Technologies for token-based authentication and authorization of distributed computing resources
US10044701B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | May 24, 2016 |
| Grant date | Aug 7, 2018 |
| Priority date | — |
| Expiry date | Jan 4, 2037 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/126
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Technologies for token-based access authorization to an application program interface (API) include an access management server to receive a service request message from an application executed by a remote computing device. The service request message includes a digitally signed license token previously generated by the access management server and distributed to the remote computing device. The service request message also includes a request from the executed application to access data or a service of the resource server via an exposed API. The access management server verifies the digital signature of the digitally signed license token and generates a digitally signed Security Assertion Markup Language (SAML) token. The digitally signed SAML token is transmitted to the resource server for verification and local caching. The resource server receives the service request message and determines whether access to the requested data or service is authorized based on the locally-cached SAML token.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.