Selective authentication system
First Claim
1. A method of optimizing authentication for an application on a mobile device, the method comprising:
- sending a request to authenticate a user of the application from the mobile device to an authentication server;
identifying, on the authentication server, a user profile for the user comprising one or more authentication schemes available to authenticate the user, wherein the authentication schemes comprise a direct authentication scheme in which the user provides a password and a federated authentication scheme;
determining, on the authentication server, a favored authentication scheme from the one or more authentication schemes available based on a policy associated with the user profile;
displaying, on the mobile device, a menu showing the authentication schemes available to allow the user to select an authentication scheme, wherein the favored authentication scheme is displayed ahead of a remainder of the authentications schemes; and
verifying, on the authentication server, credentials for the user profile using the selected authentication scheme to authenticate the user.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and authentication mechanism is provided. A request is sent to authenticate a user of the application from a mobile device to an authentication server. The authentication server identifies a user profile for the user containing one or more authentication schemes available to authenticate the user. The authentication schemes comprise a direct scheme in which the user provides a password and a federated authentication scheme. The authentication server determines a favored authentication scheme from one or more authentication schemes available based on a policy associated with the user profile. The mobile device displays a menu showing the authentication schemes available to allow the user to select an authentication scheme. The favored authentication scheme is displayed ahead of a remainder of the authentication schemes. The authentication server verifies credentials for the user profile using the selected authentication scheme to authenticate the user.
13 Citations
20 Claims
-
1. A method of optimizing authentication for an application on a mobile device, the method comprising:
-
sending a request to authenticate a user of the application from the mobile device to an authentication server; identifying, on the authentication server, a user profile for the user comprising one or more authentication schemes available to authenticate the user, wherein the authentication schemes comprise a direct authentication scheme in which the user provides a password and a federated authentication scheme; determining, on the authentication server, a favored authentication scheme from the one or more authentication schemes available based on a policy associated with the user profile; displaying, on the mobile device, a menu showing the authentication schemes available to allow the user to select an authentication scheme, wherein the favored authentication scheme is displayed ahead of a remainder of the authentications schemes; and verifying, on the authentication server, credentials for the user profile using the selected authentication scheme to authenticate the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An authentication mechanism for authenticating a user using a favored authentication scheme among options comprising a direct authentication scheme and a federated authentication scheme, comprising:
-
a mobile device is configured to send a request to authenticate the user to an authentication server; the authentication server is configured to; identify a user profile for the user containing one or more authentication schemes available to authenticate the user, wherein the authentication schemes comprise the direct authentication scheme in which the user provides a password and the federated authentication scheme; determine the favored authentication scheme from the one or more authentication schemes available based on a policy associated with the user profile; the mobile device further configured to display a menu showing the authentication schemes available to allow the user to select an authentication scheme, wherein the favored authentication scheme is displayed ahead of a remainder of the authentication schemes; and the authentication server further configured to verify credentials for the user profile using the selected authentication scheme. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification