US 12,463,813 B2
Method, device, and non-transitory computer readable medium for generating and managing cryptographic keys
Valery Zubovsky, San Francisco, CA (US)
Assigned to CHARLES SCHWAB & CO., INC., San Francisco, CA (US)
Filed by Charles Schwab & Co., Inc, San Francisco, CA (US)
Filed on Aug. 1, 2023, as Appl. No. 18/363,210.
Prior Publication US 2025/0047490 A1, Feb. 6, 2025
Int. Cl. H04L 9/32 (2006.01); H04L 9/08 (2006.01)
CPC H04L 9/3213 (2013.01) [H04L 9/0891 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method of operating an authorization server, the method comprising:
computing an encryption key based on information associated with a user session with a client;
embedding the encryption key into at least one access token;
mapping, within a database, the at least one access token to an access token handle associated with the user session;
returning the access token handle to the client; and
selectively providing the access token to at least one web Application Programming Interface (API) in response to receipt of the access token handle from the at least one web API.