BROWSER PLUG-IN FOR SECURE CREDENTIAL SUBMISSION

US 20100325715A1
Filed: 06/23/2009
Published: 12/23/2010
Est. Priority Date: 06/23/2009
Status: Active Grant

First Claim

Patent Images

1. In a computing environment, a system comprising, a browser that instantiates an plug-in identified by content corresponding to a website, the plug-in configured to call functions of a credential service, including to determine whether a set of credential data that matches the website'"'"'s requirements is available, and if so, to obtain a token corresponding to the set of credential data for providing to the website.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Described is a technology by which a plug-in (e.g., an ActiveX® control) instantiated by a web browser calls functions of a credential service to use a set of credential data (e.g., a card file) for logging into a website. If the credential service determines that a previously used card file for the website exists, a representation of that card file is displayed in the browser, and the data of that card file is used to obtain a token for logging in the user. If not found, an icon is presented instead, by which the user can select a user interface that allows selection of another card file that meets that meet the website'"'"'s requirements.

26 Citations

View as Search Results

20 Claims

1. In a computing environment, a system comprising, a browser that instantiates an plug-in identified by content corresponding to a website, the plug-in configured to call functions of a credential service, including to determine whether a set of credential data that matches the website'"'"'s requirements is available, and if so, to obtain a token corresponding to the set of credential data for providing to the website.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The system of claim 1 wherein the plug-in comprises an ActiveX®
    - control or NPAPI component.
  - 3. The system of claim 1 wherein the plug-in is identified in HTML content, and is associated with parameters including information that corresponds to the website'"'"'s requirements
  - 4. The system of claim 1 wherein the set of credential data comprises a card file maintained in a card store.
  - 5. The system of claim 4 wherein the plug-in displays a visible representation of the card file.
  - 6. The system of claim 1 wherein the credential service determines whether a set of credential data that matches the website'"'"'s requirements is available by accessing a ledger associated with a card store.
  - 7. The system of claim 1 further comprising a credential user interface that is presented when the credential service determines that no previously used of credential data matches the website'"'"'s requirements, the credential user interface configured to present one or more other sets of credential data that match the website'"'"'s requirements and to allow user selection of another set of credential data.
  - 8. The system of claim 7 wherein the plug-in provides a select icon when no previously used of credential data matches the website'"'"'s requirements credential user interface, and wherein the credential user interface is presented when the select icon is clicked.
  - 9. The system of claim 1 wherein the credential service obtains the token from an issuer service.
  - 10. The system of claim 1 wherein the credential service includes functions called by the plug-in, including a function that when invoked instructs the credential service to obtain the token.

11. In a computing environment, a method comprising, calling a credential service from a browser plug-in to determine whether a set of credential data previously associated with a website matches requirements set forth in parameters associated with the plug-in, and if so, the plug-in calling the credential service to obtain a token corresponding to the credential data for providing to the website.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. The method of claim 11 further comprising, instantiating the plug-in by processing HTML that corresponds to a page of the website.
  - 13. The method of claim 11 wherein a set of credential data previously associated with a website matches the requirements, and further comprising, displaying a representation of that set of credential data in association with the plug-in.
  - 14. The method of claim 11 wherein the credential data does not match the requirements, and further comprising, calling the credential service to find at least one other set of credential data that meets the requirements, and presenting a representation of each other set of credential data that meets the requirements for user selection of another set.
  - 15. The method of claim 14 further comprising, providing an icon that indicates that a set of credential data that meets the requirements is needed, and wherein presenting the representation of each other set of credential data occurs in response to user interaction with the icon.
  - 16. The method of claim 11 further comprising, obtaining the token and submitting the token to the website.
  - 17. The method of claim 16 wherein obtaining the token comprises providing a notification to the website, and in response to the notification, receiving a function call to get the token.

18. One or more computer-readable media having computer-executable instructions, which when executed perform steps, comprising, accessing information associated with a data store that maintains sets of credential data to determine whether a set of credential data previously associated with a website matches requirements set forth in parameters associated a the plug-in, and if so,a) displaying a representation of that set of credential data, obtaining a token corresponding to the credential data, and providing the token to a website,and if not,b) searching for other sets of credentials data that match requirements, displaying a representation for each set that matches, receiving interaction with a displayed representation of another set, obtaining a token corresponding to the credential data of that other set, and providing the token to a website.
- View Dependent Claims (19, 20)
- - 19. The one or more computer-readable media of claim 18 wherein displaying the representation comprises providing a credential user interface.
  - 20. The one or more computer-readable media of claim 18 wherein accessing the information associated with a data store comprises reading a ledger associated with a card file data store.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Baker, Caleb G., Dellow, Colin Leslie, Zhu, Danhua, Deurbrouck, John, Franco, Roberto A.

Granted Patent

US 9,124,566 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/9
CPC Class Codes

G06F 16/986   Document structures and sto...

H04L 63/08   for authentication of entit...

H04L 63/168   above the transport layer

H04L 67/02   based on web technology, e....

BROWSER PLUG-IN FOR SECURE CREDENTIAL SUBMISSION

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

26 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

BROWSER PLUG-IN FOR SECURE CREDENTIAL SUBMISSION

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

26 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links