公开(公告)号：EP4432609A2

公开(公告)日：2024-09-18

申请号：EP24178639.1

申请日：2019-04-24

申请人： Visa International Service Association

发明人： NELSEN, Mark ,  WILSON, David William ,  MANGIAGALLI, Guido ,  SURIN, Anjana Neera ,  MOHAMMED, Sayeed ,  JOHNSON, Alan ,  LAVENDER, Phillip ,  POWELL, Glenn

IPC分类号： H04L9/40

CPC分类号： G06Q20/40 ,  G06F21/41 ,  G06F21/44 ,  G06F21/335 ,  H04L63/105 ,  H04L63/08 ,  H04L63/083 ,  H04L2463/08220130101 ,  G06Q20/388 ,  G06Q20/405 ,  H04W12/06 ,  G06F21/30

摘要： A system and method of establishing a resource provider as a trusted listing are disclosed. The method includes receiving, by a directory server computer, an indication from a user that a resource provider is trusted. The directory server computer is programmed to provide a first level of authentication. The method then includes storing, in a database, data representing the indication from the user that the resource provider is trusted. The method then includes receiving an authentication request message from the user conducting an interaction at the resource provider computer and determining that the data representing the indication from the user that the resource provider is trusted is present. In response to determining, the method includes providing a second level of authentication to the user before the user is allowed to complete the interaction. The second level of authentication is lower than the first level.

公开(公告)号：EP4407935A2

公开(公告)日：2024-07-31

申请号：EP24169572.5

申请日：2018-02-27

申请人： Huawei Technologies Co., Ltd.

发明人： CHENNURI, Karun Kumar

IPC分类号： H04L9/40

CPC分类号： H04L63/102 ,  H04W12/06 ,  H04W12/08 ,  H04L63/083 ,  H04L63/0815 ,  G06F21/41 ,  G06F21/604

摘要： An apparatus and method are provided for predictive token validation. In use, a database stores service usage information relating to usage of at least one service hosted by at least one server. Before at least one request for service is received from a user at the at least one server, the service usage information in the database is accessed. Further, based on the service usage information, a token associated with the user is sent to the at least one server for being validated by the at least one server, such that the at least one server allows access to the at least one service by the user, in response to the at least one request for service being received from the user with an identifier that is different from the token.

公开(公告)号：EP3143747B1

公开(公告)日：2018-07-04

申请号：EP15727701.3

申请日：2015-05-13

申请人： Evidian

发明人： GUIONNEAU, Christophe

IPC分类号： H04L29/06 ,  G06F21/41

CPC分类号： H04L63/0815 ,  G06F21/41 ,  H04L63/10

公开(公告)号：EP2590380B1

公开(公告)日：2018-07-04

申请号：EP12191286.9

申请日：2012-11-05

申请人： Kyocera Document Solutions Inc.

发明人： Oguma, Takashi ,  Ueno, Shingo ,  Kasai, Rie ,  Higashimori, Toshihide

IPC分类号： H04L29/06 ,  G06F21/41

CPC分类号： H04L63/0815 ,  G06F21/41 ,  H04L63/083

摘要： An image forming apparatus includes: an internal authentication information storage unit that stores user authentication information relating to authentication for the image forming apparatus; an internal user authentication unit; an external authentication information storage unit that stores the user authentication information for external authentication, and a private IP address in association with one another for a plurality of URLs for external authentication; and a pseudo single sign-on unit that when it is determined that a redirection destination URL included in a response message transferred from a cloud server matches one of the stored plurality of URLs for external authentication, reads the user identification information for external authentication relating to the private IP address corresponding to a destination IP address included in a packet of the response message from the external authentication information storage unit, transmits the information for external authentication to the redirection destination URL, and performs the sign-on process.

公开(公告)号：EP2572489B1

公开(公告)日：2018-07-04

申请号：EP11728408.3

申请日：2011-05-19

申请人： Vaultive Ltd.

发明人： MATZKEL, Ben ,  TAL, Maayan ,  LAHAV, Aviad

IPC分类号： H04L29/06 ,  G06F21/00 ,  G06F21/41

CPC分类号： H04L63/083 ,  G06F21/41 ,  G06F2221/2115 ,  H04L63/0428

摘要： A system and method for protecting access to authentication systems. A mediator may accept original authentication credentials from a client, may process the authentication credentials to provide processed authentication credentials and may forward the processed authentication credentials to an authentication system. Processing original authentication credentials may include encrypting at least one portion of original authentication credentials.

公开(公告)号：EP3304397A1

公开(公告)日：2018-04-11

申请号：EP16727273.1

申请日：2016-05-20

申请人： Microsoft Technology Licensing, LLC

发明人： LEMOND, Jennifer ,  DUAN, Haoyang ,  WANG, Xiaoming

IPC分类号： G06F21/41 ,  G06F21/55 ,  G06F21/31

CPC分类号： G06F11/079 ,  G06F11/0751 ,  G06F11/0787 ,  G06F21/316 ,  G06F21/41 ,  G06F21/552 ,  G06F2221/033 ,  G06F2221/2151

摘要： The claimed subject matter includes techniques for detecting anomalous accounts. An example method includes receiving, via a processor, a list of monitored machines and event logs including logons for the list of monitored machines for a predetermined window of time. The example method also includes generating, via the processor, a baseline based on the event logs for the predetermined window of time. The example method also includes collecting, via the processor, daily logon events after the predetermined time and comparing the daily logon events to the baseline. The method further includes detecting, via the processor, an anomalous account based on a difference of logon events of the anomalous account from the baseline. The method also includes displaying, via the processor, the detected anomalous account.

公开(公告)号：EP3281140A1

公开(公告)日：2018-02-14

申请号：EP16715984.7

申请日：2016-04-04

申请人： Microsoft Technology Licensing, LLC

发明人： HE, Jia Le ,  XIA, Li Qing ,  LUNDEEN, Alan Jonathan ,  SUBOTIC, Dejan

IPC分类号： G06F21/41 ,  G06F21/53

CPC分类号： H04L63/0815 ,  G06F21/41 ,  G06F21/53 ,  H04L63/108 ,  H04L63/12

摘要： Facilitating single sign-on on a device having sandboxed applications. A method includes identifying a plurality of associated applications. Criteria are evaluated to identify a primary application. Authentication state is stored at the primary application. One or more portions of the authentication state can be used by the applications in the plurality of associated application for authentication.

公开(公告)号：EP3164795A4

公开(公告)日：2018-01-10

申请号：EP15814622

申请日：2015-06-30

申请人： ALIBABA GROUP HOLDING LTD

发明人： JI LIJUAN

IPC分类号： G06F7/04 ,  G06F21/31 ,  G09C1/00 ,  H04L29/06 ,  H04L29/08

CPC分类号： H04L63/083 ,  G06F17/30864 ,  G06F21/31 ,  G06F21/41 ,  G06F21/45 ,  G06F2221/2117 ,  G06F2221/2131 ,  G06F2221/2149 ,  G09C1/00 ,  H04L63/0815 ,  H04L63/102 ,  H04L67/02 ,  H04L67/306

摘要： A login request initiated by a user at a current page is received. Whether there exists an account record matched with a login account name and login password combination in the login request is searched from an account table of the current page. If a result is positive, the user is allowed to log in. If a result is not positive, a preconfigured account name collection corresponding to the login account name is acquired. The account name collection includes login account names of the user's registered accounts in a plurality of member systems. A login account name in a member system to which the current page belongs is searched from the account name collection, and the found login account name is provided to the user. The techniques of the present disclosure prompts a correct login account name to the user, especially when there are many user login account names, thereby reducing memory burden of the user and assisting the user in implementing a quick login under multi-account management.

公开(公告)号：EP2721548B1

公开(公告)日：2017-12-20

申请号：EP12801422.2

申请日：2012-03-29

申请人： PayPal, Inc.

发明人： YEFIMOV, Igor ,  ATWOOD, Scott

IPC分类号： H04L29/06 ,  G06F21/41 ,  H04W4/00 ,  H04W12/06 ,  H04L29/08 ,  H04L9/32

CPC分类号： H04L63/08 ,  G06F21/41 ,  H04L9/3234 ,  H04L63/0807 ,  H04L63/0815 ,  H04L63/0853 ,  H04L67/00 ,  H04L67/02 ,  H04L67/04 ,  H04L67/146 ,  H04L67/42 ,  H04W4/00 ,  H04W12/06

摘要： Systems and methods are disclosed in which a client device is in communication via a network with a server and a common gateway interface. A native app executes on one or more hardware processors of the client device to receive a device session token from the server for authenticating a device session between the native app and the server, the device session token including credentials authenticating a user for a device session between the server and the native app executing on the client device. An embedded web browser executes on one or more hardware processors of the client device. The native app invokes the embedded web browser and the native app passes the device session token to the embedded web browser for authentication of a web session between the embedded web browser and the common gateway interface that continues the device session authentication without requiring additional authentication. The embedded web browser passes the device session token to the common gateway interface and receives from the common gateway interface a web flow authorization token, converted from the device session token using the credentials for authenticating the user for the device session between the server and the native app executing on the client device, for authenticating the web session as a continuation of the device session authenticated by the device session token so that the web flow authorization token and the device session token both share the same underlying device session and the device session remains active while the web session is active.

公开(公告)号：EP3155534A4

公开(公告)日：2017-11-29

申请号：EP14894632

申请日：2014-06-10

申请人： ALCATEL LUCENT

发明人： HU ZHIYUAN ,  WU LIN ,  YAN XUEQIANG ,  LUO ZHIGANG

IPC分类号： G06F15/16 ,  G06F21/41 ,  H04L29/06 ,  H04L29/08 ,  H04W4/00 ,  H04W12/06

CPC分类号： H04L63/0815 ,  G06F21/41 ,  H04L63/0807 ,  H04L67/1097 ,  H04L67/306 ,  H04W4/001 ,  H04W12/06

摘要： A request is made by a client to be authenticated by a first cloud storage server that may be associated with a first service provider. An identity federation request is sent from the client to the first cloud storage server, wherein the identity federation request seeks to federate a user account of the client on the first cloud storage server with a user account of the client on a second cloud storage server that may be associated with a second service provider. The client is redirected from the first cloud storage server to the second cloud storage server. A request is made by the client to be authenticated by the second cloud storage server such that the second cloud storage server, once the client is authenticated, maps the user account on the first cloud storage server with the user account of the second cloud storage server and establishes identity federation there between.