Method and apparatus for establishing a federated identity using a personal wireless device
First Claim
1. A method for establishing an identity, the method comprising the steps of:
- authenticating an user to a personal wireless device;
authenticating the personal wireless device to a federated identity provider to obtain a token for the user; and
storing the token on the personal wireless device.
3 Assignments
0 Petitions
Accused Products
Abstract
A federated identity, established through possession of a single sign-on token, will allow a personal wireless device (PWD) to be used in a commercial environment to purchase goods or services, access a building, access a telephone, wireless, or computer network, or in numerous other instances. The token may be obtained by the user authenticating with the PWD and the PWD authenticating with the network. When the PWD comes within range of a service provider, a session is established using a short range wireless protocol, such as Bluetooth or infrared. The session is secured using a security protocol such as SSL, and the service provider authenticates its identity to the PWD. Policy may be implemented regarding transmission of the token to the service provider. Upon receipt of the token, the service provider will validate the token with the federated identity provider, obtain identifying information, and complete the transaction.
-
Citations
24 Claims
-
1. A method for establishing an identity, the method comprising the steps of:
-
authenticating an user to a personal wireless device;
authenticating the personal wireless device to a federated identity provider to obtain a token for the user; and
storing the token on the personal wireless device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A method of validating an identity of a customer by a service provider, comprising:
-
establishing a short range wireless session with a personal wireless device associated with the customer;
securing a channel over the short range wireless session; and
obtaining an identification token over the secured channel. - View Dependent Claims (23)
-
-
24. A method of conducting a transaction with a cellular telephone, the method comprising the steps of:
-
establishing a short range wireless Bluetooth connection with a service provider terminal;
encrypting the session to create a secure channel using secure socket layer; and
transmitting a federated identity single sign on token over the secure channel using Security Assertion Markup Language (SAML).
-
Specification