SSO FRAMEWORK FOR MULTIPLE SSO TECHNOLOGIES
First Claim
Patent Images
1. A user equipment (UE) comprising:
- a user application configured to communicate with a service provider to access a service;
a plurality of network-assisted authentication modules, each network-assisted authentication module corresponding to a different network-assisted authentication protocol, and wherein one or more of the plurality of network-assisted authentication modules are configured to perform network-assisted authentication with the service provider to access the service; and
a single sign-on (SSO) subsystem configured to authenticate a user of the UE based on user-assisted authentication information and to select a network-assisted authentication module of the plurality of network-assisted authentication modules for performing the network-assisted authentication with the service provider, and wherein the SSO subsystem is further configured to perform the user-assisted authentication and select the network-assisted authentication module based on one or more policies.
1 Assignment
0 Petitions
Accused Products
Abstract
Users desire useable security or a seamless means for accessing internet services whereby user interaction in the provisioning of credentials may be kept to a minimum or even eliminated entirely. The Single Sign-On (SSO) identity management (IdM) concept may be a means by which a user may be provided with such ease of use, while enabling user-assisted and network-assisted authentication for access to desired services. To enable seamless authentication services to users, a unified framework and a protocol layer interface for managing multiple authentication methods may be used.
176 Citations
18 Claims
-
1. A user equipment (UE) comprising:
-
a user application configured to communicate with a service provider to access a service; a plurality of network-assisted authentication modules, each network-assisted authentication module corresponding to a different network-assisted authentication protocol, and wherein one or more of the plurality of network-assisted authentication modules are configured to perform network-assisted authentication with the service provider to access the service; and a single sign-on (SSO) subsystem configured to authenticate a user of the UE based on user-assisted authentication information and to select a network-assisted authentication module of the plurality of network-assisted authentication modules for performing the network-assisted authentication with the service provider, and wherein the SSO subsystem is further configured to perform the user-assisted authentication and select the network-assisted authentication module based on one or more policies. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. In a user equipment (UE) comprising a plurality of network-assisted authentication modules, each network-assisted authentication module corresponding to a different network-assisted authentication protocol, and wherein one or more of the plurality of network-assisted authentication modules are configured to perform network-assisted authentication with a service provider to access a service, a method comprising:
-
authenticating a user of the UE based on user-assisted authentication information; selecting a network-assisted authentication module of the plurality of network-assisted authentication modules for performing the network-assisted authentication with the service provider; and performing the user-assisted authentication and selecting the network-assisted authentication module based on one or more policies. - View Dependent Claims (15, 16, 17, 18)
-
Specification