System and method for user enrollment in an e-community
First Claim
1. A method for allowing an Internet or intranet browser user to transfer directly to a domain that is participating in an e-community without repetitious and redundant authentication actions, said e-community comprising a plurality of affiliated domain servers, said user being properly registered and authenticated to a home domain server within said e-community, said method comprising the steps of:
- enrolling said user at an affiliated domain through exchange of a home domain identity cookie with enrollment request and an affiliated domain identity cookie with enrollment response success indicator between said home domain server and an affiliated domain server;
vouching for the identity of the user through exchange of a vouch-for request and vouch-for response between said home domain server and an affiliated domain server;
building a local session at said affiliated domain for said user using said protected resource responsive to receipt of said vouch-for response; and
transmitting an e-community cookie from said affiliated domain server to said browser recording successful authentication of said user into said affiliated domain.
4 Assignments
0 Petitions
Accused Products
Abstract
An Internet user transfers directly to a domain within an e-community without returning to a home domain or re-authenticating. The user'"'"'s home domain server prepares and forwards a home domain identity cookie (DIDC) with an enrollment request to a user'"'"'s browser, with the enrollment request being redirected to an affiliated domain server in the e-community. The affiliated domain server prepares and sends an affiliated DIDC with an enrollment confirmation to the user'"'"'s browser, redirecting the enrollment confirmation to the home domain server. The home domain server modifies the home DIDC to include a symbol which indicates successful enrollment at the affiliated site. The process may be repeated for a plurality of affiliated domains to achieve automatic enrollment a portion of or an entire e-community.
196 Citations
24 Claims
-
1. A method for allowing an Internet or intranet browser user to transfer directly to a domain that is participating in an e-community without repetitious and redundant authentication actions, said e-community comprising a plurality of affiliated domain servers, said user being properly registered and authenticated to a home domain server within said e-community, said method comprising the steps of:
-
enrolling said user at an affiliated domain through exchange of a home domain identity cookie with enrollment request and an affiliated domain identity cookie with enrollment response success indicator between said home domain server and an affiliated domain server;
vouching for the identity of the user through exchange of a vouch-for request and vouch-for response between said home domain server and an affiliated domain server;
building a local session at said affiliated domain for said user using said protected resource responsive to receipt of said vouch-for response; and
transmitting an e-community cookie from said affiliated domain server to said browser recording successful authentication of said user into said affiliated domain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer readable medium encoded with software for allowing an Internet or intranet browser user to transfer directly to a domain that is participating in an e-community without repetitious and redundant authentication actions, said e-community comprising a plurality of affiliated domain servers, said user being properly registered and authenticated to a home domain server within said e-community, said software causing a processor to perform the steps of:
-
enrolling said user at an affiliated domain through exchange of a home domain identity cookie with enrollment request and an affiliated domain identity cookie with enrollment response success indicator between said home domain server and an affiliated domain server;
vouching for the identity of the user through exchange of a vouch-for request and vouch-for response between said home domain server and an affiliated domain server;
building a local session at said affiliated domain for said user using said protected resource responsive to receipt of said vouch-for response; and
transmitting an e-community cookie from said affiliated domain server to said browser recording successful authentication of said user into said affiliated domain. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A system for e-community enrollment by an Internet or intranet user using cross-domain single-sign-on to a domain that is participating in an e-community without repetitious and redundant authentication actions, said e-community comprising a plurality of affiliated domain servers, said user being properly registered and authenticated to a home domain server within said e-community, said system comprising:
-
a home domain identity cookie accompanying an enrollment request receivable by an affiliated domain server;
an affiliated domain identity cookie accompanying an enrollment response success indicator receivable by said home domain server;
a vouch-for request receivable by a home domain server; and
a vouch-for response receivable by said affiliated domain server; and
an e-community cookie receivable by said browser to record successful authentication of said user into said affiliated domain for the duration of the user'"'"'s session. - View Dependent Claims (20, 21, 22, 23, 24)
-
Specification