公开(公告)号：US20240248979A1

公开(公告)日：2024-07-25

申请号：US18595317

申请日：2024-03-04

申请人： Amazon Technologies, Inc.

发明人： Rachit Jain ,  Douglas Spencer Hewitt ,  Conor P. Cahill ,  Ogbeide Derrick Oigiagbe

IPC分类号： G06F21/45 ,  H04L9/40

CPC分类号： G06F21/45 ,  H04L63/0884 ,  H04L63/102 ,  H04L63/20

摘要： An Identity and Access Management Service implements persistent source values PSVs) for assumed identities. A source value (e.g., an original identifier of an entity) is persisted across assumed identities, facilitating identification of entities (users or applications) responsible for actions taken by the assumed (e.g., alternative) identities. The Manager receives a request to assume an identity. The request includes the entities current credentials and a PSV. The current credentials are authenticated and a persistent source value policy may be relied on to determine whether and/or how to grant the assumed identity. The PSV may be copied from credentials in the request in order to be included in the credentials for the requested identity that the Manager provides in response to the request. Use of the requested credentials, including the PSV, to access services or resources may be logged, the logs including the PSV from the request to assume the identity.

公开(公告)号：US11947657B2

公开(公告)日：2024-04-02

申请号：US17108854

申请日：2020-12-01

申请人： Amazon Technologies, Inc.

发明人： Rachit Jain ,  Douglas Spencer Hewitt ,  Conor P Cahill ,  Ogbeide Derrick Oigiagbe

IPC分类号： G06F21/45 ,  H04L9/40

CPC分类号： G06F21/45 ,  H04L63/0884 ,  H04L63/102 ,  H04L63/20

摘要： An Identity and Access Management Service implements persistent source values PSVs) for assumed identities. A source value (e.g., an original identifier of an entity) is persisted across assumed identities, facilitating identification of entities (users or applications) responsible for actions taken by the assumed (e.g., alternative) identities. The Manager receives a request to assume an identity. The request includes the entities current credentials and a PSV. The current credentials are authenticated and a persistent source value policy may be relied on to determine whether and/or how to grant the assumed identity. The PSV may be copied from credentials in the request in order to be included in the credentials for the requested identity that the Manager provides in response to the request. Use of the requested credentials, including the PSV, to access services or resources may be logged, the logs including the PSV from the request to assume the identity.

公开(公告)号：US20220171842A1

公开(公告)日：2022-06-02

申请号：US17108854

申请日：2020-12-01

申请人： Amazon Technologies, Inc.

发明人： Rachit Jain ,  Douglas Spencer Hewitt ,  Conor P. Cahill ,  Ogbeide Derrick Oigiagbe

IPC分类号： G06F21/45 ,  H04L29/06

摘要： An Identity and Access Management Service implements persistent source values PSVs) for assumed identities. A source value (e.g., an original identifier of an entity) is persisted across assumed identities, facilitating identification of entities (users or applications) responsible for actions taken by the assumed (e.g., alternative) identities. The Manager receives a request to assume an identity. The request includes the entities current credentials and a PSV. The current credentials are authenticated and a persistent source value policy may be relied on to determine whether and/or how to grant the assumed identity. The PSV may be copied from credentials in the request in order to be included in the credentials for the requested identity that the Manager provides in response to the request. Use of the requested credentials, including the PSV, to access services or resources may be logged, the logs including the PSV from the request to assume the identity.