Enabling authentication of openID user when requested identity provider is unavailable

US 8,250,635 B2
Filed: 07/13/2008
Issued: 08/21/2012
Est. Priority Date: 07/13/2008
Status: Active Grant

First Claim

Patent Images

1. A method for enabling authentication of an OpenID user when a requested identity provider is unavailable, the method comprising:

receiving a login request from said OpenID user, wherein said login request comprises a username;

reading a list of identity providers associated with said username;

identifying a first available identity provider from said list of identity providers;

generating a first OpenID identifier using an identification of said first identified identity provider and said username;

transmitting, by a computer processor of a relying party, a request to said first identified identity provider to authenticate said OpenID user using said first OpenID identifier; and

incrementing a counter when said first identified identity provider was not available.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system and computer program product for enabling authentication of an OpenID user when a requested identity provider is unavailable. A relying party receives a login request from the OpenID user, where the login request includes a username. The relying party reads a list of trusted identity providers that are associated with the received username and selects one of those identity providers. The relying party generating an OpenID identifier using an identification (e.g., Uniform Resource Locator) of the selected identity provider and the username. The relying party transmits an authentication request (request to authenticate the OpenID user) to the selected identity provider using the formed OpenID identifier. If the selected identity provider is unavailable, then the relying party selects another identity provider from the list of identity providers that are associated with the received username and repeats the above process.

Citations

10 Claims

1. A method for enabling authentication of an OpenID user when a requested identity provider is unavailable, the method comprising:
- receiving a login request from said OpenID user, wherein said login request comprises a username;
  
  reading a list of identity providers associated with said username;
  
  identifying a first available identity provider from said list of identity providers;
  
  generating a first OpenID identifier using an identification of said first identified identity provider and said username;
  
  transmitting, by a computer processor of a relying party, a request to said first identified identity provider to authenticate said OpenID user using said first OpenID identifier; and
  
  incrementing a counter when said first identified identity provider was not available.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method as recited in claim 1 further comprising:
    - configuring said relying party to contain said list of identity providers associated with said username.
  - 3. The method as recited in claim 1 further comprising:
    - completing said OpenID authentication with said first identified identity provider when said first identified identity provider is available.
  - 4. The method as recited in claim 1 further comprising:
    - reading said list of identity providers associated with said username to identify a next available identity provider.
  - 5. The method as recited in claim 4 further comprising:
    - identifying said next available identity provider;
      
      generating a second OpenID identifier using an identification of said next identified identity provider and said username; and
      
      transmitting a request to said next identified identity provider to authenticate said OpenID user using said second OpenID identifier.

6. A computer program product embodied in a computer readable device for enabling authentication of an OpenID user when a requested identity provider is unavailable, the computer program product comprising the programming instructions for:
- receiving a login request from said OpenID user, wherein said login request comprises a username;
  
  reading a list of identity providers associated with said username;
  
  identifying a first available identity provider from said list of identity providers;
  
  generating a first OpenID identifier using an identification of said first identified identity provider and said username;
  
  transmitting a request to said first identified identity provider to authenticate said OpenID user using said first OpenID identifier; and
  
  incrementing a counter when said first identified identity provider was not available.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The computer program product as recited in claim 6 further comprising the programming instructions for:
    - configuring a relying party to contain said list of identity providers associated with said username.
  - 8. The computer program product as recited in claim 6 further comprising the programming instructions for:
    - completing said OpenID authentication with said first identified identity provider when said first identified identity provider is available.
  - 9. The computer program product as recited in claim 6 further comprising the programming instructions for:
    - reading said list of identity providers associated with said username to identify a next available identity provider.
  - 10. The computer program product as recited in claim 9 further comprising the programming instructions for:
    - identifying said next available identity provider;
      
      generating a second OpenID identifier using an identification of said next identified identity provider and said username; and
      
      transmitting a request to said next identified identity provider to authenticate said OpenID user using said second OpenID identifier.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Chari, Suresh N., Chen, Gang, Kaplinger, Todd Eric
Primary Examiner(s)
DADA, BEEMNET W

Application Number

US12/172,252
Publication Number

US 20100011421A1
Time in Patent Office

1,500 Days
Field of Search

726 5- 8, 726/27, 726/28, 713/168, 713/183, 713/184
US Class Current

726/5
CPC Class Codes

G06F 21/31 User authentication

H04L 63/0815 providing single-sign-on or...

Enabling authentication of openID user when requested identity provider is unavailable

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Enabling authentication of openID user when requested identity provider is unavailable

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links