MOBILE APPLICATION, SINGLE SIGN-ON MANAGEMENT

US 20130086669A1
Filed: 05/31/2012
Published: 04/04/2013
Est. Priority Date: 09/29/2011
Status: Abandoned Application

First Claim

Patent Images

1. A system, comprising:

a memory storing a plurality of instructions; and

one or more processors configured to access the memory, wherein the one or more processors are further configured to execute the plurality of instructions to;

receive, from a first application, an authentication request associated with a second application; and

provide, to the first application, an access token for allowing the second application to access a service provider accessible to the first application or the second application.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques for managing single sign-on are provided. in some examples, single sign-on functionality may be provided for use on mobile devices by utilizing mobile applications, cloud applications, and/or other web-based applications. For example, a mobile application or mobile web browser may request to authenticate with or access one or more service providers. Authentication credentials may be requested from a user of the mobile device to facilitate such authentication and/or access. Based at least in part on a successful log-in, access to server resources from other applications on the same mobile device may be provided without successive or repetitive credential requests to the user.

Citations

20 Claims

1. A system, comprising:
- a memory storing a plurality of instructions; and
  
  one or more processors configured to access the memory, wherein the one or more processors are further configured to execute the plurality of instructions to;
  
  receive, from a first application, an authentication request associated with a second application; and
  
  provide, to the first application, an access token for allowing the second application to access a service provider accessible to the first application or the second application.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The system of claim 1, wherein the first application comprises a security agent application of a mobile device, the security agent configured to provide single sign-on for at least one of the second application or other applications of the mobile device.
  - 3. The system of claim 1, wherein the first application comprises a native application of a mobile device, the native application configured to provide single sign-on for at least one of the second application or other applications of the mobile device.
  - 4. The system of claim 3, wherein the native application is configured with an embedded web browser.
  - 5. The system of claim 1, wherein the one or more processors are further configured to execute the plurality of instructions to determine, based at least in part on a credential included in the authentication request, when a user is authenticated, and wherein the determination is based at least in part on receiving, from a third-party service, an indication that the user is authenticated.

6. A computer-readable memory storing a plurality of instructions executable by one or more processors, the plurality of instructions comprising:
- instructions that cause the one or more processors to receive, from a first application, a request to access a service provider;
  
  instructions that cause the one or more processors to log in a user associated with the first application;
  
  instructions that cause the one or more processors to provide, to the first application, a token for accessing the service provider; and
  
  instructions that cause the one or more processors to provide a second token to a second application associated with the user.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14)
- - 7. The computer-readable memory of claim 6, wherein the first application comprises an security agent application of a mobile device configured to provide single sign-on for the second application.
  - 8. The computer-readable memory of claim 7, wherein the second application comprises a browser application of the mobile device associated with a web application service provider, a native application of the mobile device associated with an application service provider, or a hybrid application of the mobile device configured as a native application with an embedded browser associated with a hybrid application service provider.
  - 9. The computer-readable memory of claim 6, wherein the first application comprises a browser application of a mobile device associated with a web application service provider and the second application comprises a native application of the mobile device associated with an application service provider.
  - 10. The computer-readable memory of claim 6, wherein the first application comprises a native application of a mobile device associated with an application service provider.
  - 11. The computer-readable memory of claim 10, wherein the second application comprises a browser application of the mobile device associated with a web application service provider.
  - 12. The computer-readable memory of claim 10, wherein the second application comprises a second native application of the mobile device associated with a second application service provider.
  - 13. The computer-readable memory of claim 6, wherein the log in comprises authenticating the user with authentication service using a representational state transfer (REST) method call.
  - 14. The computer-readable memory of claim 6, wherein the second token provided to the second application enables the second application to log in to an application service provider associated with the second application on behalf of the user without the user providing log-in credentials to log in to the application service provider associated with the second application.

15. A computer-implemented method, comprising:
- receiving, by a computer system, a request to access a first remote application, the request received from a first local application of a mobile device;
  
  providing, by the computer system, an authentication request o a remote authentication service provider computer;
  
  receiving, by the computer system, a first access token for accessing the first remote application;
  
  providing, by the computer system, the first access token to the first local application; and
  
  providing, by the computer system, a second access token for accessing a second remote application, the second access token provided to a second local application of the mobile device.
- View Dependent Claims (19, 20)
- - 19. The computer-implemented method of claim 15, further comprising receiving, by the computing system, the second access token from the remote authentication service provider.
  - 20. The computer-implemented method of claim 15, wherein the second access token is provided to the second local application at least in response to a request from the second local application to access the second remote application.

16. The computer-implemented method of 15, wherein the authentication request is provided to the remote authentication service provider as a representational state transfer (REST) method call.

17. The computer-implemented method of 15, wherein the authentication request is provided to request authentication of a user of the mobile device.
- View Dependent Claims (18)
- - 18. The computer-implemented method of claim 17, wherein the first access token is received from the remote authentication service provider based at least in part on authentication of the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Sondhi, Ajay, Donley, Clayton, Bhat, Shivaram, Wong, Wai William, Yiu, Kwok Lun Alex

Application Number

US13/485,283
Publication Number

US 20130086669A1
Time in Patent Office

Days
Field of Search
US Class Current

726/8
CPC Class Codes

G06F 21/41   where a single sign-on prov...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/0815   providing single-sign-on or...

H04L 67/306   User profiles

H04W 12/068   using credential vaults, e....

MOBILE APPLICATION, SINGLE SIGN-ON MANAGEMENT

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

MOBILE APPLICATION, SINGLE SIGN-ON MANAGEMENT

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links