Methods and apparatus for authenticating a remote service to another service on behalf of a user
First Claim
1. A method performed by a user client to provide authorization to a remote application client that performs one or more actions for said user client, comprising:
- providing one or more keys to a remote authentication service;
receiving an identifier of said remote application client; and
notifying said remote authentication service that said remote application client is authorized to obtain a response based on at least one of said one or more keys using said identifier.
9 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus are provided for authenticating a remote service to another service on behalf of a user. A user client authorizes a remote application client to perform one or more actions on behalf of the user client. The user client provides one or more keys to a remote authentication service; receives an identifier of the remote application client; and notifies the remote authentication service that the remote application client is authorized to obtain a response based on at least one of the one or more keys using the identifier. The remote application client provides a challenge that is received from a server that the remote application client is attempting to access for the user client and an identifier of the user client to a remote authentication service; and receives a response to the challenge from the remote authentication service that is based on one or more keys stored by the remote authentication service on behalf of the user client.
28 Citations
22 Claims
-
1. A method performed by a user client to provide authorization to a remote application client that performs one or more actions for said user client, comprising:
-
providing one or more keys to a remote authentication service;
receiving an identifier of said remote application client; and
notifying said remote authentication service that said remote application client is authorized to obtain a response based on at least one of said one or more keys using said identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method performed by a remote application client that performs one or more actions for a user client, comprising:
-
receiving a challenge from a server that said remote application client is attempting to access for said user client;
providing said challenge and an identifier of said user client to a remote authentication service;
receiving a response to said challenge from said remote authentication service, wherein said response is based on one or more keys stored by said remote authentication service on behalf of said user client; and
providing said response to said server. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A method for managing one or more keys for a user client, comprising:
-
receiving said one or more keys from said user client;
receiving a notification from said user client that a remote application client that performs one or more actions for said user client is authorized to obtain a response based on at least one of said one or more keys;
receiving a challenge and an identifier of said user client from said remote application client; and
providing said response to said challenge to said remote application client. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. An apparatus for managing one or more keys for a user client, the apparatus comprising:
-
a memory; and
at least one processor, coupled to the memory, operative to;
receive said one or more keys from said user client;
receive a notification from said user client that a remote application client that performs one or more actions for said user client is authorized to obtain a response based on at least one of said one or more keys;
receive a challenge and an identifier of said user client from said remote application client; and
provide said response to said challenge to said remote application client. - View Dependent Claims (20, 21, 22)
-
Specification