Graduated authentication in an identity management system
First Claim
Patent Images
1. A method of selecting a security level for transmitting identity information from a homesite in an identity management network to a membersite in the identity management network, the method comprising:
- receiving a request from a membersite;
determining, in accordance with a security level associated with the received request, the security level for transmitting the response to the request and transmitting the response to the received request over a channel selected in accordance with the determined security level.
6 Assignments
0 Petitions
Accused Products
Abstract
A method and system for graduated security in an identity management system utilize differing levels of time sensitivity, channel security and authentication security to provide a multi-dimensional approach to providing the right fit for differing identity requests. The differing levels of security can be selected by user preference, membersite request or homesite policy.
-
Citations
22 Claims
-
1. A method of selecting a security level for transmitting identity information from a homesite in an identity management network to a membersite in the identity management network, the method comprising:
-
receiving a request from a membersite;
determining, in accordance with a security level associated with the received request, the security level for transmitting the response to the request and transmitting the response to the received request over a channel selected in accordance with the determined security level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A homesite, in an identity management system, for receiving information requests from a membersite in the identity management system, and for determining a security level for transmitting a response to received information requests, the homesite comprising:
-
an input for receiving an information request from a membersite;
an authentication engine for authenticating a user associated with the information request; and
response engine for assembling information associated with the user in accordance with the received authentication request, and for transmitting the assembled information to the membersite over a channel selected in accordance with a security level determined in accordance with the received information request. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
-
Specification