首页> 外国专利> Flexible authentication for online services with unreliable identity providers

Flexible authentication for online services with unreliable identity providers

机译：使用不可靠的身份提供商对在线服务进行灵活的身份验证

页面导航

摘要
著录项
相似文献

摘要

A flexible authentication system is described herein that fluidly switches between a federated authentication model and a local short-lived token model that does not require sophisticated authentication infrastructure at the relying party site. Upon detecting an event that causes the identity provider to be unavailable for authentication, the relying party switches to a temporary token model. The system generates a bearer token or challenge associated with the user's identity and (optionally) associated with time data that limits the period during which the token is valid. The relying party communicates the short-lived token to the user using contact information associated with the user and already stored by the relying party. Upon receiving the short-lived token, the user provides the short-lived token to the relying party, and the relying party processes the token to validate the user's identity and then allows the user to access the relying party's online services.

机译：本文中描述了一种灵活的认证系统，该系统在联邦认证模型和本地短暂令牌模型之间流畅地切换，该本地短期令牌模型在依赖方站点不需要复杂的认证基础结构。在检测到导致身份提供者不可用于身份验证的事件后，依赖方将切换到临时令牌模型。系统生成与用户身份相关联的（或可选地）与时间数据相关联的承载令牌或质询，从而限制令牌有效的时间。依赖方使用与用户相关联并且已经由依赖方存储的联系信息将短期令牌传递给用户。在接收到短期令牌后，用户将短期令牌提供给依赖方，并且依赖方处理令牌以验证用户的身份，然后允许用户访问依赖方的在线服务。

著录项

公开/公告号US8505085B2

专利类型
公开/公告日2013-08-06

原文格式PDF
申请/专利权人 ANGUS P. D. LOGAN;MARK RYLAND;ARIEL GORDON;VITTORIO BERTOCCI;
展开▼

申请/专利号US201113082403
发明设计人 ANGUS P. D. LOGAN;VITTORIO BERTOCCI;MARK RYLAND;ARIEL GORDON;
展开▼

申请日2011-04-08
分类号H04L29/06;
国家 US
入库时间 2022-08-21 16:43:21

相似文献

专利
外文文献
中文文献