logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 12513195 B1

PDFFull Text
Date of Patent:
Dec. 30, 2025

Filed:

Jun. 02, 2023

Secure cross-tenant access

Applicant:

Microsoft Technology Licensing, Llc, Redmond, WA (US);

Inventors:

Sucharit Sengupta, Bothell, WA (US);

Gaurav Raghu Dhawan, Seattle, WA (US);

Prasanna Chromepet Padmanabhan, Redmond, WA (US);

Amar Dinesh Zavery, Redmond, WA (US);

Artem Rudoy, Woodinville, WA (US);

Kenneth Uchechukwuka Oyibo, Seattle, WA (US);

Derek Xianyang Liu, Issaquah, WA (US);

Prakash Narayanan, Redmond, WA (US);

Rajesh Dadhia, Bellevue, WA (US);

Ramachandra Ravitej Vennapusa, Bothell, WA (US);

Assignee:

Microsoft Technology Licensing, LLC, Redmond, WA (US);

Attorney:

Rainier Patents, P.S.

Primary Examiner:

Anthony D Brown

Int. Cl.
CPC ...
H04L 9/40 (2022.01);
U.S. Cl.
CPC ...
H04L 63/20 (2013.01); H04L 63/0236 (2013.01); H04L 63/0876 (2013.01); H04L 63/105 (2013.01);
Abstract

In a cloud computing environment, a cross-tenant access security measure includes monitoring conditional access policies for changes or additions that hamper or threaten to hamper an authorized access from an assistant tenant user to a focus tenant. In some cases, cross-tenant access security includes tracking a role assignment list to detect rogue roles, or to detect hampering role changes such as role deletions, or both. In some cases, focus tenant events and assistant tenant events are correlated in an audit. In some cases, the authorized access is a zero standing time bound access. In some cases, the authorized access is constrained to an IP address range, or constrained to login from a managed device, or both. In short, security measures are described that mitigate accidental or surreptitious role or policy changes that would shut down or hinder authorized cross-tenant access.

Find Patent Forward Citations

Loading…