Patent · US Expired

METHOD AND SYSTEM OF FEDERATED AUTHENTICATION SERVICE FOR INTERACTING BETWEEN AGENT AND CLIENT AND COMMUNICATING WITH OTHER COMPONENTS OF THE SYSTEM TO CHOOSE AN APPROPRIATE MECHANISM FOR THE SUBJECT FROM AMONG THE PLURALITY OF AUTHENTICATION MECHANISMS WHEREIN THE SUBJECT IS SELECTED FROM HUMANS, CLIENT APPLICATIONS AND APPLETS

US6959336B2 · kind B2 · utility

59Cited by

12References

31Claims

0Family size

Assignee

Secure Data In Motion, Inc. · US

Inventors

Jahanshah Moreh · Los Angeles, US
Terry M. Olkin · Niwot, US
Logan Bruns · Napa, US
Trevor Scott Perrin · Berkeley, US

Key dates

Filing date	Apr 7, 2001
Grant date	Oct 25, 2005
Priority date	—
Expiry date	Oct 25, 2022

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/205
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A federated authentication service technology (10) for authenticating a subject (20) residing in a subject domain (12) on a network to a server application (38) residing in a server domain (18), wherein an authentication mechanism (32) residing in an authentication domain (16) affects the service provided by the server application (38). A client (22), which may be integrated non-human instances of the subject (20), authenticates the subject (20) and a protocol proxy (34) mediates with the authentication mechanism (32) to obtain a name assertion which the client can use to access the server application (38). When multiple authentication mechanisms (32) are available, an optional agent (24), mechanism resolution process (26) and mechanism repository (28), all residing in an agent domain (14), may be used to resolve to one suitable authentication mechanism (32).

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.