公开(公告)号：US20240195798A1

公开(公告)日：2024-06-13

申请号：US18065040

申请日：2022-12-13

Applicant: Cisco Technology, Inc.

Inventor： Harold Todd Chapman ,  Robert Jacob Linial Small ,  Michael G. Brown ,  Adam Vincent Patruno ,  Dylan Miles Kite ,  Zachary Oliver Weglarz ,  Erdenebat Gantumur

IPC: H04L9/40 ,  G06Q20/38 ,  G06Q20/40

CPC classification number: H04L63/083 ,  G06Q20/3821 ,  G06Q20/40

Abstract: In one embodiment, a method, by an authentication server, includes generating a transaction identifier associated with an authentication request received from an external device. In response to verifying a first authentication factor of the authentication request, the method includes transmitting a prompt and the transaction identifier to the external device, wherein the prompt is an HTTP link associated with a browser comprising a generated cookie, the generated cookie being associated with the transaction identifier. The method includes receiving a signal comprising a transmitted transaction identifier and an instruction to process the HTTP link. The method includes instructing an application installed on the external device to open the browser in a webview in response to processing the instruction, wherein a cookie is provided. The method includes identifying the generated cookie based on verifying the transmitted transaction identifier. The method includes determining if the cookie is equivalent to the generated cookie.

公开(公告)号：US20240195804A1

公开(公告)日：2024-06-13

申请号：US18065002

申请日：2022-12-13

Applicant: Cisco Technology, Inc.

Inventor： Omar Naji Abduljaber ,  Michael G. Brown ,  Mujtaba Hussain ,  Robert Jacob Linial Small ,  Bradley A. Kuykendall

IPC: H04L9/40

CPC classification number: H04L63/0853

Abstract: In one embodiment, a method, by an authentication server, includes receiving user information associated with a first authentication factor for verification from the first endpoint device. The method further includes in response to verifying the first authentication factor, transmitting a prompt to provide an authentication decision associated with a second authentication factor to the second endpoint device, wherein the second endpoint device is communicatively coupled to the first endpoint device through the communication link. The method further includes receiving the authentication decision that is initiated by the first endpoint device from the second endpoint device, wherein the first endpoint device is configured to initiate and transmit the authentication decision to the second endpoint device in response to receiving the second authentication factor from the second endpoint device.

公开(公告)号：US20250126175A1

公开(公告)日：2025-04-17

申请号：US18488725

申请日：2023-10-17

Applicant: Cisco Technology Inc.

Inventor： Aaron P. Campbell ,  Weston Andros Adamson ,  Bradley A. Kuykendall ,  Michael G. Brown ,  Tyler Charles Hoffman ,  Brandon Wong

IPC: H04L67/146 ,  H04L9/40 ,  H04L67/141

Abstract: The present disclosure is directed to receiving multiple concurrent requests from multiple applications for session establishment from a user device, wherein the concurrent requests originated from a single browser instance, communicating a redirect response comprising a query parameter to each of the applications to the user device, receiving a browser-session synchronization cookie from each of the applications responsive to each corresponding redirect response from the user device, determining a browser-session identifier based on the browser-session synchronization cookies and by a negotiation algorithm, generating a browser-session cookie based on the browser-session identifier and by the negotiation algorithm, and establishing a session for the applications via the single browser instance based on the browser-session cookie.