Methods and systems for imaging device credential management

US 8,001,587 B2
Filed: 07/29/2005
Issued: 08/16/2011
Est. Priority Date: 10/08/2004
Status: Expired due to Fees

First Claim

Patent Images

1. A method for providing single-credential access to multiple, distinct, restricted imaging device services wherein a unique credential is required for each service, said method comprising:

sending credential menu content to an application programming interface (API) on an imaging device (IDev), wherein said credential menu content comprises a prompt for user input of user sign-on credentials and wherein said credential menu content is in the form of a markup language message formatted to be translated by a user interface processor on said IDev;

receiving an authenticated user identification, wherein said authenticated user identification is received as user input in response to displaying said credential menu content on a display of said IDev and wherein said user input is authenticated at an accounting application (AcctApp) remote to said IDev;

maintaining a user credential data table relating a plurality of unique service credentials to said authenticated user identification;

generating a single-sign-on (SSO) token, in response to said receiving an authenticated user identification, wherein said SSO token relates, using said user credential data table, said authenticated user identification to said plurality of unique service credentials for a user identified in said authenticated user identification and wherein said SSO token can be exchanged by one of said unique services for a corresponding one of said unique user service credentials;

sending said SSO token to said IDev;

receiving said SSO token from one of said unique services; and

sending to said one of said unique services, in exchange for said SSO token, said corresponding one of said unique user service credentials for authentication of the sent unique service credentials at said one of said unique services.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the present invention comprise systems, methods and devices for eliminating multiple submission of user credential data in a system with multiple distinct restricted sub-systems wherein a unique credential is required for each sub-system.

349 Citations

11 Claims

1. A method for providing single-credential access to multiple, distinct, restricted imaging device services wherein a unique credential is required for each service, said method comprising:
- sending credential menu content to an application programming interface (API) on an imaging device (IDev), wherein said credential menu content comprises a prompt for user input of user sign-on credentials and wherein said credential menu content is in the form of a markup language message formatted to be translated by a user interface processor on said IDev;
  
  receiving an authenticated user identification, wherein said authenticated user identification is received as user input in response to displaying said credential menu content on a display of said IDev and wherein said user input is authenticated at an accounting application (AcctApp) remote to said IDev;
  
  maintaining a user credential data table relating a plurality of unique service credentials to said authenticated user identification;
  
  generating a single-sign-on (SSO) token, in response to said receiving an authenticated user identification, wherein said SSO token relates, using said user credential data table, said authenticated user identification to said plurality of unique service credentials for a user identified in said authenticated user identification and wherein said SSO token can be exchanged by one of said unique services for a corresponding one of said unique user service credentials;
  
  sending said SSO token to said IDev;
  
  receiving said SSO token from one of said unique services; and
  
  sending to said one of said unique services, in exchange for said SSO token, said corresponding one of said unique user service credentials for authentication of the sent unique service credentials at said one of said unique services.
- View Dependent Claims (2, 3, 4, 5)
- - 2. A method as described in claim 1 wherein said authenticated user identification is generated by authenticating a user sign-on credential.
  - 3. A method as described in claim 2 wherein said user sign-on credential is received from said imaging device (IDev).
  - 4. A method as described in claim 2 wherein said user sign-on credential is received from an application.
  - 5. A method as described in claim 1 further comprising sending said sign-on token to said AcctApp for forwarding to said IDev.

6. A method for providing single-credential access to multiple, distinct, restricted services wherein a unique credential is required for each service, said method comprising:
- sending credential menu content to an application programming interface (API) on an imaging device (IDev), wherein said credential menu content comprises a prompt for user input of user sign-on credentials and wherein said credential menu content is in the form of a markup language message formatted to be translated by a user interface processor on said IDev;
  
  receiving an authenticated user identification, wherein said authenticated user identification is received as user input in response to displaying said credential menu content on a display of said IDev and wherein said user input is authenticated at an accounting application (AcctApp) remote to said IDev;
  
  maintaining a user credential data table relating a plurality of unique service credentials to said authenticated user identification;
  
  generating a single-sign-on (SSO) token, in response to said receiving an authenticated user identification, wherein said SSO token relates, using said user credential data table, said authenticated user identification to said plurality of unique service credentials for a user identified in said authenticated user identification and wherein said SSO token can be exchanged by one of said unique services for a corresponding one of said unique user service credentials;
  
  sending said SSO token to said IDev;
  
  receiving said SSO token from said one of said unique services;
  
  matching said SSO token to said corresponding one of said unique user service credentials; and
  
  sending said one of said unique user service credentials, in exchange for said SSO token, to said one of said unique services for authentication of the sent unique service credentials at said one of said unique services.
- View Dependent Claims (7, 8, 9)
- - 7. A method as described in claim 6 wherein said one of said unique services is an IDev function.
  - 8. A method as described in claim 6 wherein said one of said unique services is a remote application.
  - 9. A method as described in claim 6 wherein said matching is performed with the use of a relational database.

10. An apparatus for providing single-credential access to multiple, distinct, restricted services wherein a unique credential is required for each service, said apparatus comprising:
- a menu content sender for sending credential menu content to an application programming interface (API) on an imaging device (IDev), wherein said sender comprises a formatter for formatting said credential menu content comprising a prompt for user input of user sign-on credentials and wherein said credential menu content is in the form of a markup language message formatted to be translated by a user interface processor on said IDev;
  
  a receiver for receiving an authenticated user identification from an accounting application (AcctApp) remote to said IDev and remote to said receiver, wherein said authenticated user identification is received as user input in response to displaying said credential menu content on a display of said IDev and wherein said user input is authenticated at said AcctApp;
  
  a user credential data table relating a plurality of unique service credentials to said authenticated user identification;
  
  an single sign-on (SSO) token generator for generating an SSO token, in response to said receiving an authenticated user identification, wherein said SSO token relates, using said user credential data table, said authenticated user identification to said plurality of unique service credentials for a user identified in said authenticated user identification and wherein said SSO token can be exchanged by one of said unique services for a corresponding one of said unique user service credentials;
  
  a token sender for sending said SSO token to said IDev;
  
  a token receiver for receiving said SSO token from one of said unique services; and
  
  a credential sender sending to said one of said unique services, in exchange for said SSO token, said corresponding one of said unique user service credentials for authentication of the sent unique service credentials at said one of said unique services.
- View Dependent Claims (11)
- - 11. An apparatus as described in claim 10 further comprising a user credential data table for matching said SSO token to said corresponding one of said unique user service credentials.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sharp Kabushiki Kaisha (Hon Hai Precision Industry Co., Ltd.)
Original Assignee
Sharp Laboratories of America Incorporated (Hon Hai Precision Industry Co., Ltd.)
Inventors
Lovat, David J., Zhang, Hanzhong
Primary Examiner(s)
Simitoski; Michael J

Application Number

US11/193,152
Publication Number

US 20060077438A1
Time in Patent Office

2,209 Days
Field of Search

382/1.15, 726/8, 380/51, 713/186, 705/18
US Class Current

726/8
CPC Class Codes

G03G 15/502   relating to the structure o...

G03G 15/5091   for user-identification or ...

G03G 2215/00109   Remote control of apparatus...

G06F 21/41   where a single sign-on prov...

G06F 21/84   output devices, e.g. displa...

H04N 1/00204   with a digital computer or ...

H04N 1/00352   Input means H04N1/00411 tak...

H04N 1/32561   using a programmed control ...

H04N 2201/0039   Connection via a network

H04N 2201/0049   By wire, cable or the like

H04N 2201/0075   by a user operated remote c...

H04N 2201/0094   Multifunctional device, i.e...

H04N 2201/3221   of a job number or identifi...

Methods and systems for imaging device credential management

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

349 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for imaging device credential management

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

349 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links