Use of pseudonyms vs. real names
First Claim
1. An apparatus for sharing services without sharing identity informational data using pseudonyms, said apparatus comprising:
- a first service associated with a first identity informational data and associated with a first pseudonym;
a second service associated with a second identity informational data and associated with a second pseudonym, wherein said second service desires to interact with said first service; and
an authentication mechanism for authenticating said second identity informational data for sharing of said first and second services.
8 Assignments
0 Petitions
Accused Products
Abstract
An apparatus and method is provided for allowing users to share services without sharing identities. Specifically, the apparatus and method allow users to share pseudonyms instead of actual user names, thus protecting both users from unwanted emails, IM messages, and the like. The invention provides an introduction scheme, which comprises a simple and secure way of establishing a user to user link. A preferred embodiment incorporates services of a linked federation network service, such as AOL'"'"'s Liberty Alliance service, without exposing real user names to other users.
-
Citations
30 Claims
-
1. An apparatus for sharing services without sharing identity informational data using pseudonyms, said apparatus comprising:
-
a first service associated with a first identity informational data and associated with a first pseudonym;
a second service associated with a second identity informational data and associated with a second pseudonym, wherein said second service desires to interact with said first service; and
an authentication mechanism for authenticating said second identity informational data for sharing of said first and second services. - View Dependent Claims (2, 3)
-
-
4. A method for sharing services without sharing identity informational data using pseudonyms, said method comprising the steps of:
-
providing a first service associated with a first identity informational data and associated with a first pseudonym;
providing a second service associated with a second identity informational data and associated with a second pseudonym, wherein said second service desires to interact with said first service; and
providing an authentication mechanism for authenticating said second identity informational data for sharing of said first and second services. - View Dependent Claims (5, 6)
-
-
7. A method for a first service having identity information to obtain informational data from a second service without said second service having access to said identity information, said method comprising the steps of:
-
said first service providing identity information of said first service and providing location information of said second service to an authentication service, said authentication service using said identity information and said location information of said second service for generating an associated access code; and
said authentication service verifying said associated access code when said first service desires to use said second service.
-
-
8. An apparatus for a first service having identity information to obtain informational data from a second service without said second service having access to said identity information, said apparatus comprising:
-
means for said first service providing identity information of said first service and providing location information of said second service to an authentication service, means for said authentication service using said identity information and said location information of said second service for generating an associated access code; and
means for said authentication service verifying said associated access code when said first service desires to use said second service.
-
-
9. A method for a second service allowing access by a first service, said method comprising the steps of:
-
said second service obtaining an access code associated with said first service;
said second service storing said access code; and
said second service requesting an authentication service to verify said access code.
-
-
10. An apparatus for a second service allowing access by a first service, said method comprising:
-
means for said second service obtaining an access code associated with said first service;
means for said second service storing said access code; and
means for said second service requesting an authentication service to verify said access code.
-
-
11. A method for a second service allowing access by a first service for sharing relevant data, said method comprising the steps of:
-
said second service having a name and a user coupled to said second service providing said name of said second service to a user coupled to said first service;
said user coupled to said first service submitting said name and a display name coupled to said second service to said first service;
said first service making a request to an authentication service to generate an access code for said first service to access said second service, wherein said first service provides as input to said authentication service identity information coupled to said first user and said name;
said authentication service returning to said first service said access code;
said first service storing said returned access code, storing said display name, and making said display name available to said first user;
said first user providing said access code to said second user;
said second user providing said access code to said second service for said second service to store said access code;
for using said second service, said user coupled to said first service selecting said display name stored on said first service;
said first service respondably submitting a service assertion, said first user identity information and said access code to said second service;
said second service requesting from said authentication service verification of said access code; and
if verified, said authentication service providing authentication information to said second service. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An apparatus for a second service allowing access by a first service for sharing relevant data, said apparatus comprising:
-
means for said second service having a name and a user coupled to said second service providing said name of said second service to a user coupled to said first service;
means for said user coupled to said first service submitting said name and a display name coupled to said second service to said first service;
means for said first service making a request to an authentication service to generate an access code for said first service to access said second service, wherein said first service provides as input to said authentication service identity information coupled to said first user and said name;
means for said authentication service returning to said first service said access code;
means for said first service storing said returned access code, storing said display name, and making said display name available to said first user;
means for said first user providing said access code to said second user;
means for said second user providing said access code to said second service for said second service to store said access code;
for using said second service, means for said user coupled to said first service selecting said display name stored on said first service;
means for said first service respondably submitting a service assertion, said first user identity information and said access code to said second service;
means for said second service requesting from said authentication service verification of said access code; and
if verified, means for said authentication service providing authentication information to said second service. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30)
-
Specification