TRUSTWORTHY DEVICE CLAIMS FOR ENTERPRISE APPLICATIONS
First Claim
Patent Images
1. A method, comprising:
- (A) receiving, by an application from a client device via at least one network, one or more device claims each describing an attribute of the client device;
(B) employing at least one processor to process the one or more device claims, the processing comprising performing a function that depends on the attribute of the client device described by each of the one or more device claims.
2 Assignments
0 Petitions
Accused Products
Abstract
Embodiments of the invention enable a client device to procure trustworthy device claims describing one or more attributes of the client device, have those device claims included in a data structure having a format suitable for processing by an application, and use the data structure which includes the device claims in connection with a request to access the application. The application may use the device claims to drive any of numerous types of application functionality, such as security-related and/or other functionality.
52 Citations
20 Claims
-
1. A method, comprising:
-
(A) receiving, by an application from a client device via at least one network, one or more device claims each describing an attribute of the client device; (B) employing at least one processor to process the one or more device claims, the processing comprising performing a function that depends on the attribute of the client device described by each of the one or more device claims. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-readable storage medium having instructions encoded thereon which, when executed, perform a method comprising:
-
(A) receiving, from a client device via at least one network, one or more device claims each describing an attribute of the client device; (B) generating a data structure which includes the one or more device claims, the data structure having a format suitable for processing by an application; and (C) providing the data structure to the client device for use in connection with a request by the client device to access the application. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A client device, comprising at least one processor programmed to:
-
request, from an attestation facility accessible to the client device via at least one network, a certificate which includes one or more trustworthy device claims, each device claim describing an attribute of the client device; provide, to a security token service (STS), the certificate or a Kerberos ticket generated using the certificate, the certificate or a Kerberos ticket including the one or more trustworthy device claims; receive, from the STS, a Security Assertion Markup Language (SAML) token including the one or more trustworthy device claims; employing the SAML token including the one or more trustworthy device claims in connection with a request to access a web application. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification