发明授权
US08219802B2 System, method and program product for consolidated authentication
有权
用于统一认证的系统,方法和程序产品
- 专利标题: System, method and program product for consolidated authentication
- 专利标题(中): 用于统一认证的系统,方法和程序产品
-
申请号: US12116616申请日: 2008-05-07
-
公开(公告)号: US08219802B2公开(公告)日: 2012-07-10
- 发明人: Yaser K. Doleh , Christopher G. Kalamaras , Mauro Marzorati
- 申请人: Yaser K. Doleh , Christopher G. Kalamaras , Mauro Marzorati
- 申请人地址: US NY Armonk
- 专利权人: International Business Machines Corporation
- 当前专利权人: International Business Machines Corporation
- 当前专利权人地址: US NY Armonk
- 代理商 Arthur J. Samodovitz
- 主分类号: G06F21/00
- IPC分类号: G06F21/00
摘要:
A first computer sends a request to the second computer to access the application. In response, the second computer determines that the user has not yet been authenticated to the application. In response, the second computer redirects the request to a third computer. In response, the third computer determines that the user has been authenticated to the third computer. In response, the third computer authenticates the user to the application. In response, the second computer returns a session key to the third computer for a session between the application and the user. The session has a scope of the second computer or the application but not a scope of a domain. In response to the authentication of the user to the second application and receipt by the third computer of the session key from the second computer for a session between the user and the second computer or the application, the third computer generates another session key with a scope of the domain and sends the domain-scope session key to the first computer. The first computer sends another request to the application with the domain-scope session key.