Identification and privacy in the World Wide Web
First Claim
Patent Images
1. A method for obtaining a service on a data communications network, the method comprising:
- enrolling with an authority, said enrolling creating enrollment results, said enrollment results comprising user data; and
using said enrollment results to obtain a service from a service provider, said service provider capable of communicating with said authority to verify said enrollment results.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for obtaining a service on a data communications network, the method includes enrolling with an authority and using the enrollment results to obtain a service from a service provider. The enrolling creates enrollment results that include user data. The service provider is capable of communicating with the authority to verify the enrollment results
181 Citations
10 Claims
-
1. A method for obtaining a service on a data communications network, the method comprising:
-
enrolling with an authority, said enrolling creating enrollment results, said enrollment results comprising user data; and
using said enrollment results to obtain a service from a service provider, said service provider capable of communicating with said authority to verify said enrollment results.
-
-
2. A method for managing identification in a data communications network, the method comprising:
generating authenticated user data, said generating comprising;
presenting a request for authenticated user data and a first set of user data to an authority; and
receiving authenticated user data from said authority in response to said request; and
using said authenticated user data to obtain at least one service on said data communications network, said using comprising;
presenting a service request, said authenticated user data to a service provider; and
receiving said at least one service in response to said service request if said service provider determines said authenticated user data is sufficient to provide said at least one service.
-
3. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for obtaining a service on a data communications network, the method comprising:
-
enrolling with an authority, said enrolling creating enrollment results, said enrollment results comprising user data; and
using said enrollment results to obtain a service from a service provider, said service provider capable of communicating with said authority to verify said enrollment results.
-
-
4. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for managing identification in a data communications network, the method comprising:
generating authenticated user data, said generating comprising;
presenting a request for authenticated user data and a first set of user data to an authority; and
receiving authenticated user data from said authority in response to said request; and
using said authenticated user data to obtain at least one service on said data communications network, said using comprising;
presenting a service request, said authenticated user data to a service provider; and
receiving said at least one service in response to said service request if said service provider determines said authenticated user data is sufficient to provide said at least one service.
-
5. An apparatus for managing identification in a data communications network, the apparatus comprising:
means for generating authenticated user data, said generating comprising;
means for presenting a request for authenticated user data and a first set of user data to an authority; and
means for receiving authenticated user data from said authority in response to said request; and
means for using said authenticated user data to obtain at least one service on said data communications network, said means for using comprising;
means for presenting a service request, said authenticated user data to a service provider; and
means for receiving said at least one service in response to said service request if said service provider determines said authenticated user data is sufficient to provide said at least one service.
-
6. An apparatus for managing identification in a data communications network, the apparatus comprising:
-
means for receiving a user-controlled secure storage device;
means for enrolling said user with an authority, said enrolling comprising providing information requested by said authority;
means for receiving user data in response to said enrolling;
means for storing said user data in said user-controlled secure storage device; and
means for using said user data at a service provider Web site to obtain a service.
-
-
7. An apparatus for obtaining a service on a data communications network, the apparatus comprising:
an enrollment authority configured to accept an enrollment request, said enrollment authority further configured to return enrollment results in response to said enrollment request, said enrollment results comprising user data, said enrollment results for use in obtaining a service from a service provider.
-
8. An apparatus for obtaining a service on a data communications network, the apparatus comprising:
a service provider configured to accept a service request and enrollment results obtained from an enrollment authority, said service provider capable of communicating with said authority to verify said enrollment results, said service provider configured to provide said service based upon said enrollment results and a response from said enrollment authority.
-
9. An apparatus for managing identification in a data communications network, the apparatus comprising:
an authority configured to accept an authenticated data request and a user data, said authority further configured to authenticate said user data to create authenticated data, said authority further configured to return said authenticated data in response to said authenticated data request.
-
10. An apparatus for managing identification in a data communications network, the apparatus comprising:
a service provider configured to accept a service request, a first set of user data and a second set of user data, said first set of user data comprising user data authenticated by an authority, said service provider further configured to determine whether said first set of user data and said second set of user data are sufficient to provide said service, said service provider further configured to provide said service based upon said determination.
Specification