Information security – Access control or authentication – Network
Reexamination Certificate
2006-12-12
2006-12-12
Louis-Jacques, Jacques (Department: 2134)
Information security
Access control or authentication
Network
C713S157000
Reexamination Certificate
active
07150038
ABSTRACT:
One embodiment of the present invention provides a system that facilitates accessing to a plurality of applications that require passwords. When the system receives a request for a password from an application running on a remote computer system, the system first authenticates the request to ensure that it originated from a trusted source. Next, the system uses an identifier for the application to look up the password for the application in a password store, which contains passwords associated with the plurality of applications. If the password exists in the password store, the system sends the password or a function of the password to the application on the remote computer system. Hence, the system creates the illusion that there is a single sign on to a large number of applications, whereas in reality the system automatically provides different passwords to the applications as they are requested. In one embodiment of the present invention, the request for the password includes computer code that when run on the local computer system requests the password on behalf of the application on the remote computer system. In a variation on this embodiment, the computer code is in the form of a JAVA™ applet that runs on a JAVA™ virtual machine on the local computer system. In one embodiment of the present invention, the JAVA™ applet is a signed JAVA™ applet, and authenticating the request involves authenticating the JAVA™ applet's certificate chain.
REFERENCES:
patent: 5224163 (1993-06-01), Gasser et al.
patent: 5611048 (1997-03-01), Jacobs et al.
patent: 5623637 (1997-04-01), Jones et al.
patent: 5689638 (1997-11-01), Sadovsky
patent: 5706427 (1998-01-01), Tabuki
patent: 5790785 (1998-08-01), Klug et al.
patent: 5872915 (1999-02-01), Dykes et al.
patent: 6000033 (1999-12-01), Kelley et al.
patent: 6141760 (2000-10-01), Abadi et al.
patent: 6182229 (2001-01-01), Nielsen
patent: 6189103 (2001-02-01), Nevarez et al.
patent: 6205480 (2001-03-01), Broadhurst et al.
patent: 6223292 (2001-04-01), Dean et al.
patent: 6269395 (2001-07-01), Blatherwick et al.
patent: 6412073 (2002-06-01), Rangan
patent: 6460141 (2002-10-01), Olden
patent: 6496855 (2002-12-01), Hunt et al.
patent: 6629246 (2003-09-01), Gadi
patent: 6715082 (2004-03-01), Chang et al.
“The New Face of Single Sign-On” by Philip Garden, Network Computing, Mar. 22, 1999, pp. 33 to 47.
Microsoft Passport Technical White Paper. Retrieved from website: http://www.passport.com/business/whitepaper.asp.
Heneghan Matthew
Louis-Jacques Jacques
Oracle International Corp.
Park Vaughan & Fleming LLP
LandOfFree
Facilitating single sign-on by using authenticated code to... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Facilitating single sign-on by using authenticated code to..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Facilitating single sign-on by using authenticated code to... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3720264