User impersonation/delegation in a token-based authentication system
US9497184B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Mar 28, 2011 |
| Grant date | Nov 15, 2016 |
| Priority date | — |
| Expiry date | Apr 6, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0884
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A “trusted service” establishes a trust relationship with an identity provider and interacts with the identity provider over a trusted connection. The trusted service acquires a token from the identity provider for a given user (or set of users) without having to present the user's credentials. The trusted service then uses this token (e.g., directly, by invoking an API, by acquiring another token, or the like) to access and obtain a cloud service on a user's behalf even in the user's absence. This approach enables background services to perform operations within a hosted session (e.g., via OAuth-based APIs) without presenting user credentials or even having the user present.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.