Dynamic Web Services Systems and Method For Use of Personal Trusted Devices and Identity Tokens
First Claim
1. A server for interacting with a network of client computing devices, said server comprising:
- a client framework module adapted to receive service requests from a client computing device and determining the configuration of the client computing device;
a client agent dispatcher adapted to send an identifying module adapted to interact with an identifying device on the client computing device; and
an authentication module for verifying an individual on the client computing device based on communications with the identifying module.
9 Assignments
0 Petitions
Accused Products
Abstract
The present invention involves one or more computers that provide software controls to enable a web application to interface with a personal trusted device. The server side of the computer system comprises: a server-based framework process; a device for receiving requests from the client computer and determining which software controls to send in response; and a device for digitally signing and encrypting the software controls before sending them to the client computer so that their authenticity can be verified. The client side of the computer system comprises: a client web browser that runs on a computer; a device for transmitting requests to the server computer and for receiving responses from those requests; a device for decrypting software controls so that the authenticity of their digital signature can be verified; and a connection to one or more personal trusted devices. An authentication proxy may be used to mutually authenticate a client user and server process using personal trusted devices.
85 Citations
20 Claims
-
1. A server for interacting with a network of client computing devices, said server comprising:
-
a client framework module adapted to receive service requests from a client computing device and determining the configuration of the client computing device;
a client agent dispatcher adapted to send an identifying module adapted to interact with an identifying device on the client computing device; and
an authentication module for verifying an individual on the client computing device based on communications with the identifying module. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A computing device for interacting with a network of computing devices, said computing device comprising:
-
a client browser adapted to run on the computing device;
a service request module adapted to send server request messages over the network and to receive responses to the requests; and
a token discovery module adapted to ascertain the presence of identifying hardware or software and provide configuration information to the service request module. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A method for authenticating a user for a secure application over a communications network comprising the steps of:
-
receiving information relating to an identifying device on the computing device;
sending an identifying module adapted to interface with the identifying device to the computing device; and
authenticating a transaction with information from the identifying module and the identifying device. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification