Personal identification information schemas

US 20070204325A1
Filed: 07/28/2006
Published: 08/30/2007
Est. Priority Date: 02/24/2006
Status: Active Grant

First Claim

Patent Images

1. A digital identity system, the system comprising:

a principal;

an identity selector programmed to receive a security policy from a relying party, to review a plurality of digital identities associated with the principal, and to request one or more claims related to an identity of the principal from an identity provider, and the principal being further programmed to receive one or more security tokens including the one or more claims from the identity provider, and to forward the security tokens to the relying party; and

a computer-readable medium encoded with a data structure, comprising,a capability data structure, comprising one or more capability records;

a connection data structure, comprising one or more connection records; and

a cognitive data structure, comprising one or more cognitive records.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A digital identity system includes a principal including an identity selector programmed to receive a security policy from a relying party, review a plurality of digital identities associated with the principal, and request one or more claims related to an identity of the principal from an identity provider. The principal is further programmed to receive one or more security tokens including the claims from the identity provider, and to forward the security tokens to the relying party.

195 Citations

View as Search Results

20 Claims

1. A digital identity system, the system comprising:
- a principal;
  
  an identity selector programmed to receive a security policy from a relying party, to review a plurality of digital identities associated with the principal, and to request one or more claims related to an identity of the principal from an identity provider, and the principal being further programmed to receive one or more security tokens including the one or more claims from the identity provider, and to forward the security tokens to the relying party; and
  
  a computer-readable medium encoded with a data structure, comprising,a capability data structure, comprising one or more capability records;
  
  a connection data structure, comprising one or more connection records; and
  
  a cognitive data structure, comprising one or more cognitive records.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The data structure of claim 1, wherein at least one cognitive record is a label identifying the data structure.
  - 3. The data structure of claim 2, wherein the label is a textual description of the data structure.
  - 4. The data structure of claim 2, wherein the label provides indicia of use of the data structure.
  - 5. The data structure of claim 2, wherein the label is a graphical image.
  - 6. The data structure of claim 2, wherein the label is an index to a graphical image externally located to the data structure.
  - 7. The data structure of claim 1, wherein at least one connection record is a decryption methodology operable to decrypt an encrypted portion of the data structure.
  - 8. The data structure of claim 1, wherein at least one connection record is a key for decrypting an encrypted portion of the data structure.
  - 9. The data structure of claim 1, wherein at least one capability record contains indicia of an authorizing entity providing at least one claim type.

10. A method for providing a digital identity, comprisingreceiving a request for one or more claims related to an identity of a principal;
- receiving the one or more claims;
  
  transforming the one or more claims;
  
  generating a security token including the one or more claims;
  
  encoding, in a computer-readable medium, a data structure, comprising, a capability data structure, the capability data structure comprising the capability records; and
  
  providing the data structure.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The method of claim 10, further comprising:
    - generating one or more cognitive records; and
      
      encoding the data structure to further comprise, a cognitive data structure, the cognitive data structure comprising the one or more cognitive records.
  - 12. The method of claim 11, further comprising, generating at least one cognitive record with an identifier of the data structure.
  - 13. The method of claim 11, further comprising, generating at least one cognitive record with the identifier of the data structure, wherein the identifier is determined in response to a user input.
  - 14. The method of claim 10, further comprising:
    - generating one or more connection records; and
      
      encoding the data structure to further comprise, a connection data structure, the connection data structure comprising the one or more connection records.
  - 15. The method of claim 14, further comprising, generating at least one connection record with decryption data associated with the security token.
  - 16. The method of claim 14, further comprising, generating at least one connection record with server connection data associated with the generator of the security token.

17. A computer-readable medium having encoded thereon computer-executable instructions for performing steps comprising:
- receiving a request for one or more claims related to an identity of a principal;
  
  acquiring the one or more claims;
  
  generating a security token including the one or more claims;
  
  encoding, in a computer-readable medium, a data structure, comprising, a capability data structure, the capability data structure comprising the capability records; and
  
  providing the data structure.
- View Dependent Claims (18, 19, 20)
- - 18. The computer-readable medium of claim 17 having further computer-executable instructions for performing the steps of:
    - generating one or more cognitive records; and
      
      encoding the data structure to further comprise, a cognitive data structure, the cognitive data structure comprising the one or more cognitive records.
  - 19. The computer-readable medium of claim 18 having further computer-executable instructions for performing the step of, generating at least one cognitive record with an indicia determined in response to a user input to a computer.
  - 20. The computer-readable medium of claim 17 having further computer-executable instructions for performing the steps of:
    - generating one or more connection records; and
      
      encoding the data structure to further comprise, a connection data structure, the connection data structure comprising the one or more connection records.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Nanda, Arun K., Cameron, Kim

Granted Patent

US 8,117,459 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/1
CPC Class Codes

G06F 21/33 using certificates

G06F 2221/2115 Third party

Personal identification information schemas

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

195 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Personal identification information schemas

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

195 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others