Identification and privacy in the World Wide Web
First Claim
Patent Images
1. A method for obtaining a service on a data communications network, the method comprising:
- enrolling with an authority, said enrolling creating enrollment results, said enrollment results comprising user data; and
using said enrollment results to obtain a service from a service provider, said service provider capable of communicating with said authority to verify said enrollment results.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for obtaining a service on a data communications network, the method includes enrolling with an authority and using the enrollment results to obtain a service from a service provider. The enrolling creates enrollment results that include user data. The service provider is capable of communicating with the authority to verify the enrollment results
181 Citations
10 Claims
-
1. A method for obtaining a service on a data communications network, the method comprising:
-
enrolling with an authority, said enrolling creating enrollment results, said enrollment results comprising user data; and
using said enrollment results to obtain a service from a service provider, said service provider capable of communicating with said authority to verify said enrollment results.
-
-
2. A method for managing identification in a data communications network, the method comprising:
generating authenticated user data, said generating comprising;
presenting a request for authenticated user data and a first set of user data to an authority; and
receiving authenticated user data from said authority in response to said request; and
using said authenticated user data to obtain at least one service on said data communications network, said using comprising;
presenting a service request, said authenticated user data to a service provider; and
receiving said at least one service in response to said service request if said service provider determines said authenticated user data is sufficient to provide said at least one service.
-
3. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for obtaining a service on a data communications network, the method comprising:
-
enrolling with an authority, said enrolling creating enrollment results, said enrollment results comprising user data; and
using said enrollment results to obtain a service from a service provider, said service provider capable of communicating with said authority to verify said enrollment results.
-
-
4. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for managing identification in a data communications network, the method comprising:
generating authenticated user data, said generating comprising;
presenting a request for authenticated user data and a first set of user data to an authority; and
receiving authenticated user data from said authority in response to said request; and
using said authenticated user data to obtain at least one service on said data communications network, said using comprising;
presenting a service request, said authenticated user data to a service provider; and
receiving said at least one service in response to said service request if said service provider determines said authenticated user data is sufficient to provide said at least one service.
-
5. An apparatus for managing identification in a data communications network, the apparatus comprising:
means for generating authenticated user data, said generating comprising;
means for presenting a request for authenticated user data and a first set of user data to an authority; and
means for receiving authenticated user data from said authority in response to said request; and
means for using said authenticated user data to obtain at least one service on said data communications network, said means for using comprising;
means for presenting a service request, said authenticated user data to a service provider; and
means for receiving said at least one service in response to said service request if said service provider determines said authenticated user data is sufficient to provide said at least one service.
-
6. An apparatus for managing identification in a data communications network, the apparatus comprising:
-
means for receiving a user-controlled secure storage device;
means for enrolling said user with an authority, said enrolling comprising providing information requested by said authority;
means for receiving user data in response to said enrolling;
means for storing said user data in said user-controlled secure storage device; and
means for using said user data at a service provider Web site to obtain a service.
-
-
7. An apparatus for obtaining a service on a data communications network, the apparatus comprising:
an enrollment authority configured to accept an enrollment request, said enrollment authority further configured to return enrollment results in response to said enrollment request, said enrollment results comprising user data, said enrollment results for use in obtaining a service from a service provider.
-
8. An apparatus for obtaining a service on a data communications network, the apparatus comprising:
a service provider configured to accept a service request and enrollment results obtained from an enrollment authority, said service provider capable of communicating with said authority to verify said enrollment results, said service provider configured to provide said service based upon said enrollment results and a response from said enrollment authority.
-
9. An apparatus for managing identification in a data communications network, the apparatus comprising:
an authority configured to accept an authenticated data request and a user data, said authority further configured to authenticate said user data to create authenticated data, said authority further configured to return said authenticated data in response to said authenticated data request.
-
10. An apparatus for managing identification in a data communications network, the apparatus comprising:
a service provider configured to accept a service request, a first set of user data and a second set of user data, said first set of user data comprising user data authenticated by an authority, said service provider further configured to determine whether said first set of user data and said second set of user data are sufficient to provide said service, said service provider further configured to provide said service based upon said determination.
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeSun Microsystems Incorporated (Oracle Corporation)
-
Original AssigneeSun Microsystems Incorporated (Oracle Corporation)
-
InventorsdeJong, Eduard K., Levy, Moshe, Leung, Albert Y.
-
Application NumberUS10/033,373Publication NumberTime in Patent OfficeDaysField of SearchUS Class Current709/229CPC Class CodesG06F 21/33 using certificatesG06F 21/34 involving the use of extern...G06F 21/6245 Protecting personal data, e...H04L 63/0407 wherein the identity of one...H04L 63/08 for authentication of entit...H04L 63/0815 providing single-sign-on or...H04L 63/0853 using an additional device,...
