| CPC H04L 63/0272 (2013.01) [H04L 12/4641 (2013.01); H04L 63/029 (2013.01); H04L 63/0428 (2013.01)] | 18 Claims |
|
1. A method, comprising:
authenticating, by a process, a user at a client device, the authenticating verifying that the user is both present at the client device and authorized to access one or more secured resources;
establishing, by the process in response to authenticating the user, a secure communication session for the client device to access the one or more secured resources;
confirming, by the process, at a later time during the secure communication session, whether the user is still authenticated at the client device;
maintaining, by the process, the access to the one or more secured resources on the secure communication session at the later time in response to the user still being authenticated at the client device at the later time; and
restricting, by the process, the access to the one or more secured resources on the secure communication session at the later time in response to the user not being authenticated at the client device at the later time due to the user no longer being present at the client device at which the user was authenticated, wherein:
i) additional persons are never authorized to access the one or more secured resources, and wherein restricting the access to the one or more secured resources on the secure communication session occurs in response to the detecting of an additional person, or
ii) the process receives an indication to expect the additional person during the secure communications session and, in response to the indication, maintains the access to the one or more secured resources.
|