Method and apparatus for pervasive authentication domains
First Claim
1. A method of enabling at least one pervasive device to retrieve at least one authentication token from at least one personal authentication gateway, the at least one pervasive device comprising at least one automatic token client application and the at least one personal authentication gateway comprising at least one token server application, said method comprising the steps of:
- ascertaining at least one personal authentication gateway from the at least one pervasive device;
sending at least one token request from at least one pervasive device to at least one personal authentication gateway; and
receiving a token response at the pervasive device from the at least one personal authentication gateway.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and apparatus for enabling a Pervasive Authentication Domain. A Pervasive Authentication Domain allows many registered Pervasive Devices to obtain authentication credentials from a single Personal Authentication Gateway and to use these credentials on behalf of users to enable additional capabilities for the devices. It provides an arrangement for a user to store credentials in one device (the Personal Authentication Gateway), and then make use of those credentials from many authorized Pervasive Devices without re-entering the credentials. It provides a convenient way for a user to share credentials among many devices, particularly when it is not convenient to enter credentials as in a smart wristwatch environment. It further provides an arrangement for disabling access to credentials to devices that appear to be far from the Personal Authentication Gateway as measured by metrics such as communications signal strengths.
-
Citations
29 Claims
-
1. A method of enabling at least one pervasive device to retrieve at least one authentication token from at least one personal authentication gateway, the at least one pervasive device comprising at least one automatic token client application and the at least one personal authentication gateway comprising at least one token server application, said method comprising the steps of:
-
ascertaining at least one personal authentication gateway from the at least one pervasive device;
sending at least one token request from at least one pervasive device to at least one personal authentication gateway; and
receiving a token response at the pervasive device from the at least one personal authentication gateway. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of enabling at least one personal authentication gateway to distribute at least one authentication token to at least one authorized pervasive device, the at least one personal authentication gateway comprising at least one token server and the at least one pervasive device comprising at least one automatic token client, said method comprising the steps of:
-
receiving at least one token request from at least one pervasive device on at least one personal authentication gateway;
determining whether the pervasive device is authorized to receive authentication tokens; and
sending at least one token response to the at least one pervasive device from at least one personal authentication gateway. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. An apparatus for enabling at least one pervasive device to retrieve at least one authentication token from at least one personal authentication gateway, said apparatus comprising:
-
a discoverer which finds at least one personal authentication gateway capable of responding to token requests;
a token requestor which sends at least one requests for at least one token required by the at least one pervasive device; and
a token responder which accepts at least one token requests and sends at least one token response with at least one authentication token to at least one authorized pervasive device. - View Dependent Claims (20, 21, 22, 23)
-
-
24. An apparatus comprising means for enabling at least one personal authentication gateway to distribute authentication tokens to at least one authorized pervasive device, said apparatus comprising:
-
means for registering at least one pervasive device for membership in a pervasive authentication domain; and
means for receiving a token request from at least one pervasive device;
means for determining whether the at least one pervasive device is authorized to receive authentication tokens; and
means for sending at least one token response to said at least one pervasive device from at least one personal authentication gateway.
-
-
25. A program storage device readable by machine, tangibly embodying a program of instructions executable by the machine to perform method steps for enabling at least one pervasive device to retrieve at least one authentication token from at least one personal authentication gateway, the at least one pervasive device comprising at least one automatic token client application and the at least one personal authentication gateway comprising at least one token server application, said method comprising the steps of:
-
ascertaining at least one personal authentication gateway from the at least one pervasive device;
sending at least one token request from at least one pervasive device to at least one personal authentication gateway; and
receiving a token response at the pervasive device from the at least one personal authentication gateway.
-
-
26. A program storage device readable by machine, tangibly embodying a program of instructions executable by the machine to perform method steps enabling at least one personal authentication gateway to distribute authentication tokens to at least one authorized pervasive device, the at least one personal authentication gateway comprising at least one token server and the at least one pervasive device comprising at least one automatic token client, said method comprising the steps of:
-
receiving at least one token request from at least one pervasive device on at least one personal authentication gateway;
determining whether the pervasive device is authorized to receive authentication tokens; and
sending at least one token response to the at least one pervasive device from at least one personal authentication gateway.
-
-
27. An article of manufacture comprising a computer usable medium having computer readable program code means embodied therein for causing a computer to effect a method of enabling at least one pervasive device to retrieve at least one authentication token from at least one personal authentication gateway, the at least one pervasive device comprising at least one automatic token client application and the at least one personal authentication gateway comprising at least one token server application, said method comprising the steps of:
-
ascertaining at least one personal authentication gateway from the at least one pervasive device;
sending at least one token request from at least one pervasive device to at least one personal authentication gateway; and
receiving a token response at the pervasive device from the at least one personal authentication gateway.
-
-
28. An article of manufacture comprising a computer usable medium having computer readable program code means embodied therein for causing a computer to effect a method of enabling at least one personal authentication gateway to distribute at least one authentication token to at least one authorized pervasive device, the at least one personal authentication gateway comprising at least one token server and the at least one pervasive device comprising at least one automatic token client, said method comprising the steps of:
-
receiving at least one token request from at least one pervasive device on at least one personal authentication gateway;
determining whether the pervasive device is authorized to receive authentication tokens; and
sending at least one token response to the at least one pervasive device from at least one personal authentication gateway.
-
-
29. A computer program product comprising a computer usable medium having computer readable program code means embodied therein for causing enablement of at least one pervasive device to obtain authentication tokens from at least one personal authentication gateway, the computer readable program code means in said computer program product comprising computer readable program code means for causing a computer to effect an apparatus for enabling at least one pervasive device to retrieve at least one authentication token from at least one personal authentication gateway, said apparatus comprising:
-
a discoverer which finds at least one personal authentication gateway capable of responding to token requests;
a token requester which sends at least one requests for at least one token required by the at least one pervasive device; and
a token responder which accepts at least one token requests and sends at least one token response with at least one authentication token to at least one authorized pervasive device.
-
Specification