System and method for embedded authentication
First Claim
Patent Images
1. A method comprising:
- initiating an authentication session at a host server that comprises prompting a host website for credentials of a first layer of authentication with the host server and generating a transaction token;
delivering the transaction token from the host server to a host website comprising an embeddable interface;
receiving a signed authentication token at the host server from the embeddable interface, wherein the signed authentication token is authenticated in a second layer of authentication by an authentication server in response to a user challenge delivered by the authentication server to the embeddable interface and in response to authentication of the transaction token;
verifying the signed authentication token at the host server; and
if the authentication token is successfully verified, setting an application-level state of a successful authentication.
3 Assignments
0 Petitions
Accused Products
Abstract
Various systems and methods of embedded authentication are described herein. One method of the preferred embodiment can include receiving at an authentication server a transaction token from a host website, the host website including an embeddable interface and prompting a user challenge by the authentication server at the embeddable interface. The method of the preferred embodiment can also include creating a signed authentication token in response to a successful user challenge, and transmitting the signed authentication token from the authentication server to the embeddable interface.
-
Citations
18 Claims
-
1. A method comprising:
-
initiating an authentication session at a host server that comprises prompting a host website for credentials of a first layer of authentication with the host server and generating a transaction token; delivering the transaction token from the host server to a host website comprising an embeddable interface; receiving a signed authentication token at the host server from the embeddable interface, wherein the signed authentication token is authenticated in a second layer of authentication by an authentication server in response to a user challenge delivered by the authentication server to the embeddable interface and in response to authentication of the transaction token; verifying the signed authentication token at the host server; and if the authentication token is successfully verified, setting an application-level state of a successful authentication. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method comprising:
-
receiving at an authentication server a transaction token from a host website, the host website comprising an embeddable interface; at the authentication server, authenticating the transaction token to be a transaction token from a host that indicates a successful first layer of authentication at the host server; prompting a user challenge of a second layer of authentication by the authentication server at the embeddable interface; in response to a successful user challenge and an authentic transaction token, creating a signed authentication token; and transmitting the signed authentication token from the authentication server to the embeddable interface. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
-
13. A method comprising:
-
receiving at an authentication server an authentication session initialization request from an embeddable interface, wherein the authentication session initialization request is generated by a virtual private network (VPN) access system in response to a successful first layer of identification; authenticating the authentication session initialization request at the authentication server; prompting a user challenge of a second layer of authentication by the authentication server at the embeddable interface; in response to a successful user challenge, creating a signed authentication token; and verifying the signed authentication token between the authentication server and a VPN system. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification