Patent · US Active

Integrating server applications with multiple authentication providers

US8819794B2 · kind B2 · utility

1Cited by

7References

14Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Vadim Eydelman · Bellevue, US
Brian Kress · Redmond, US
Matthias Leibmann · Woodinville, US
Moustafa Noureddine · Redmond, US
Lei Yu · Huangguan, CN
Haibo Luo · Shanghai, CN

Key dates

Filing date	Jan 19, 2012
Grant date	Aug 26, 2014
Priority date	—
Expiry date	Mar 11, 2032

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/365
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Online and on-premise applications identify trusted authentication providers. The applications are configured with a list of trusted issuers of authentication credentials. When an application receives a request requiring authentication, the application returns a 401 response that includes the trusted issuer list. The requesting application compares the trusted issuer list from the 401 response to its own list of authentication providers. If there is a match between the two lists, then the requesting application creates a self-issued token for the authentication provider. The authentication provider uses the self-issued token to generate an authentication token for the requesting application. The requesting application may also directly create a token for a target partner application, without an authentication provider, if there is a direct trust between the two applications.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.