Patents by Inventor John KNIES
John KNIES has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 12587519Abstract: Systems and methods for enforcing compliance-program conformity during authorization-token generation are presented. Applications may be registered with an identity and access management (IAM) system. The registration of the application may include whether the application is subject to one or more compliance program(s). When an authorization token is requested from the IAM system, the IAM system may (a) determine the set of authorization information needed in the token, and (b) determine whether the application is subject to a compliance program. The IAM system may then check an approval source of record to determine whether the user was legitimately approved for the required authorization prior to granting an authorization token. If there is a mismatch between the approval source of record and the authorization information associated with the user identity, then the mismatch may cause certain mitigation actions to be performed.Type: GrantFiled: May 21, 2024Date of Patent: March 24, 2026Assignee: Level 3 Communications, LLCInventors: Jamie Lin, Sylvan H. Morley, III, John Knies, Jason Lish, Vishal Vallabha, Glenn Balanoff, Christopher Buzzetta, Alexander Tate, Joseph Serrano, Mark Howe
-
Publication number: 20250343787Abstract: An identity and access management system including: a processor; and memory including instructions that, when executed by the processor, cause the processor to: receive an API token request for an authorization token to authorize an application function associated with a target API of an application; determine identity information from the API token request; retrieve attributes associated with the identity information; identify the target API and an API function profile associated with the target API for the application function; filter the attributes associated with the identity information based on the API function profile; generate the authorization token according to the filtered attributes; and transmit the authorization token in response to the API token request.Type: ApplicationFiled: July 17, 2025Publication date: November 6, 2025Applicant: Level 3 Communications, LLCInventors: Jamie Lin, Vishal Vallabha, John T. Pugaczewski, Christopher Buzzetta, Glenn Balanoff, John Knies, Sylvan H. Morley, III, Jason Lish
-
Publication number: 20250267136Abstract: Authorization for a user may be dynamically tailored per application or per application function, rather than globally managed by an administrator. For example, in some embodiments, an identity access management system may generate a suitable authorization token (or authorization token information) to enable a user to login to an application or perform a particular function. The authorization token may be dynamically generated and tailored based on filtering various identity information otherwise available from an identity system, access boundaries of applicable application functions, or other factors.Type: ApplicationFiled: May 7, 2025Publication date: August 21, 2025Applicant: Level 3 Communications, LLCInventors: Sylvan H. Morley, III, Jamie Lin, Michael Benjamin, John Knies
-
Patent number: 12368702Abstract: An identity and access management system including: a processor; and memory including instructions that, when executed by the processor, cause the processor to: receive an API token request for an authorization token to authorize an application function associated with a target API of an application; determine identity information from the API token request; retrieve attributes associated with the identity information; identify the target API and an API function profile associated with the target API for the application function; filter the attributes associated with the identity information based on the API function profile; generate the authorization token according to the filtered attributes; and transmit the authorization token in response to the API token request.Type: GrantFiled: May 26, 2023Date of Patent: July 22, 2025Assignee: Level 3 Communications, LLCInventors: Jamie Lin, Vishal Vallabha, John T. Pugaczewski, Christopher Buzzetta, Glenn Balanoff, John Knies, Sylvan H. Morley, III, Jason Lish
-
Patent number: 12301554Abstract: Authorization for a user may be dynamically tailored per application or per application function, rather than globally managed by an administrator. For example, in some embodiments, an identity access management system may generate a suitable authorization token (or authorization token information) to enable a user to login to an application or perform a particular function. The authorization token may be dynamically generated and tailored based on filtering various identity information otherwise available from an identity system, access boundaries of applicable application functions, or other factors.Type: GrantFiled: August 23, 2022Date of Patent: May 13, 2025Assignee: Level 3 Communications, LLCInventors: Sylvan H. Morley, III, Jamie Lin, Michael Benjamin, John Knies
-
Publication number: 20240396884Abstract: Systems and methods for enforcing compliance-program conformity during authorization-token generation are presented. Applications may be registered with an identity and access management (IAM) system. The registration of the application may include whether the application is subject to one or more compliance program(s). When an authorization token is requested from the IAM system, the IAM system may (a) determine the set of authorization information needed in the token, and (b) determine whether the application is subject to a compliance program. The IAM system may then check an approval source of record to determine whether the user was legitimately approved for the required authorization prior to granting an authorization token. If there is a mismatch between the approval source of record and the authorization information associated with the user identity, then the mismatch may cause certain mitigation actions to be performed.Type: ApplicationFiled: May 21, 2024Publication date: November 28, 2024Applicant: Level 3 Communications, LLCInventors: Jamie LIN, Sylvan H. MORLEY, III, John KNIES, Jason LISH, Vishal VALLABHA, Glenn BALANOFF, Christopher BUZZETTA, Alexander TATE, Joseph SERRANO, Mark HOWE
-
Publication number: 20230388282Abstract: An identity and access management system including: a processor; and memory including instructions that, when executed by the processor, cause the processor to: receive an API token request for an authorization token to authorize an application function associated with a target API of an application; determine identity information from the API token request; retrieve attributes associated with the identity information; identify the target API and an API function profile associated with the target API for the application function; filter the attributes associated with the identity information based on the API function profile; generate the authorization token according to the filtered attributes; and transmit the authorization token in response to the API token request.Type: ApplicationFiled: May 26, 2023Publication date: November 30, 2023Applicant: Level 3 Communications, LLCInventors: Jamie Lin, Vishal Vallabha, John T. Pugaczewski, Christopher Buzzetta, Glenn Balanoff, John Knies, Sylvan H. Morley, III, Jason Lish
-
Publication number: 20230075296Abstract: Authorization for a user may be dynamically tailored per application or per application function, rather than globally managed by an administrator. For example, in some embodiments, an identity access management system may generate a suitable authorization token (or authorization token information) to enable a user to login to an application or perform a particular function. The authorization token may be dynamically generated and tailored based on filtering various identity information otherwise available from an identity system, access boundaries of applicable application functions, or other factors.Type: ApplicationFiled: August 23, 2022Publication date: March 9, 2023Applicant: Level 3 Communications, LLCInventors: Sylvan H. MORLEY, III, Jamie LIN, Michael BENJAMIN, John KNIES