Information security – Policy
Reexamination Certificate
2008-06-18
2011-12-06
Song, Hosuk (Department: 2435)
Information security
Policy
C726S002000, C726S003000
Reexamination Certificate
active
08074258
ABSTRACT:
A federated identity provisioning system includes relying parties, identity providers, and clients that obtain tokens from identity providers for access to a relying party's services. When a client contacts a new relying party, the relying party provides information that the client can independently resolve and evaluate for trustworthiness. For example, the relying party provides a generic domain name address. The client can then resolve the domain name address over various, authenticated steps to identity an endpoint for a digital identity provisioning service. The client can further interact with and authenticate the provisioning service (e.g., requiring digital signatures) to establish a trust relationship. Once determining that the client/user trusts the provisioning service, the client/user can then provide information to obtain a digital identity representation. The client can then use the digital identity representation with the corresponding identity provider to obtain one or more tokens that the relying party can validate.
REFERENCES:
patent: 7290278 (2007-10-01), Cahill et al.
patent: 2005/0120219 (2005-06-01), Munetoh et al.
patent: 2005/0223217 (2005-10-01), Howard
patent: 2005/0289341 (2005-12-01), Ritola et al.
patent: 2006/0048216 (2006-03-01), Hinton et al.
patent: 2006/0136990 (2006-06-01), Hinton et al.
patent: 2006/0235761 (2006-10-01), Johnson
patent: 2007/0192352 (2007-08-01), Levy
patent: 2007/0204168 (2007-08-01), Cameron
patent: 2008/0028000 (2008-01-01), Makismenka et al.
patent: 2008/0028215 (2008-01-01), Nanda et al.
patent: 2008/0046984 (2008-02-01), Bohmer et al.
patent: 2008/0069102 (2008-03-01), Koehler et al.
“WS-Federation 1.1 Completes the WS-* Security Stack,” Author Unknown, Date Unknown, 6 pgs. [online] [retrieved on Apr. 15, 2008]. Retrieved from the Internet: http://identity-des.com/2007/05/02/ws-fed-completes-stack/.
“A Technical Reference for the Information Card Profile V1.0,” by Arun Nanda, Microsoft Corporation, Dec. 2006, 54 pgs. [online] [retrieved on Apr. 15, 2008]. Retrieved from the Internet: http://msdn2.microsoft.com/en-us/library/bb298802.aspx#infocardprofile—topic5—2—1.
“Verified Implementations of the Information Card Federated Identity-Management Protocol,” by Karthikeyan Bhargavan, Cedric Fournet, Andrew D. Gordon, and Nikhil Swamy, University of Maryland, College Park, Copyright ACM 2008, 14 pgs. [online] [retreived on Apr. 15, 2008]. Retrieved from the Internet: http://www.cs.umd.edu/˜nswamy/papers/wcf-cardspace.pdf.
Nanda Arun K.
Sharif Tariq
Microsoft Corporation
Song Hosuk
Workman Nydegger
LandOfFree
Obtaining digital identities or tokens through independent... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Obtaining digital identities or tokens through independent..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Obtaining digital identities or tokens through independent... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4316616