Framework and technology to enable the portability of information cards

US 8,074,257 B2
Filed: 08/22/2007
Issued: 12/06/2011
Est. Priority Date: 03/16/2007
Status: Expired due to Fees

First Claim

Patent Images

1. A method for accessing an information card, comprising:

identifying a pluggable card store that is available at a machine;

interfacing with the pluggable card store using a pluggable card provider;

receiving a security policy from a relying party;

receiving an identifier of an information card in the pluggable card store from a user;

transmitting requirements for a security token based on the identified information card to an identity provider;

receiving the security token from the identity provider; and

transmitting the security token to the relying party.

View all claims

8 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

When a user connects a pluggable card store to a machine, the machine plugs a pluggable card provider into a card provider registry. The pluggable card store can be an object portable to the user, or can be a remote store available via some connection, such as an FTP connection. The user can then use the information cards stored on the pluggable card store in a transaction.

171 Citations

24 Claims

1. A method for accessing an information card, comprising:
- identifying a pluggable card store that is available at a machine;
  
  interfacing with the pluggable card store using a pluggable card provider;
  
  receiving a security policy from a relying party;
  
  receiving an identifier of an information card in the pluggable card store from a user;
  
  transmitting requirements for a security token based on the identified information card to an identity provider;
  
  receiving the security token from the identity provider; and
  
  transmitting the security token to the relying party.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. A method according to claim 1, wherein interfacing with the pluggable card store includes unlocking the pluggable card store.
  - 3. A method according to claim 2, wherein unlocking the pluggable card store includes:
    - receiving a credential from the user; and
      
      providing the credential to the pluggable card store to enable the pluggable card store to authenticate the user.
  - 4. A method according to claim 1, wherein receiving an identifier of an information card in the pluggable card store includes presenting the set of information cards available on the machine to the user.
  - 5. A method according to claim 4, wherein presenting the set of information cards available on the machine includes presenting a subset of the set of information cards available on the machine, the subset including information cards that satisfy the security policy.
  - 6. A method according to claim 4, wherein presenting the set of information cards available on the machine includes:
    - presenting a list of pluggable card stores managed by the pluggable card provider to the user;
      
      receiving a selection of the pluggable card store from the user; and
      
      presenting the set of information cards available on the pluggable card store to the user.
  - 7. A method according to claim 1, further comprising determining that the pluggable card store is no longer available at a machine.
  - 8. A method according to claim 7, further comprising unplugging the pluggable card provider from the card provider registry.
  - 9. A method according to claim 1, further comprising plugging the pluggable card provider into the card provider registry.
  - 10. A method according to claim 9, wherein plugging the pluggable card provider into the card provider registry includes installing software implementing the pluggable card provider from the machine.
  - 11. A method according to claim 9, wherein plugging the pluggable card provider into the card provider registry includes installing software implementing the pluggable card provider from the pluggable card store.
  - 12. A method according to claim 9, wherein plugging the pluggable card provider into the card provider registry includes installing software implementing the pluggable card provider from an external source.

13. An article, comprising a non-transitory storage medium, said non-transitory storage medium having stored thereon instructions that, when executed by a machine, result in:
- identifying a pluggable card store that is available at a machine;
  
  interfacing with the pluggable card store using a pluggable card provider;
  
  receiving a security policy from a relying party;
  
  receiving an identifier of an information card in the pluggable card store from a user;
  
  transmitting requirements for a security token based on the identified information card to an identity provider;
  
  receiving the security token from the identity provider; and
  
  transmitting the security token to the relying party.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 14. An article according to claim 13, wherein interfacing with the pluggable card store includes unlocking the pluggable card store.
  - 15. An article according to claim 14, wherein unlocking the pluggable card store includes:
    - receiving a credential from the user; and
      
      providing the credential to the pluggable card store to enable the pluggable card store to authenticate the user.
  - 16. An article according to claim 13, wherein receiving an identifier of an information card in the pluggable card store includes presenting the set of information cards available on the machine to the user.
  - 17. An article according to claim 16, wherein presenting the set of information cards available on the machine includes presenting a subset of the set of information cards available on the machine, the subset including information cards that satisfy the security policy.
  - 18. An article according to claim 16, wherein presenting the set of information cards available on the machine includes:
    - presenting a list of pluggable card stores managed by the pluggable card provider to the user;
      
      receiving a selection of the pluggable card store from the user; and
      
      presenting the set of information cards available on the pluggable card store to the user.
  - 19. An article according to claim 13, further comprising determining that the pluggable card store is no longer available at a machine.
  - 20. An article according to claim 19, further comprising unplugging the pluggable card provider from the card provider registry.
  - 21. An article according to claim 13, wherein said non-transitory storage medium has stored thereon further instructions that, when executed by the machine, result in plugging the pluggable card provider into the card provider registry.
  - 22. An article according to claim 21, wherein plugging the pluggable card provider into the card provider registry includes installing software implementing the pluggable card provider from the machine.
  - 23. An article according to claim 21, wherein plugging the pluggable card provider into the card provider registry includes installing software implementing the pluggable card provider from the pluggable card store.
  - 24. An article according to claim 21, wherein plugging the pluggable card provider into the card provider registry includes installing software implementing the pluggable card provider from an external source.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
CPTN Holdings LLC
Inventors
Felsted, Patrick R., Hodgkinson, Andrew A., Sanders, Daniel S., Sermersheim, James G., Norman, James Mark
Primary Examiner(s)
REVAK, CHRISTOPHER A

Application Number

US11/843,640
Publication Number

US 20080229398A1
Time in Patent Office

1,567 Days
Field of Search

None
US Class Current

726/1
CPC Class Codes

G06F 21/41   where a single sign-on prov...

G06Q 20/10   specially adapted for elect...

G06Q 20/367   involving electronic purses...

G06Q 20/382   insuring higher security of...

G06Q 20/40   Authorisation, e.g. identif...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/0815   providing single-sign-on or...

H04L 63/20   for managing network securi...

Framework and technology to enable the portability of information cards

First Claim

8 Assignments

0 Petitions

Accused Products

Abstract

171 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Framework and technology to enable the portability of information cards

First Claim

8 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

171 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links