&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
			function printpage()
			{
			window.print()
			}
			</script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11729169.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,729,169 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Identity defined secure connect</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Cameron Williams,  Denver, CO (US);  Ryan Privette,  Denver, CO (US);  Christopher Chad Wheeler,  Denver, CO (US);  Andrew John Cer,  Highlands Ranch, CO (US); and  Joseph Nathan Zendle,  Centennial, CO (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  SailPoint Technologies, Inc.,  Wilmington, DE (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Sailpoint Technologies, Inc.,  Wilmington, DE (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Dec.  17, 2021, as Appl. No. 17/554,942.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/554,942 is a continuation of application No. 16/100,068, filed on Aug.  9, 2018, granted, now 11,240,240.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 62/543,118, filed on Aug.  9, 2017.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2022/0109675 A1, Apr.  7, 2022</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>This patent is subject to a terminal disclaimer.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 9/40</b></i> (2022.01); <i><b>H04L 12/46</b></i> (2006.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/0884</b></i> (2013.01)&#xa0;[<i><b>H04L 12/4633</b></i> (2013.01); <i><b>H04L 12/4641</b></i> (2013.01); <i><b>H04L 63/0272</b></i> (2013.01); <i><b>H04L 63/062</b></i> (2013.01); <i><b>H04L 63/0823</b></i> (2013.01); <i><b>H04L 63/0846</b></i> (2013.01); <i><b>H04L 63/0876</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>21 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11729169-20230815-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A system for computer security, the system comprising:<div class="claim_text">a triage zone and a production zone logically or physically separate from the triage zone, wherein a set of protected resource can be accessed through the production zone but cannot be accessed through the triage zone, and wherein:<div class="claim_text">the triage zone is adapted to obtain an authentication request associated with a client device, the triage zone including:<div class="claim_text">an identity manager to, upon successful validation in association with the authentication request, generate an ephemeral token and enable an associated dynamic certificate set to expire at a specific time, and to create or update a stored entry based on the dynamic certificate, wherein the ephemeral token is adapted to be provided to the client device to allow access to the production zone, and not the triage zone, based on the associated dynamic certificate;</div>
                    <div class="claim_text">the production zone adapted to:<div class="claim_text">establish a connection with the client device based on the dynamic certificate, ephemeral token, and a username; and</div>
                      <div class="claim_text">verify, by accessing the stored entry, that the authentication request provided by the client device is valid.</div>
                    </div>
                  </div>
                </div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>