CPC H04L 63/102 (2013.01) [G06F 21/32 (2013.01); G06F 21/45 (2013.01); H04L 63/0853 (2013.01); H04L 63/108 (2013.01)] | 12 Claims |
1. A method comprising:
receiving, by a server computer, from a first application on a user device, an indication that a user has been authenticated;
receiving, by the server computer, from a second application on the user device, an indication that the user is detected, wherein the user device receives the indication that the user is detected from a wearable device on the user,
determining, by the server computer, that the user has authorized access to user data associated with a digital identity of the user, wherein the user data associated with the digital identity of the user comprises one or more of a date of birth, social security number, or address;
based on receiving the two indications within a time period and the determining that the user has authorized the access to the user data associated with the digital identity of the user, generating or maintaining a trust token for the user, wherein the trust token is stored in association with the digital identity of the user and used to extend a period in which the user remains authenticated to a secure system;
receiving, by the server computer, from the second application on the user device, an indication that the user is not detected;
based on receiving the indication that the user is not detected, revoking the trust token;
based at least on receiving a second indication that the user has been authenticated and a second indication that the user is detected, generating a second trust token for the user;
determining, by the server computer, that the user has revoked the access to the user data associated with the digital identity of the user; and
revoking, by the server computer, the second trust token based on determining that the user has revoked the access.
|