Patent · US Active

User impersonation/delegation in a token-based authentication system

US10122707B2 · kind B2 · utility

6Cited by

2References

15Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Michael J. Fork · Gibsonburg, US
Vincent Edmund Price · Wake Forest, US

Key dates

Filing date	Nov 15, 2016
Grant date	Nov 6, 2018
Priority date	—
Expiry date	Nov 15, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0884
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A “trusted service” establishes a trust relationship with an identity provider and interacts with the identity provider over a trusted connection. The trusted service acquires a token from the identity provider for a given user (or set of users) without having to present the user's credentials. The trusted service then uses this token (e.g., directly, by invoking an API, by acquiring another token, or the like) to access and obtain a cloud service on a user's behalf even in the user's absence. This approach enables background services to perform operations within a hosted session (e.g., via OAuth-based APIs) without presenting user credentials or even having the user present.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.