×

Personal identification information schemas

  • US 8,117,459 B2
  • Filed: 07/28/2006
  • Issued: 02/14/2012
  • Est. Priority Date: 02/24/2006
  • Status: Active Grant
First Claim
Patent Images

1. A digital identity system comprising:

  • a first computer system, the first computer system associated with a principal, the first computer system comprising storage media that store computer readable instructions, execution of the computer readable instructions by the first computer system causing the first computer system to;

    store a first digital identity at the first computer system, the first digital identity associated with the principal and a first identity provider, the first digital identity comprising a first extensible markup language (XML) document, the first XML document comprising;

    a first capability data structure, the first capability data structure comprising a first claim list, the first claim list specifying claims that the first identity provider is able to provide; and

    a first cognitive data structure, the first cognitive data structure comprising a first card image data element and a first card name element, the first card image data element specifying a first graphical image for the first digital identity, the first card name data element specifying a name of the first digital identity;

    after storing the first digital identity, display the first graphical image and the name of the first digital identity;

    store a second digital identity at the first computer system, the second digital identity associated with the principal and a second identity provider, the second digital identity comprising a second XML document, the second XML document comprising;

    a second capability data structure, the second capability data structure comprising a second claim list, the second claim list specifying claims that the second identity provider is able to provide; and

    a second cognitive data structure, the second cognitive data structure comprising a second card image data element and a second card name element, the second card image data element specifying a second graphical image for the second digital identity, the second card name data element specifying a name of the second digital identity;

    after storing the second digital identity, display the second graphical image and the name of the second digital identity;

    after storing the second digital identity at the first computer system, send a security policy request to a relying party;

    after sending the security policy request to the relying party, receive a security policy from the relying party, the security policy specifying required claims;

    in response to receiving the security policy, automatically determine, based on the claims specified by the first claim list and the second claim list, that the first claim list specifies each of the required claims;

    after determining that the first claim list specifies each of the required claims, send a first token request to the first identity provider, the first token request requesting a first security token, the first token request indicating one or more requested claims, the requested claims including the required claims specified by the security policy;

    receive the first security token from the relevant first identity provider, the first security token including the one or more requested claims; and

    forward the security token to the relying party.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×