LOG-ON SERVICE PROVIDING CREDENTIAL LEVEL CHANGE WITHOUT LOSS OF SESSION CONTINUITY
First Claim
1. A method for providing access to a plurality of secured resources in a networked information environment, the method comprising:
- creating a default credential if a supplied credential has expired or does not exist; and
maintaining a single session for accessing the plurality of secured resources that are associated with different trust level requirements across a credential level change.
0 Assignments
0 Petitions
Accused Products
Abstract
A security architecture has been developed in which a single sign-on is provided for multiple information resources. Rather than specifying a single authentication scheme for all information resources, the security architecture associates trust-level requirements with information resources. Authentication schemes (e.g., those based on passwords, certificates, biometric techniques, smart cards, etc.) are employed depending on the trust-level requirement(s) of an information resource (or information resources) to be accessed. Once credentials have been obtained for an entity and the entity has been authenticated to a given trust level, access is granted, without the need for further credentials and authentication, to information resources for which the authenticated trust level is sufficient.
145 Citations
1 Claim
-
1. A method for providing access to a plurality of secured resources in a networked information environment, the method comprising:
-
creating a default credential if a supplied credential has expired or does not exist; and
maintaining a single session for accessing the plurality of secured resources that are associated with different trust level requirements across a credential level change.
-
Specification