CLAIM CATEGORY HANDLING
First Claim
Patent Images
1. An apparatus, comprising:
- a machine (105);
a card selector (205) on the machine (105) to receive a selection of an information card (220) from a user;
a receiver (210) to receive a security policy (150) from a relying party (130) used in identifying said information card (220), and a security token (160) responsive to said security policy (150) from an identity provider (135); and
a transmitter (215) to transmit said security policy (150) to said identity provider (135) and said security token (160) to said relying party (130), said security token (160) responsive to said security policy (150),wherein said security policy (150) includes at least one claim (405, 410, 415, 420) that the relying party (130) considers neither required nor optional (435, 440).
7 Assignments
0 Petitions
Accused Products
Abstract
A relying party can have a security policy. The security policy can include claims that are categorized other than “required” and “optional”. The user can specify, in a user policy, whether or not to include in a request for a security token from an identity provider claims that are not “required”.
-
Citations
28 Claims
-
1. An apparatus, comprising:
-
a machine (105); a card selector (205) on the machine (105) to receive a selection of an information card (220) from a user; a receiver (210) to receive a security policy (150) from a relying party (130) used in identifying said information card (220), and a security token (160) responsive to said security policy (150) from an identity provider (135); and a transmitter (215) to transmit said security policy (150) to said identity provider (135) and said security token (160) to said relying party (130), said security token (160) responsive to said security policy (150), wherein said security policy (150) includes at least one claim (405, 410, 415, 420) that the relying party (130) considers neither required nor optional (435, 440). - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An apparatus, comprising:
-
a machine (130); memory (315) in the machine (130); a web site (320) stored in the memory (315) in the machine (130); and a security policy (150) associated with the web site (320), the security policy (150) including at least one claim (405, 410, 415, 420) that is neither required nor optional (435, 440) for use of the web site (320). - View Dependent Claims (9, 10)
-
-
11. A security policy data structure stored in memory (315), comprising:
a first claim (405, 410, 415, 420) considered either required or optional (425, 430) by a relying party (130);
ad a second claim (405, 410, 415, 420) considered neither required nor optional (435, 440) by said relying party (130).- View Dependent Claims (12)
-
13. A method, comprising:
-
receiving (805) a security policy (150) from a relying party (130), the security policy (150) including at least one claim (405, 410, 415, 420) that the relying party (130) considers neither required nor optional (435, 440); identifying (810) an information card (220) that satisfies the security policy (150); requesting (815) a security token (160) from an identity provider (135) in response to the security token (160); and transmitting (820) the security token (160) to the relying party (130). - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A method, comprising:
-
receiving (1105) a request for a web site (320) at a relying party (130) from a client (105); identifying (1110) a security policy (150) associated with the web site (320), the security policy (150) including at least one claim (405, 410, 415, 420) that is neither required nor optional (435, 440) for use of the web site (320); and transmitting (1115) the security policy (150) to the client (105). - View Dependent Claims (20)
-
-
21. An article, comprising a storage medium, said storage medium having stored thereon instructions that, when executed by a machine, result in:
-
receiving (805) a security policy (150) from a relying party (130), the security policy (150) including at least one claim (405, 410, 415, 420) that the relying party (130) considers neither required nor optional (435, 440); identifying (810) an information card (220) that satisfies the security policy (150); requesting (815) a security token (160) from an identity provider (135) in response to the security token (160); and transmitting (820) the security token (160) to the relying party (130). - View Dependent Claims (22, 23, 24, 25, 26)
-
-
27. An article, comprising a storage medium, said storage medium having stored thereon instructions that, when executed by a machine, result in:
-
receiving (1105) a request for a web site (320) at a relying party (130) from a client (105); identifying (1110) a security policy (150) associated with the web site (320), the security policy (150) including at least one claim (405, 410, 415, 420) that is neither required nor optional (435, 440) for use of the web site (320); and transmitting (1115) the security policy (150) to the client (105). - View Dependent Claims (28)
-
Specification