributing credentials among electronic devices on a computer network comprising:
at a first client application operating on a first electronic device, instantiating an account in the first client application, wherein the account is instantiated independently of a pre-existing account on an outside service, wherein instantiating the account in the first client application includes activating the first client application prior to performing a secondary factor of authentication in a two-factor authentication for a transaction involving the pre-existing account at the outside service; generating a key message, comprising a first cryptographic key, at the first client application; receiving the key message at a key master service; associating a key identifier with the first cryptographic key of the key message; storing the first cryptographic key as non-transitory data in a computer database at the key master service indexed at least by the key identifier; wherein storing the first cryptographic key comprises storing the first cryptographic key with an expiration condition, wherein the expiration condition is conditional, at least in part, on a number of requests attempting to access the first cryptographic key; receiving a request for a cryptographic key from the outside service, wherein the request specifies a key identifier; and responding to the request according to the key identifier; wherein, responding to the request comprises responding to the request by preventing access to the first cryptographic key after the expiration condition is satisfied; wherein preventing access to the first cryptographic key comprises disassociating the first cryptographic key and the key identifier. |