Authentication framework for multiple authentication processes and mechanisms
First Claim
1. An authentication subsystem for enabling a computer system to authenticate a user with a selected one of a plurality of authentication processes, each having a distinct sequence of steps and a unique input/output (I/O) interface for exchanging authentication information with the computer system, comprising:
- a first conversation function driver coupled to a first authentication module, defining a first programmed sequence of steps to authenticate a user with a first authentication process, said first driver having access to first display configuration information and first input device configuration information used during said first authentication process, to configure a user display and input device for the first authentication process;
a second conversation function driver coupled to a second authentication module, defining a second programmed sequence of steps to authenticate a user with a second authentication process, said second driver having access to second display configuration information and second input device configuration information used during said second authentication process, to configure the user display and input device for the second authentication process;
an authentication framework in the computer system; and
a generic conversation function including an interpreter/processor in the authentication framework coupled to the user display and input device, defining a generic programmed sequence of steps for selectively re-configuring the user display and input device layouts and a command line interface in response to said first programmed sequence of steps or said second programmed sequence of steps;
said generic conversation function receiving said first programmed sequence of steps from the first conversation driver, to selectively re-configure the user display and input device for authenticating a user during the first authentication process;
said generic conversation function receiving said second programmed sequence of steps from the second conversation driver, to selectively re-configure the user display and input device for authenticating a user during the second authentication process.
1 Assignment
0 Petitions
Accused Products
Abstract
An authentication framework subsystem enables a computer system to authenticate a user with a selected one of a plurality of authentication processes. Each of the authentication processes has a distinct sequence of steps and a unique input/output (I/O) interface for exchanging authentication information with the computer system. The invention includes an authentication framework in the computer system. An application program interface in the authentication framework provides an interface to an I/O component, such as a graphical user interface (GUI), of the computer system. A plurality of authentication modules interface with the framework. Each module has a conversation function driver defining a programmed sequence of steps to authenticate a user with a distinct authentication process. A conversation function in the application program interface, defines a programmed sequence of steps for controlling the I/O component in response to generic instructions that have the same format but different sequences for each of the authentication modules.
-
Citations
21 Claims
-
1. An authentication subsystem for enabling a computer system to authenticate a user with a selected one of a plurality of authentication processes, each having a distinct sequence of steps and a unique input/output (I/O) interface for exchanging authentication information with the computer system, comprising:
-
a first conversation function driver coupled to a first authentication module, defining a first programmed sequence of steps to authenticate a user with a first authentication process, said first driver having access to first display configuration information and first input device configuration information used during said first authentication process, to configure a user display and input device for the first authentication process;
a second conversation function driver coupled to a second authentication module, defining a second programmed sequence of steps to authenticate a user with a second authentication process, said second driver having access to second display configuration information and second input device configuration information used during said second authentication process, to configure the user display and input device for the second authentication process;
an authentication framework in the computer system; and
a generic conversation function including an interpreter/processor in the authentication framework coupled to the user display and input device, defining a generic programmed sequence of steps for selectively re-configuring the user display and input device layouts and a command line interface in response to said first programmed sequence of steps or said second programmed sequence of steps;
said generic conversation function receiving said first programmed sequence of steps from the first conversation driver, to selectively re-configure the user display and input device for authenticating a user during the first authentication process;
said generic conversation function receiving said second programmed sequence of steps from the second conversation driver, to selectively re-configure the user display and input device for authenticating a user during the second authentication process. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An authentication method for enabling a computer system to authenticate a user with a selected one of a plurality of authentication processes, each having a distinct sequence of steps and a unique input/output (I/O) interface for exchanging authentication information with the computer system, comprising:
-
defining a first programmed sequence of steps in a first conversation function driver coupled to a first authentication module, to authenticate a user with a first authentication process, said first driver having access to first display configuration information and first input device configuration information used during said first authentication process, to configure a user display and input device for the first authentication process;
defining a second programmed sequence of steps in a second conversation function driver coupled to a second authentication module, to authenticate a user with a second authentication process, said second driver having access to second display configuration information and second input device configuration information used during said second authentication process, to configure the user display and input device for the second authentication process; and
defining a generic programmed sequence of steps in a generic conversation function including an interpreter/processor in an authentication framework coupled to the user display and input device, for selectively re-configuring the user display and input device layouts and a command line in response to said first programmed sequence of steps or said second programmed sequence of steps;
said generic conversation function receiving said first programmed sequence of steps from the first conversation driver, to re- configure the user display and input device for authenticating a user during the first authentication process;
said generic conversation function receiving said second programmed sequence of steps from the second conversation driver, to re-configure the user display and input device for authenticating a user during the second authentication process. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer program product in a computer-readable medium for enabling a computer system to authenticate a user with a selected one of a plurality of authentication processes, each having a distinct sequence of steps and a unique input/output (I/O) interface for exchanging authentication information with the computer system, the computer program product comprising:
-
program code for defining a first programmed sequence of steps in a first conversation function driver coupled to a first authentication module, to authenticate a user with a first authentication process, said first driver having access to first display configuration information and first input device configuration information used during said first authentication process, to configure a user display and input device for the first authentication process;
program code for defining a second programmed sequence of steps in a second conversation function driver coupled to a second authentication module, to authenticate a user with a second authentication process, said second driver having access to second display configuration information and second input device configuration information used during said second authentication process, to configure the user display and input device for the second authentication process; and
program code for defining a generic programmed sequence of steps in a generic conversation function including an interpreter/processor an authentication framework coupled to the user display and input device, for selectively re-configuring the user display and input device layouts and a command line in response to said first programmed sequence of steps or said second programmed sequence of steps;
said generic conversation function receiving said first programmed sequence of steps from the first conversation driver, to re-configure the user display and input device for authenticating a user during the first authentication process;
said generic conversation function receiving said second programmed sequence of steps from the second conversation driver, to re-configure the user display and input device for authenticating a user during the second authentication process. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification