发明授权
- 专利标题: Authenticating and communicating verifiable authorization between disparate network domains
- 专利标题(中): 在不同网络域之间验证和通信可验证的授权
-
申请号: US11840684申请日: 2007-08-17
-
公开(公告)号: US08499339B2公开(公告)日: 2013-07-30
- 发明人: Li-Lung Chao , Brian D. Goodman , James K. Kebinger
- 申请人: Li-Lung Chao , Brian D. Goodman , James K. Kebinger
- 申请人地址: US NY Armonk
- 专利权人: International Business Machines Corporation
- 当前专利权人: International Business Machines Corporation
- 当前专利权人地址: US NY Armonk
- 代理机构: Scully, Scott, Murphy & Presser PC
- 代理商 John E. Campbell
- 主分类号: H04L29/06
- IPC分类号: H04L29/06
摘要:
Verifiable authentication credentials are provided to foreign systems without passing an id and password to the protected resource. A user wishing to access a secure remote site is prompted for credentials, the credentials are authenticated locally and a digitally signed token is created. The token is redirected to the secure remote site by the user's browser using HTTP redirection. The digital signature is verified by the secure remote site preferably by a digital signature web service. The remote site establishes communications with the user if the digital signature is valid.