METHOD AND SYSTEM FOR VISITING A THIRD PARTY APPLICATION VIA A CLOUD PLATFORM

US 20140033291A1
Filed: 02/02/2012
Published: 01/30/2014
Est. Priority Date: 04/07/2011
Status: Active Grant

First Claim

Patent Images

1. A system for visiting a third party application via a cloud platform, comprising:

a cloud platform server, a binding information server and a third party application server;

whereinthe cloud platform server is adapted toallocate an identifier for a released third party application, receive a cloud platform account and cloud platform password information inputted by a user;

query the binding information server according to a third party application selected by the user to obtain third party application account information and access information not including cleartext password corresponding to the third party application and the cloud platform password information, and transmit the third party application account information and the access information to the third party application server; and

receive authentication succeed information returned by the third party application server;

the binding information server is adapted to store a binding information mapping table of the user, wherein the binding information mapping table comprises the cloud platform account information of the user, a third party application identifier corresponding to the third party application registered by the user, the third party application account information and the access information not including the cleartext password generated and issued by the third party application server; and

the third party application server is adapted to receive the third party application account information and the access information not comprising the cleartext password transmitted by the cloud platform server and authenticate the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and a method for visiting a third party application through a cloud platform are disclosed. The method includes: receiving a cloud platform account and cloud platform password information inputted by a user; searching a stored binding information mapping table according to a third party application selected by the user to obtain the third party application and obtain access information not comprising cleartext password corresponding to the cloud platform account information, and transmitting the access information to the third party application server; and receiving authentication succeed information returned by the third party application server. According to the present disclosure, complexity of user'"'"'s operations may be reduced when the user logs on frequently and security level of the user for visiting the third party application may be improved.

Citations

10 Claims

1. A system for visiting a third party application via a cloud platform, comprising:
- a cloud platform server, a binding information server and a third party application server;
  
  whereinthe cloud platform server is adapted toallocate an identifier for a released third party application, receive a cloud platform account and cloud platform password information inputted by a user;
  
  query the binding information server according to a third party application selected by the user to obtain third party application account information and access information not including cleartext password corresponding to the third party application and the cloud platform password information, and transmit the third party application account information and the access information to the third party application server; and
  
  receive authentication succeed information returned by the third party application server;
  
  the binding information server is adapted to store a binding information mapping table of the user, wherein the binding information mapping table comprises the cloud platform account information of the user, a third party application identifier corresponding to the third party application registered by the user, the third party application account information and the access information not including the cleartext password generated and issued by the third party application server; and
  
  the third party application server is adapted to receive the third party application account information and the access information not comprising the cleartext password transmitted by the cloud platform server and authenticate the user.
- View Dependent Claims (2, 3, 4)
- - 2. The system of claim 1, wherein the binding information server is adapted to store the binding information mapping table in a Key-Value manner, wherein the cloud platform account information and the third party application identifier are Keys, the third party application account information with which the user logs on the third party application and the access information not comprising the cleartext password are Values.
  - 3. The system of claim 2, wherein the cloud platform server is further adapted toreceive, if the third party application account information corresponding to the cloud platform account information is not obtained after querying the binding information server, the third party application account information and third party application password information inputted by the user,encrypt the third party application password information, put the third party application account information and the encrypted third party application password information in a registration request,transmit the registration request to the third party application server, wherein the third party application server generates access information not comprising the cleartext password corresponding to the third party application password information after performing a registration authentication and outputs the access information to the cloud platform server;
    - andgenerate the binding information mapping table according to the access information not comprising the cleartext password returned by the third party application server, and output the binding information mapping table to the binding information server.
  - 4. The system of claim 1, wherein the access information not comprising the cleartext password is access token information corresponding to the third party application password, or encrypted third party application password information.

5. A method for visiting a third party application via a cloud platform, comprising:
- receiving a cloud platform account and cloud platform password information inputted by a user;
  
  searching a stored binding information mapping table according to a third party application selected by the user to obtain access information not comprising cleartext password corresponding to the third party application and the cloud platform account information, and transmitting the access information to a third party application server; and
  
  receiving authentication succeed information returned by the third party application server;
  
  wherein the access information not comprising the cleartext password is access token information corresponding to the third party application password or encrypted third party application password information;
  
  wherein the receiving the authentication succeed information returned by the third party application server comprises;
  
  searching, by the third party application server, a stored mapping relationship table between access tokens and third party application password information according to the access token information received, obtaining the third party application password information corresponding to the access token, or decrypting the encrypted third party application password information to obtain the third party application password information; and
  
  authenticating the user according to the third party application account information, the third party application password information and a pre-stored user registration information database, and returning the authentication succeed information to the cloud platform server after the authentication succeeds.
- View Dependent Claims (6, 7, 8)
- - 6. The method of claim 5, wherein the binding information mapping table comprises:
    - the cloud platform account information of the user, a third party application identifier corresponding to the third party application registered by the user, the third party application account information and the access information not comprising the cleartext password generated and issued by the third party application server.
  - 7. The method of claim 6, wherein the binding information mapping table is stored in a Key-Value manner, wherein the cloud platform account information and the third party application identifier are Keys, the third party application account information with which the user logs on the third party application and the access information not comprising the cleartext password are Values.
  - 8. The method of claim 7, wherein the searching the binding information mapping table further comprises:
    - if the third party application account information corresponding to the cloud platform account information is not found in the binding information mapping table, prompting the user to execute registration information;
      
      receiving the third party application account information and third party application password information inputted by the user, encrypting the third party application password information, putting the third party application account information and the encrypted third party application password information in a registration request and transmitting the registration request to the third party application server;
      
      after a registration authentication succeeds, generating, by the third party application server, access information not comprising the cleartext password corresponding to the third party application password information and outputting the access information to the cloud platform server; and
      
      generating and storing, by the cloud platform server, the binding information mapping table according to the access information not comprising the cleartext password returned by the third party application server.

9. (canceled)

10. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Tencent Technology Shenzhen Company Limited (Tencent Holdings Limited)
Original Assignee
Tencent Technology Shenzhen Company Limited (Tencent Holdings Limited)
Inventors
Liu, Yang

Granted Patent

US 8,973,121 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 67/1097   for distributed storage of ...

H04L 67/53   using third party service p...

METHOD AND SYSTEM FOR VISITING A THIRD PARTY APPLICATION VIA A CLOUD PLATFORM

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND SYSTEM FOR VISITING A THIRD PARTY APPLICATION VIA A CLOUD PLATFORM

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links