METHOD AND APPARATUS FOR PROVIDING TRUSTED SINGLE SIGN-ON ACCESS TO APPLICATIONS AND INTERNET-BASED SERVICES
First Claim
1. A wireless transmit/receive unit (WTRU) for performing secure password management using a single sign-on (SSO) technique, the WTRU comprising:
- a SSO proxy unit for receiving user authentication data from a user, and for obtaining a requests for user specific login information for at least one website;
a trusted platform module (TPM) for storing user specific login information for at least one website and user authentication data, and for comparing said received user authentication data to the stored user authentication data, and forwarding said stored user specific login information if said comparison is positive;
a web accessing application (WAA), for automatically receiving said forwarded user specific login information and transmitting said forwarded user specific login information to said at least one website upon receiving a user request for access to said at least one website.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for password management and single sign-on (SSO) access based on trusted computing (TC) technology. The methods implement the Trusted Computing Group (TCG)'"'"'s trusted platform module (TPM), which interacts with both proxy SSO unit and web-accessing applications to provide a secure, trusted mechanism to generate, store, and retrieve passwords and SSO credentials. The various embodiments of the present invention allow a user to hop securely and transparently from one site to another that belong to a pre-identified group of sites, after signing on just once to a secured proxy residing at the user'"'"'s device.
333 Citations
32 Claims
-
1. A wireless transmit/receive unit (WTRU) for performing secure password management using a single sign-on (SSO) technique, the WTRU comprising:
-
a SSO proxy unit for receiving user authentication data from a user, and for obtaining a requests for user specific login information for at least one website;
a trusted platform module (TPM) for storing user specific login information for at least one website and user authentication data, and for comparing said received user authentication data to the stored user authentication data, and forwarding said stored user specific login information if said comparison is positive;
a web accessing application (WAA), for automatically receiving said forwarded user specific login information and transmitting said forwarded user specific login information to said at least one website upon receiving a user request for access to said at least one website. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 22)
-
-
17. A method for providing secure single sign-on (SSO) for at least one website of a group of websites accessed by a wireless transmit/receive unit (WTRU) having a trusted platform module (TPM), the method comprising:
-
determining at the WTRU a group of websites;
authenticating a user using at least 1 authentication factor; and
securely signing on to one website selected from the group of websites once the user is authenticated using login information stored in the TPM. - View Dependent Claims (18, 19, 20, 21, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification