Information security – Access control or authentication – Network
Reexamination Certificate
2007-08-22
2009-02-03
Jung, David Y (Department: 2434)
Information security
Access control or authentication
Network
C726S005000, C726S003000
Reexamination Certificate
active
07487539
ABSTRACT:
Two identity spaces form a federation by agreeing to use a secret key to facilitate secure access of resources between them. When one identity space receives a request for a resource from a user in the other identity space, the first identity space checks to see if the resource is protected. If the resource is protected, the first identity space requests that a mediator in the second identity space authenticate the external user. The mediator verifies the external user's authenticity. Once the external user is authenticated, the mediator securely informs the first identity space, using the secret key, that the external user is authenticated to access the resource. The identity space then grants the user access to the resource if the user is allowed access as per the access control policy of the identity space.
REFERENCES:
A description logic for PKI trust domain modeling Haibo Yu; Chunzhao Jin; Haiyan Che; Information Technology and Applications, 2005. ICITA 2005. Third International Conference on vol. 2, Jul. 4-7, 2005 pp. 524-528 vol. 2.
An Authentication Model for Multi-Type Domains in Active Networks Rong Rong; Li Zhong-wen; Jiang Ye-feng; Anti-counterfeiting, Security, Identification, 2007 IEEE International Workshop on Apr. 16-18, 2007 pp. 350-355.
Enabling Pervasiveness by Seamless Inter-domain Handover: Performance Study of PANA Pre-authentication Chamuczynski, P.; Alfandi, O.; Brosenne, H.; Werner, C.; Hogrefe, D.; Pervasive Computing and Communications, 2008. PerCom 2008. Sixth Annual IEEE International Conference on Mar. 17-21, 2008 pp. 372-376.
Lambrou, M.A.; Anagnostou, M.E.; Protonotarios, E.N.; “Multi-domain Federation Polocies in Open Distributed Service Architectures”; Engineering and Technology Management, 1998. Pioneering New Technologies: Management Issues and Challenges in the Third Millennium. IEMC '98 Proceedings. International Conference on Oct. 11-13, 1998; pp. 71-76.
Cotroneo, D.; di Flora, C.; Ficco, M.; Russo, S.; “A Strategy for Application-Transparent Integration of Nomadic Computing Domains”; Software Technologies for Future Embedded and Ubiquitous Systems; 2005. Third IEEE Workshop on May 16-17, 2005; pp. 50-57.
Bhatti, R.; Bertino, E; Ghafoor, A.; “X-Federate: a policy engineering framework for federated access management”; Software Engineering, IEEE Transaction on vol. 32, Issue 5, May 2006; pp. 330-346.
http://www.microsoft.com/windowsxp/home/using/productdoc/en/default.asp?url=/windowsxp/home/using/productdoc/en/AuthIntro.asp; As printed on Sep. 8, 2004.
http://www.comptechdoc.org/os/windows/win2k/win2kauthentication.html; As accessed on Sep. 4, 2004.
http://en.wikipedia.org/wiki/Single—sign-on; As accessed on Jan. 7, 2007.
http://en.wikipedia.org/wiki/Federated—identity; As accessed on Jan. 7, 2007.
Kormann, D.P.; Rubin, A.D.; “Risks of the Passport Single Signon Protocol”; Computer Networks, Elsevier Scient Press, vol. 33, pp. 51-58, Jun. 2000.
Pfitzmann, B; Waidner, M.; “Federated Identity-Management Protocols”; 11th International Workshop on Security Protocols (2003), LNCS 3364, Springer-Verlag, Berlin 2005, pp. 153-174.
Kaminsky, M.; “User Authentication and Remote Execution Across Administrative Domains”; Ph.D. Thesis, MIT, Sep. 2004.
Doshi Kshitij Arun
Ramachandran Viyyokaran Raman
Sitaram Dinkar
Jung David Y
Marger Johnson & McCollom PC
Novell Inc.
LandOfFree
Cross domain authentication and security services using... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Cross domain authentication and security services using..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Cross domain authentication and security services using... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4057890