Digital identity management
First Claim
Patent Images
1. A method comprising:
- storing, in a memory, instructions for performing the method;
executing the instructions on a processor;
according to the instructions being executed;
managing lifecycles of multiple types of digital IDs and credentials assigned to a user, wherein the digital IDs and credentials are issued by a combination of issuers comprising;
a key distribution authority, a key distribution center, and a license server; and
abstracting the multiple types of digital IDs and credentials through a common application programming interface (API) layer of a digital identity management service (DIMS), enabling the multiple types of digital IDs and credentials to be uniformly configured, wherein a digital ID or credential abstracted by the common API layer includes opaque data, wherein the opaque data comprises a hash of a user password assigned to the user,whereby the DIMS is independent of any of a plurality of applications that utilize the multiple types of digital IDs and credentials, and wherein the DIMS relies on local policies to establish lifecycle management criteria.
2 Assignments
0 Petitions
Accused Products
Abstract
One aspect relates to a process and associated device for managing digital ID lifecycles for application programs, and abstracting application programs for multiple types of credentials through a common Digital Identity Management System (DIMS) and Application Programming Interface (API) layer.
149 Citations
19 Claims
-
1. A method comprising:
-
storing, in a memory, instructions for performing the method; executing the instructions on a processor; according to the instructions being executed; managing lifecycles of multiple types of digital IDs and credentials assigned to a user, wherein the digital IDs and credentials are issued by a combination of issuers comprising;
a key distribution authority, a key distribution center, and a license server; andabstracting the multiple types of digital IDs and credentials through a common application programming interface (API) layer of a digital identity management service (DIMS), enabling the multiple types of digital IDs and credentials to be uniformly configured, wherein a digital ID or credential abstracted by the common API layer includes opaque data, wherein the opaque data comprises a hash of a user password assigned to the user, whereby the DIMS is independent of any of a plurality of applications that utilize the multiple types of digital IDs and credentials, and wherein the DIMS relies on local policies to establish lifecycle management criteria. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification