Federated single sign-on (F-SSO) request processing using a trust chain having a custom module
US8141139B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 14, 2007 |
| Grant date | Mar 20, 2012 |
| Priority date | — |
| Expiry date | Aug 16, 2030 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0815
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Federated single sign on (F-SSO) uses a token service that fulfills requests by executing a module chain comprising a set of modules. F-SSO runtime processing is enhanced by enabling a federated entity user to define a custom module to include in the chain. The custom module includes one or more name-value pairs, wherein a given name-value pair has a value that may be validated against an entity-defined rule. The rule is determined during the processing of the custom module based on one or more invocation parameters of the module chain. In a runtime operation, F-SSO begins in response to receipt of a token. In response, the processing of the module chain that includes the custom module is initiated. During processing of the custom module, an attempt is made to validate the value of a name-value pair based on the rule. If the value of the name-value pair based on the rule can be validated, processing of the module chain continues. This approach enables finer granularity on the information that can be asserted or required as part of an F-SSO flow.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.