Single sign-on process
First Claim
1. A single sign-on method allowing a user to remote-access a remote location using a single sign-on module, comprising the steps of:
- authenticating said user in a mobile network, using a first authenticator provided by said single sign-on module, establishing a connexion over said mobile network with said remote location, authenticating said user in said remote location, using a third authenticator provided by said single sign-on module, said third authenticator being different from said first authenticator, if said third authenticator is accepted by said remote location, granting access to the user to said remote location.
8 Assignments
0 Petitions
Accused Products
Abstract
Single sign-on process allowing a mobile user with a mobile phone or with a laptop to remote-access a remote server, comprising the steps of: (1) sending a first authenticator over a first communication layer to a first intermediate equipment between said mobile equipment and said remote server, (2) verifying in said first intermediate equipment said first authenticator sent by said mobile equipment, (3) if said first authenticator is accepted by said first intermediate equipment, completing the communication layer between said mobile equipment and said intermediate equipment, (4) repeating steps (1) to (3) with a plurality of successive intermediate equipment and over a plurality of successive communication layers, until a communication has been completed at the last requested communication layer between said mobile equipment and said remote server, wherein at least a plurality of said authenticators are furnished by a smart-card in said mobile equipment.
-
Citations
18 Claims
-
1. A single sign-on method allowing a user to remote-access a remote location using a single sign-on module, comprising the steps of:
-
authenticating said user in a mobile network, using a first authenticator provided by said single sign-on module, establishing a connexion over said mobile network with said remote location, authenticating said user in said remote location, using a third authenticator provided by said single sign-on module, said third authenticator being different from said first authenticator, if said third authenticator is accepted by said remote location, granting access to the user to said remote location. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
- 13. A single sign-on module comprising processing means for delivering a plurality of different authenticators for authenticating said user in a mobile network and in a corporate network.
-
17. A single sign-on module comprising processing means for delivering:
-
first authenticators for authenticating an user in a mobile network, second authenticators for authenticating said user in an ISP server, third authenticators for authenticating said user in a corporate network.
-
-
18. A method allowing a remote user to replace a secret requested for accessing a network, comprising:
-
proving knowledge of the old secret to be replaced, encrypting a new replacement secret with a public key, sending said encrypted replacement secret to said user, decrypting said replacement secret with the private key corresponding to said public key, replacing said old secret with said replacement secret.
-
Specification