Patent · US Active

Token scope reduction

US10104084B2 · kind B2 · utility

5Cited by

17References

20Claims

0Family size

Assignee

Cisco Technology, Inc. · US

Inventors

Andrew Biggs · Northglenn, US
Shaun Cooley · El Segundo, US
Matt Miller · Denver, US
Hua Cui · Beijing, CN
Ian Remmel · San Francisco, US

Key dates

Filing date	Nov 16, 2015
Grant date	Oct 16, 2018
Priority date	—
Expiry date	May 28, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0807
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques are provided for augmenting the capabilities of the standard OAuth2 authorization framework in such a way as to allow clients to consume the services of multiple resource servers residing in disjoint security domains while requiring only a single one-time user authentication. An access token that provides access to resource services distributed across a plurality of security domains is partitioned into a plurality of reduced-scope access tokens. Each reduced-scope access token is limited to a subset of authorization scopes of the access token, providing access to a resource service in a particular security domain based upon the subset.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.