| CPC H04L 63/1416 (2013.01) [H04L 63/0807 (2013.01); H04L 63/0876 (2013.01); H04L 63/1433 (2013.01); H04L 63/168 (2013.01)] | 20 Claims |
|
8. A method for policy-controlled management of tokens for providing secure access to services in cloud-based multi-tenant systems, the method comprising:
requesting by a local application running on a client device access to a service on a remote application running on a remote instance of a web server, wherein a token is required to access the service;
correlating the token with a plurality of tokens in a token repository for identifying a policy from a plurality of policies associated with the token, wherein:
the plurality of policies specify access to a plurality of remote applications to be used at the client device for accessing a plurality of services using the plurality of tokens, and
the plurality of tokens is categorized into a plurality of categories in the token repository based on the plurality of policies, and the plurality of tokens are further subcategorized based on a threat level associated with the plurality of tokens;
determining an authorization by a mid-link server corresponding to the token for accessing the service based on the correlation;
in response to determining the authorization, either:
authorizing the token for accessing the service via the remote application, or
blocking the token when unauthorized to prevent access to the service; and
assigning one or more confidence scores to each token based on their categories, compliance with the plurality of policies, and the threat level, wherein the one or more confidence scores indicate need to re-authorize the plurality of tokens or disable the plurality of tokens temporarily.
|