Secure single sign-on for a group of wrapped applications on a computing device and runtime credential sharing
US9473485B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | May 16, 2014 |
| Grant date | Oct 18, 2016 |
| Priority date | — |
| Expiry date | Jun 28, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04W12/12
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A mobile device user is able to execute an app in a federation of wrapped apps without having to login to that app provided that the user has already logged into another app in that federation. The federation of apps on the device uses multi-app authentication to enable the user to start subsequent apps after explicitly entering login credentials for another app in that federation. This feature is loosely referred to as single sign-on for apps in the federation. The multi-app authentication is implemented by giving the second app a chance to prove two facts. One that it knows where in the operating system keychain a login ticket is stored and two, what the hash value of a random byte array is. By showing these facts, the logged-into app can safely provide login credentials to subsequent app without the user having to enter a login name or password.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.