Patent Issued for Identifying revoked credentials (USPTO 11425115): Workday Inc.

2022 SEP 09 (NewsRx) -- By a News Reporter-Staff News Editor at Insurance Daily News -- A patent by the inventors Hamel, Bjorn (Dublin, CA, US), Ruggiero, Jonathan David (Danville, CA, US), filed on June 28, 2018, was published online on August 23, 2022, according to news reporting originating from Alexandria, Virginia, by NewsRx correspondents.

Patent number 11425115 is assigned to Workday Inc. (Pleasanton, California, United States).

The following quote was obtained by the news editors from the background information supplied by the inventors: “Modern users of database systems (e.g., human resources database systems or financial database systems) rely on the database systems for access to their personal information or verification (e.g., salary, tax details, employment status, etc. or university degree, certifications, criminal record, ownership, etc.). Users trust the database systems to contain correct information. When a user desires to provide personal information or verification information from the database system to another database system (e.g., providing previous employment or salary information to a potential employer, providing previous insurance information to a potential employer), the user typically accesses the information on the database system and then provides the information manually to the other database system (e.g., by inputting data into an electronic form or uploading digital paperwork). The user trusts the information it receives from the database system, however the other database system cannot have the same level of trust in the information it receives from the user. There is a problem wherein it is difficult to trust data as it passes from system to system via a human.”

In addition to the background information obtained for this patent, NewsRx journalists also obtained the inventors’ summary information for this patent: “The invention can be implemented in numerous ways, including as a process; an apparatus; a system; a composition of matter; a computer program product embodied on a computer readable storage medium; and/or a processor, such as a processor configured to execute instructions stored on and/or provided by a memory coupled to the processor. In this specification, these implementations, or any other form that the invention may take, may be referred to as techniques. In general, the order of the steps of disclosed processes may be altered within the scope of the invention. Unless stated otherwise, a component such as a processor or a memory described as being configured to perform a task may be implemented as a general component that is temporarily configured to perform the task at a given time or a specific component that is manufactured to perform the task. As used herein, the term ‘processor’ refers to one or more devices, circuits, and/or processing cores configured to process data, such as computer program instructions.

“A detailed description of one or more embodiments of the invention is provided below along with accompanying figures that illustrate the principles of the invention. The invention is described in connection with such embodiments, but the invention is not limited to any embodiment. The scope of the invention is limited only by the claims and the invention encompasses numerous alternatives, modifications and equivalents. Numerous specific details are set forth in the following description in order to provide a thorough understanding of the invention. These details are provided for the purpose of example and the invention may be practiced according to the claims without some or all of these specific details. For the purpose of clarity, technical material that is known in the technical fields related to the invention has not been described in detail so that the invention is not unnecessarily obscured.

“A system for providing an application comprises an interface configured to receive an indication to provide an application to a device, and a processor configured to provide the application to the device. The application is configured to receive a request for a list of valid credentials, determine a list of stored credentials, provide the list of stored credentials to a database system, receive an indication of revoked credentials from the database system, and determine the list of valid credentials based at least in part on the list of stored credentials and the revoked credentials.

“A system for identifying revoked credential information comprises an interface configured to receive a request for a list of valid credentials, and a processor configured to determine a list of stored credentials, provide the list of stored credentials to a database system, receive an indication of revoked credentials from the database system, and determine the list of valid credentials based at least in part on the list of stored credentials and the revoked credentials.

“A system for sharing credentials comprises a system for a user system (e.g., a computing system for use by a user) interacting with a database system. The database system further interacts with a credential issuing system. The database system stores user information for the user. The database system further determines a set of credentials available to the user based on the user information as well as record of previously issued credentials. The credentials comprise categories satisfied by the user information at differing levels of specificity. For example, in the case where the user comprises an employee earning $95,000 per year, the database system could determine credentials available to the user indicating that the user earns more than $60,000 per year, that the user earns more than $80,000 per year, that the user earns in the range of $90,000-$100,000 per year, etc. When the user interacts with the database system using a credential app, the database system determines the set of credentials available to the user and provides the list of credentials to the credential app or application. The user can then request that one or more available credentials be downloaded to local storage using the credential app. When the user interacts with another system requesting personal information or verification information, a stored credential can be used to provide proof of the requested information.”

The claims supplied by the inventors are:

“1. A system for providing an application, comprising: an interface configured to: receive an indication to provide the application to a device; a hardware processor; and a memory coupled with the hardware processor, wherein the memory is configured to provide the hardware processor with instructions which when executed cause the hardware processor to: provide the application to the device, wherein the application is configured to: receive a request for a list of valid credentials; determine a list of stored credentials; provide the list of the stored credentials to a database system, wherein the database system is configured to: determine revoked credentials, comprising to: query a credential system to determine whether a revocation indication has been written to a distributed ledger network for at least one stored credential of the list of the stored credentials; and determine new credentials; receive an indication of the revoked credentials from the database system; receive an indication of the new credentials from the database system; determine the list of the valid credentials based at least in part on the list of the stored credentials, the revoked credentials, and the new credentials; display the list of the valid credentials and the revoked credentials; determine whether to purge metadata associated with the revoked credentials; and in response to a determination that the metadata associated with the revoked credentials is to be purged, delete, from a user system, one or more of the stored credentials associated with the revoked credentials and the metadata associated with the revoked credentials.

“2. The system of claim 1, wherein the hardware processor is further configured to retrieve the new credentials.

“3. The system of claim 1, wherein the database system is further configured to revoke one or more credentials.

“4. The system of claim 3, wherein one or more new credentials are provided to the database system for identifying revoked credential information.

“5. The system of claim 3, wherein the database system is further configured to provide a set of revoked credential identifiers to the credential system.

“6. The system of claim 5, wherein the credential system is configured to: for each credential identifier of the set of revoked credential identifiers: store an indication in a distributed ledger that the credential associated with the credential identifier is revoked.

“7. The system of claim 1, wherein the database system is configured to: receive the list of the stored credentials; provide an indication of the stored credentials to a credential server; receive an indication from the credential server that one or more stored credentials of the stored credentials has been revoked.

“8. The system of claim 1, wherein the stored credentials comprise credentials verifying proof of salary, proof of employment, or proof of health insurance status.

“9. A method for providing an application, comprising: receiving an indication to provide the application to a device; and providing, using a processor, the application to the device, wherein the application is configured to: receive a request for a list of valid credentials; determine a list of stored credentials; provide the list of the stored credentials to a database system, wherein the database system is configured to: determine revoked credentials, comprising to: query a credential system to determine whether a revocation indication has been written to a distributed ledger network for at least one stored credential of the list of the stored credentials; and determine new credentials; receive an indication of the revoked credentials from the database system; receive an indication of the new credentials from the database system; determine the list of the valid credentials based at least in part on the list of the stored credentials, the revoked credentials, and the new credentials; display the list of the valid credentials and the revoked credentials; determine whether to purge metadata associated with the revoked credentials; and in response to a determination that the metadata associated with the revoked credentials is to be purged, delete, from a user system, one or more of the stored credentials associated with the revoked credentials and the metadata associated with the revoked credentials.

“10. A computer program product for providing an application, the computer program product being embodied in a non-transitory computer readable storage medium and comprising computer instructions which when executed cause a processor to perform operations comprising: receiving an indication to provide the application to a device; and providing the application to the device, wherein the application is configured to: receive a request for a list of valid credentials; determine a list of stored credentials; provide the list of the stored credentials to a database system, wherein the database system is configured to: determine revoked credentials, comprising to: query a credential system to determine whether a revocation indication has been written to a distributed ledger network for at least one stored credential of the list of the stored credentials; and determine new credentials; receive an indication of the revoked credentials from the database system; receive an indication of the new credentials from the database system; determine the list of the valid credentials based at least in part on the list of the stored credentials, the revoked credentials, and the new credentials; display the list of the valid credentials and the revoked credentials; determine whether to purge metadata associated with the revoked credentials; and in response to a determination that the metadata associated with the revoked credentials is to be purged, delete, from a user system, one or more of the stored credentials associated with the revoked credentials and the metadata associated with the revoked credentials.

“11. A system for identifying revoked credential information, comprising: an interface configured to: receive a request for a list of valid credentials; and a hardware processor; and a memory coupled with the hardware processor, wherein the memory is configured to provide the hardware processor with instructions which when executed cause the hardware processor to: determine a list of stored credentials; provide the list of the stored credentials to a database system, wherein the database system is configured to: determine revoked credentials, comprising to: query a credential system to determine whether a revocation indication has been written to a distributed ledger network for at least one stored credential of the list of the stored credentials; and determine new credentials; receive an indication of the revoked credentials from the database system; receive an indication of the new credentials from the database system; determine the list of the valid credentials based at least in part on the list of the stored credentials, the revoked credentials, and the new credentials; display the list of the valid credentials and the revoked credentials; determine whether to purge metadata associated with the revoked credentials; and in response to a determination that the metadata associated with the revoked credentials is to be purged, delete, from a user system, one or more of the stored credentials associated with the revoked credentials and the metadata associated with the revoked credentials.”

URL and more information on this patent, see: Hamel, Bjorn. Identifying revoked credentials. U.S. Patent Number 11425115, filed June 28, 2018, and published online on August 23, 2022. Patent URL: http://patft.uspto.gov/netacgi/nph-Parser?Sect1=PTO1&Sect2=HITOFF&d=PALL&p=1&u=%2Fnetahtml%2FPTO%2Fsrchnum.htm&r=1&f=G&l=50&s1=11425115.PN.&OS=PN/11425115RS=PN/11425115

(Our reports deliver fact-based news of research and discoveries from around the world.)