Seamless cross-site user authentication status detection and automatic login
First Claim
1. An apparatus for a baseline authentication agency for determining a user'"'"'s login status as the user accesses a site within a network, said apparatus comprising:
- a database storing information about partner web sites that have been selected by a user for defining login parameters of the user associated with one or more of the partner web sites;
a baseline authentication agency server for providing core global network authentication services configured;
to receive a request from a user'"'"'s browser, the request comprising;
a site identification identifying a site; and
a cookie related to the user and including;
a reference to the baseline authentication agency; and
an identifier distinguishing the baseline authentication agency which is associated with the user from a set of baseline authentication agencies;
to determine whether the cookie is valid;
to determine whether the user has authorized seamless login for the site using the information from the database; and
to generate a login ticket for the site and send the login ticket to the user'"'"'s browser if the cookie is valid and the user has authorized seamless login for the site;
wherein the cookie is stored on a global network domain used for cookie sharing and the site is one of a collection of partner sites with access to cookies shared on the global network domain.
11 Assignments
0 Petitions
Accused Products
Abstract
A system and method for determining in a global network the user network authentication status as the user goes from site to site within the network is provided. Additionally, the system and method provides for transparent or implicit multi-site logon functionality, including automatic introduction from one site to the other using a baseline authentication agency (102). The system and method provides an architecture for a core global network (100) (referred to herein as NET) that incorporates some or all of the following features and components: a set of baseline authentication agencies responsible for the core global network (NET) services, such as login and user-selected service-provider lookup; a shared NET domain and associated DNS records (106) used for cookie (110) sharing, login routing, and the like; and a collection of partner sites (108) accessible via the NET.
51 Citations
16 Claims
-
1. An apparatus for a baseline authentication agency for determining a user'"'"'s login status as the user accesses a site within a network, said apparatus comprising:
-
a database storing information about partner web sites that have been selected by a user for defining login parameters of the user associated with one or more of the partner web sites; a baseline authentication agency server for providing core global network authentication services configured; to receive a request from a user'"'"'s browser, the request comprising;
a site identification identifying a site; anda cookie related to the user and including; a reference to the baseline authentication agency; and an identifier distinguishing the baseline authentication agency which is associated with the user from a set of baseline authentication agencies; to determine whether the cookie is valid; to determine whether the user has authorized seamless login for the site using the information from the database; and to generate a login ticket for the site and send the login ticket to the user'"'"'s browser if the cookie is valid and the user has authorized seamless login for the site; wherein the cookie is stored on a global network domain used for cookie sharing and the site is one of a collection of partner sites with access to cookies shared on the global network domain. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer-implemented method for a baseline authentication agency that determines a user'"'"'s login permission for a site, the method comprising:
-
receiving a request from a user'"'"'s browser, the request comprising a site identifier related to a site, and a cookie related to a user and including a reference designating the baseline authentication agency, the baseline authentication as one of a set of baseline authentication agencies and associated with the user; determining whether the cookie is valid; if the cookie is valid, determining whether the user has authorized seamless login for the site, the site selected by the user to establish the site as one of a group of partner sites for which the user has defined login parameters; and generating a login ticket for the site and sending the login ticket to the user'"'"'s browser if the user has authorized seamless login for the site; wherein the cookie is stored on a global network domain used for cookie sharing and the site is one of a collection of partner sites with access to cookies shared on the global network domain. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A baseline authentication agency associated with the user and configured to determine the user'"'"'s login permission for a site, the baseline authentication agency comprising:
-
a list of partner sites that have been selected by a user and include login parameters for the user associated with one or more of the sites; a baseline authentication agency server configured to; receive a request from a user'"'"'s browser, the request comprising a site identifier related to a site, and a cookie related to a user and referencing the baseline authentication agency associated with the user; determine whether the cookie is valid; determine whether the user has authorized seamless login for the site; and if the cookie is valid and the user has authorized seamless login for the site, generate a login ticket for the site; send the login ticket to the user'"'"'s browser; wherein the cookie is stored on a global network domain used for cookie sharing and the site is one of a collection of partner sites with access to cookies shared on the global network domain. - View Dependent Claims (16)
-
Specification