Systems and methods for credentialing of non-local requestors in decoupled systems utilizing a domain local authenticator
First Claim
1. A system, comprising:
- a domain, including;
a processor coupled to a memory,a set of resources,the processor executing instructions implementing a local domain authenticator for;
providing a member credential to use in accessing the set of resources of the domain during a session,authenticating the member credential associated with the domain; and
a remote authenticator, for;
providing the member credential to a non-local requestor which is not a member of the domain by;
receiving an authentication request from the non-local requestor outside the domain, wherein the request is to be authenticated for accessing the set of resources,authenticating the non-local requestor using the authentication request, wherein authenticating the non-local requestor comprises establishing a secure channel with the non-local requester based on a unique previously provisioned domain key associated with both that domain and the non-local requestor,accessing the local domain authenticator to obtain the member credential associated with the domain, andproviding the member credential to the non-local requester, wherein the non-local requester can access the set of resources of the domain during a session maintained between the non-local requester and the domain using the member credential and authentication of an access of the non-local requester to the set of resources during the session is performed using the local domain authenticator and the member credential.
4 Assignments
0 Petitions
Accused Products
Abstract
Embodiments as disclosed provide systems and methods that use a local authenticator within a domain to provide a credential to access a resource of the domain to a non-local requestor. When a request is received from a non-local requestor at the domain the non-local requestor can be authenticated based on the request. The local authenticator can then be accessed to obtain a credential. This credential may be the same type of credential provided to members of the domain when they authenticate using the local authenticator. The credential is provided to the non-local requestor so the non-local requestor can access the resource of the domain using the credential and authentication of the non-local requestor with respect to these accesses can be accomplished using the local domain authenticator and the credential.
-
Citations
20 Claims
-
1. A system, comprising:
-
a domain, including; a processor coupled to a memory, a set of resources, the processor executing instructions implementing a local domain authenticator for; providing a member credential to use in accessing the set of resources of the domain during a session, authenticating the member credential associated with the domain; and a remote authenticator, for; providing the member credential to a non-local requestor which is not a member of the domain by; receiving an authentication request from the non-local requestor outside the domain, wherein the request is to be authenticated for accessing the set of resources, authenticating the non-local requestor using the authentication request, wherein authenticating the non-local requestor comprises establishing a secure channel with the non-local requester based on a unique previously provisioned domain key associated with both that domain and the non-local requestor, accessing the local domain authenticator to obtain the member credential associated with the domain, and providing the member credential to the non-local requester, wherein the non-local requester can access the set of resources of the domain during a session maintained between the non-local requester and the domain using the member credential and authentication of an access of the non-local requester to the set of resources during the session is performed using the local domain authenticator and the member credential. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method, comprising:
-
receiving, at a remote authenticator in a domain with a set of resources, an authentication request from a non-local requestor which is not a member of the domain, wherein the request is to be authenticated for accessing the set of resources; authenticating the non-local requestor using the authentication request, wherein authenticating the non-local requestor comprises establishing a secure channel with the non-local requestor based on a unique previously provisioned domain key associated with both that domain and the non-local requestor; accessing a local domain authenticator to obtain a member credential, wherein the member credential is for use in accessing the set of resources of the domain during a session; and providing the member credential to the non-local requestor, wherein the non-local requestor can access the set of resources of the domain during a session maintained between the non-local requestor and the domain using the member credential and authentication of an access of the non-local requestor to the set of resources during the session is performed using the local domain authenticator to authenticate the member credential. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification