| 发明名称 | Methods and systems for distributing cryptographic data to authenticated recipients | ||
| 摘要 | A method for distributing cryptographic data to authenticated recipients includes receiving, by an access control management system, from a first client device, information associated with an encrypted data object. The method includes receiving, by the access control management system, from a second client device, a request for the information associated with the encrypted data object. The method includes verifying, by the access control management system, that a user of the second client device is identified in the received information associated with the encrypted data object. The method includes authenticating, by the access control management system, with an identity provider, the user of the second client device. The method includes sending, by the access control management system, to the second client device, the received information associated with the encrypted data object. | ||
| 申请公布号 | US8874902(B2) | 申请公布日期 | 2014.10.28 |
| 申请号 | US201314064274 | 申请日期 | 2013.10.28 |
| 申请人 | Virtru Corporation | 发明人 | Ackerly William Rodgers |
| 分类号 | H04L29/00;H04L29/06;G06F21/62 | 主分类号 | H04L29/00 |
| 代理机构 | Hyperion Law, LLC | 代理人 | Hyperion Law, LLC ;Gilbert Cynthia M. |
| 主权项 | 1. A method comprising: receiving, by an access control management system, from a first client device, information associated with an encrypted data object, the information including an identification of a role assigned to a user authorized to access the encrypted data object; receiving, by the access control management system, from a second client device, a request for the information associated with the encrypted data object; verifying, by the access control management system, that a user of the second client device is identified in the received information associated with the encrypted data object; verifying, by the access control management system, that the user of the second client device is assigned the role identified in the received information; selecting, by the access control management system, an identity provider from a plurality of identity providers, based on a user identifier included in the request for the received information associated with the encrypted data object, the user identifier associated with the user of the second client device; requesting, by the access control management system, from the selected identity provider, authentication of the user of the second client device; and sending, by the access control management system, to the second client device, the received information associated with the encrypted data object, responsive to the authentication by the selected identity provider of the user of the second client device. | ||
| 地址 | Washington DC US | ||