Profile and consent accrual
First Claim
1. A method of managing consent between a client and a network server, said client and said network server being coupled to a data communication network, said network server providing a service to a user via the client, said client operating a browser configured to permit the user to communicate on the data communication network, said method comprising:
- maintaining a user profile associated with the user;
receiving a request from the service provided by the network server for user information associated with the user and for consent to use the requested user information;
determining, in response to the request for consent, if the requested user information is not included in the user profile;
in response to the determining, providing a user interface via the browser to collect the requested user information that is not included in the user profile from the user wherein the user interface displays a user-selectable option for viewing intention information associated with the requested user information, said intention information describing how the requested user information will be used by the service;
receiving the user information provided by the user via the user interface;
updating the user profile with the received user information; and
allowing access by the service to the received user information in the updated user profile whereby the user profile is updated with user information which is not included in the user profile when the request is received from the service so that the requested user information is accessible to the service.
2 Assignments
0 Petitions
Accused Products
Abstract
Consent management between a client and a network server. In response to a request for consent, a central server determines if requested user information is included in a user profile associated with a user and if the user has granted consent to share the requested user information. A user interface is provided to the user via a browser of the client to collect the requested user information that is not included in the user profile and the consent to share the requested user information from the user. After receiving the user information provided by the user via the user interface, the service provided by the network server is allowed access to the received user information, and the central server updates the user profile. Other aspects of the invention are directed to computer-readable media for use with profile and consent accrual.
330 Citations
35 Claims
-
1. A method of managing consent between a client and a network server, said client and said network server being coupled to a data communication network, said network server providing a service to a user via the client, said client operating a browser configured to permit the user to communicate on the data communication network, said method comprising:
-
maintaining a user profile associated with the user; receiving a request from the service provided by the network server for user information associated with the user and for consent to use the requested user information; determining, in response to the request for consent, if the requested user information is not included in the user profile; in response to the determining, providing a user interface via the browser to collect the requested user information that is not included in the user profile from the user wherein the user interface displays a user-selectable option for viewing intention information associated with the requested user information, said intention information describing how the requested user information will be used by the service; receiving the user information provided by the user via the user interface; updating the user profile with the received user information; and allowing access by the service to the received user information in the updated user profile whereby the user profile is updated with user information which is not included in the user profile when the request is received from the service so that the requested user information is accessible to the service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. An authentication system comprising:
-
an authentication server coupled to a data communication network, said authentication server including processor for executing computer-executable instructions; an authentication database associated with the authentication server, said authentication database being configured to execute computer-executable instructions for storing authentication information for comparison to login information provided by a user for authenticating the user, said authentication database further being configured to execute computer-executable instructions for storing user-specific information identifying the user with respect to one or more services provided by a plurality of affiliate servers coupled to the data communication network, said affiliate servers each being configured to execute computer-executable instructions for providing the one or more services to the user via a client coupled to the data communication network; said authentication server being configured to execute computer executable instructions for receiving a first request from the user for a service to by provided by a first affiliate server, said second affiliate server being one of the plurality of affiliate servers, said authentication server further being configured to execute computer executable instructions for authenticating the user responsive to the request when login information retrieved from the user via the data communication network matches the authentication information stored in the authentication database; said authentication server being further configured to execute computer executable instructions for maintaining a user profile storing the user-specific information, said user profile comprising a plurality of profile attributes, to receive a first request from the requested service for a first profile attribute associated with the profile of the user and consent to use the requested first profile attribute wherein the consent is limited to the first service, determining if the requested first profile attribute is not stored in the user profile in response to the first request for consent; said authentication server being further configured to execute computer executable instructions for providing a user interface to collect the requested first profile attribute that is not stored in the user profile from the user, receiving the first profile attribute provided by the user via the user interface in response, and allowing access by the requested service to the received first profile attribute wherein the user interface provided by the authentication server displays a user-selectable option for viewing intention information associated with the requested first profile attribute, said intention information describing how the requested first profile attribute will by used by the requested first service; and said authentication server being further configured to execute computer executable instructions for updating the user profile with the received first profile attribute; wherein the authentication server being configured to execute computer executable instructions for receiving a second request from the user for a second service to be provided by a second affiliate server, said second affiliate server being one of the plurality of affiliate servers, said authentication server further being configured to execute computer executable instructions for authenticating the user responsive to the second request when login information retrieved from the user via the data communication network matches the authentication information stored in the authentication database; the authentication server is configured to execute computer executable instructions for receiving a request from the requested second service for a second profile attribute associated with the profile of the user and consent to use the requested second profile attribute wherein the consent is limited to the second service, to determine if the requested second profile attribute is stored in the user profile in response to the request for consent; said authentication server being further configured to execute computer executable instructions for providing a user interface to collect the requested second profile attribute that is not stored in the user profile from the user, receiving the second profile attribute provided by the user via the user interface in response, and allowing access by the requested second service to the received second profile attribute wherein the user interface provided by the authentication server displays a user-selectable option for viewing intention information associated with the requested second profile attribute, said intention information describing how the requested second profile attribute will be used by the requested second service; and said authentication server being further configured to execute computer executable instructions for updating the user profile with the received second profile attribute. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. One or more computer-readable storage media having computer-executable components for managing consent between a client and at least one network server, said client and said network server being coupled to a data communication network, said network server providing a plurality of services to a user via the client, said services being members of a policy group, said computer-readable media comprising:
-
a profiling component for storing user-specific information associated with the user; a consent component for receiving a request from a first service provided by the network server for user information associated with the user and for consent to use the requested user information, said first service being a member of a first policy group, said consent component further determining if the requested user information is not stored in the profiling component in response to the request for consent; a user interface component for collecting the requested user information that is not included in the profiling component from the user in response to the consent component determining the requested user information is not stored in the user profile, said user interface component providing intention information describing how the requested user information will be used by the requested first service; and wherein the consent component is configured to receive the requested user information provided by the user via the user interface component;
to store the received user information in the profiling component;
to allow access to each member service of the first policy group to the received user information; and
to deny access by each service which is not a member of the first policy group to the received user information. - View Dependent Claims (30, 31, 32, 33, 34, 35)
-
Specification