Security and Authentication

(@dphipps)

Security and Authentication

Problem With Passwords Starting with an Asterisk?

Although the Office indicates that a special character is required and includes the asterisk as one of these options (˜ ! @ # $ % ^ & * () _ + - = {}|[] \ : " ; ' < > ? , . /), users who include an asterisk at the beginning of their password are having trouble getting into the system. USPTO.gov says that the email or password are not correct. It would also be helpful for users who have attempted to change their email... more »

Voting

1 vote
1 up votes
0 down votes
Active
(@voconnor)

Security and Authentication

Staff login/easier way to swtich between certificate users?

At our firm, our staff is the one that logs in on behalf of the attorney (we do the certification thing) and they do the uploading and submitting of any filings. One of the biggest complaints among the staff is having to log in as one attorney, submit their filing, and then log out/in when they have a filing for another attorney so that they can submit it under the different attorney's certificate. I feel that there... more »

Voting

45 votes
47 up votes
2 down votes
Active
(@communitymember)

Security and Authentication

Portal to send password to open an encrypted file before meeting

Perhaps a secure portal could be added through which an applicant or applicant's representative can send an examiner a password to open an encrypted file containing claim drafts or other material before an interview meeting. The portal would not burden an examiner with any messages or e-mail, but would contain only a password and would indicate the type of file that would later arrive by e-mail or file-sharing platform.... more »

Voting

-6 votes
0 up votes
6 down votes
Active
(@dphipps)

Security and Authentication

Continue with Login After Setting New Password

Currently when asked to set a new USPTO.gov password, users are stuck in limbo and have to close out the window indicating a successful password change. It would be most efficient to have the system continue with the login you requested rather than getting stuck.

 

This happens consistently with the sponsorship tool and occasionally with MyUSPTO.

Voting

6 votes
6 up votes
0 down votes
Active
(@amy.stevens)

Security and Authentication

Establish Patent Center inactivity timeout to 30 minutes

Due to updated NIST guidelines, the USPTO plans to set the user inactivity timeout to 30 minutes in Patent Center. After 25 minutes of user inactivity, Patent Center will prompt you to continue with the authenticated session. If you do not confirm that that you want to continue, your session will terminate in order to protect your patent application data. In most cases, to sign back in after a timeout, you would only... more »

Voting

-17 votes
1 up votes
18 down votes
Active
(@dphipps)

Security and Authentication

Allow Password Change for USPTO.gov Accounts

Restricting the ability of users to change the email address associated with their USPTO.gov account is not optimal. People move from company to company, firm to firm, and will need to use their business email address as their account address. It is not practical to require users to contact the Office to make a change that should be allowed electronically. The Office already requires users to change their password... more »

Voting

13 votes
13 up votes
0 down votes
Active
(@eherring)

Security and Authentication

Assignment E-Filing

Currently when e-filing an Assignment you are only required to enter the Application #. This is a major flaw because there are instances where there was a typo in the Application # and the Assignment was uploaded to the wrong Application. The confirmation # should also be required for e-filing an Assignment to ensure accuracy. There should also be a better view of the uploaded documents, so that the documents can... more »

Voting

37 votes
38 up votes
1 down votes
Active
(@dphipps)

Security and Authentication

Automate Customer Number Access for Registered USPTO.gov Account

When new customer numbers are requested and associated with practitioners, the Office should be able to update registered USPTO.gov accounts to include CNs the practitioner is associated with. I seem to recall this was a plan some years ago, however, it is not something that has been happening with any regularity. It is unreasonable to ask practitioners to send in a form to request their accounts be updated to include... more »

Voting

3 votes
3 up votes
0 down votes
Active
(@dphipps)

Security and Authentication

Certified Copy Center - Entitlement Document?

Kudos for converting the system for ordering certified copies. There is a major flaw in the system when you require users to log in using their USPTO.gov account. The flaw is that the system requires one or more entitlement documents before a user can proceed. This is a flaw because practitioners associated with customer numbers have access to unpublished applications, and the staff the sponsor do as well. Why require... more »

Voting

5 votes
5 up votes
0 down votes
Active
(@dphipps)

Security and Authentication

Add Link to Certified Copy Center to MyUSPTO

Users of the new Certified Copy Center ("Center") must sign in at the Center's page rather than access through their MyUSPTO page. Although already signed in through MyUSPTO, users will need to sign in again when accessing the Center's page.

A link to the Center should be available under both the Patents and Trademarks drop-down menus.

Voting

8 votes
8 up votes
0 down votes
Active
(@dphipps)

Security and Authentication

Back-up Access for USPTO.gov Urgently Needed

The ability to log in to Private PAIR and EFS-Web using a PKI was unavailable on May 30 and 31. On May 31 the USPTO.gov login suddenly failed. Yes, filings can be made through other means such as the EFS-Web contingency system, fax (not applications), mail, and hand delivery (for those with direct PTO access). What cannot be done is any other function that the USPTO.gov account provides access to such as sponsorship... more »

Voting

4 votes
4 up votes
0 down votes
Active
(@david.boundy)

Security and Authentication

Turn off password expiration for MyUSPTO.gov

Get rid of the expiration on passwords on MyUSPTO -- a good password that isn't reused across multiple platforms can be permanent. Is this solving a genuine and identifiable problem? No. Is there any conceivable way that a bad guy could get into uspto.gov and, for example, expropriate money from one of the credit cards? NO!!! The only payee is the uspto! Nobody's going to hack into a MyUSPTO account to when he/she... more »

Voting

21 votes
21 up votes
0 down votes
Active
(@reneeo)

Security and Authentication

Notification of pending sponsorship request

I sent 3 sponsorship requests to my practitioner today. She received no notification that she had pending requests to review. It wasn't until we went to the sponsorship tool logged in as her that she saw that she had 3 pending requests. I believe the practitioners have no reason to access the sponsorship tool on a regular basis so they'd have no way of knowing they have pending requests. I suggest that a notification... more »

Voting

15 votes
15 up votes
0 down votes
Active