发明授权
- 专利标题: User initiated and controlled identity federation establishment and revocation mechanism
- 专利标题(中): 用户启动和控制的身份联合身份建立和撤销机制
-
申请号: US13033029申请日: 2011-02-23
-
公开(公告)号: US08875269B2公开(公告)日: 2014-10-28
- 发明人: Paula K. Austel , He Yuan Huang , Michael McIntosh , Bin Wang , Jing Min Xu
- 申请人: Paula K. Austel , He Yuan Huang , Michael McIntosh , Bin Wang , Jing Min Xu
- 申请人地址: US NY Armonk
- 专利权人: International Business Machines Corporation
- 当前专利权人: International Business Machines Corporation
- 当前专利权人地址: US NY Armonk
- 代理机构: F. Chau & Associates, LLC
- 代理商 Preston J. Young, Esq.
- 主分类号: G06F7/04
- IPC分类号: G06F7/04 ; G06F15/16 ; G06F17/30 ; H04L29/06 ; H04L29/08 ; H04L9/32
摘要:
A method for single sign-on with established federation includes triggering a single sign-on operation from a first service to a second service, retrieving, by the first service, an associated federation key and pseudo identification for a user agent, generating, by the first service, a token signed with a federation key for the user agent based on the pseudo identification, redirecting, by the first service, the user agent to the second service, wherein the user agent transfers the token to the second service, verifying, by the second service, the token and determining an associated identification in the second service, and returning, by the second service, a resource to the user agent.
公开/授权文献
信息查询
