Distributed contact information management
First Claim
Patent Images
1. A method comprising:
- receiving, at a user device distinct from a webservice provider, a request from the webservice provider for user authentication and for authorization for release of information to a third party, the third party distinct from each of the user device, the webservice provider, and a homesite, wherein the request is configured to include an explanation of the information to be provided to the third party and an authentication security level that defines a lowest authentication security level of a plurality of authentication security levels, one of which is to be used for the user authentication;
forwarding, by the user device to the homesite, the received request by causing redirection of a software application to the homesite;
receiving, at the user device from the homesite, an indication of the user authentication, wherein the indication is configured to include a statement that the user authentication was performed at one of the authentication security levels within the plurality of authentication security levels;
obtaining, by the user device, user input indicating an authorization for information release; and
forwarding to the webservice provider, as a response to the request and based on the user input, a message containing an authorization for release of the information, the authorized release from the webservice provider to the third party, wherein the webservice provider is configured to send the information indicated in the message, to the third party, in response to receiving the forwarded message.
6 Assignments
0 Petitions
Accused Products
Abstract
A method and system for interaction with webservices and for performing distributed contact management use standard interfaces to communicate with other entities in an identity management network. The use of homesites as user data stores allows for homesite to homesite communication to allow for distributed contact management, and the generic interface allows for homesite to webservice interaction.
-
Citations
33 Claims
-
1. A method comprising:
-
receiving, at a user device distinct from a webservice provider, a request from the webservice provider for user authentication and for authorization for release of information to a third party, the third party distinct from each of the user device, the webservice provider, and a homesite, wherein the request is configured to include an explanation of the information to be provided to the third party and an authentication security level that defines a lowest authentication security level of a plurality of authentication security levels, one of which is to be used for the user authentication; forwarding, by the user device to the homesite, the received request by causing redirection of a software application to the homesite; receiving, at the user device from the homesite, an indication of the user authentication, wherein the indication is configured to include a statement that the user authentication was performed at one of the authentication security levels within the plurality of authentication security levels; obtaining, by the user device, user input indicating an authorization for information release; and forwarding to the webservice provider, as a response to the request and based on the user input, a message containing an authorization for release of the information, the authorized release from the webservice provider to the third party, wherein the webservice provider is configured to send the information indicated in the message, to the third party, in response to receiving the forwarded message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A non-transitory computer-readable medium having instructions stored thereon, the instructions comprising:
-
instructions for receiving, at a user device distinct from a webservice provider, a request from the webservice provider for user authentication and for authorization for release of information to a third party, the third party distinct from each of the user device, the webservice provider, and a homesite, wherein the request is configured to include an explanation of the information to be provided to the third party and an authentication security level that defines a lowest authentication security level of a plurality of authentication security levels, one of which is to be used for the user authentication; instructions for forwarding, by the user device to the homesite, the request by causing redirection of a software application to the homesite; instructions for receiving, at the user device from the homesite, an indication of the user authentication, wherein the indication is configured to include a statement that the user authentication was performed at one of the authentication security levels within the plurality of authentication security levels; instructions for obtaining, by the user device, user input indicating an authorization for information release; and instructions for forwarding to the webservice provider, as a response to the request and based on the user input, a message containing an authorization for release of the information, the authorized release from the webservice provider to the third party, wherein the webservice provider is configured to send the information indicated in the authorization, to the third party, in response to receiving the forwarded message. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
-
33. A computing device comprising:
-
one or more processors; one or more tangible computer-readable media associated with the one or more processors, the one or more tangible computer-readable media having instructions stored thereon, the instructions comprising; instructions for receiving, at a user device distinct from a webservice provider, a request from the webservice provider for user authentication and for authorization for release of information to a third party, the third party distinct from each of the user device, the webservice provider, and a homesite, wherein the request is configured to include an explanation of the information to be provided to the third party and an authentication security level that defines a lowest authentication security level of a plurality of authentication security levels, one of which is to be used for the user authentication; instructions for forwarding, by the user device to the homesite, the request by causing redirection of a software application to the homesite; instructions for receiving, at the user device from the homesite, an indication of the user authentication, wherein the indication is configured to include a statement that the user authentication was performed at one of the authentication security levels within the plurality of authentication security levels; instructions for obtaining, by the user device, user input indicating an authorization for information release; and instructions for forwarding to the webservice provider, as a response to the request, a message containing an authorization for release of the information, the authorized release from the webservice provider to the third party, wherein the webservice provider is configured to send the information indicated in the authorization, to the third party, in response to receiving the forwarded message.
-
Specification