System and method for third party authentication of web-based print-on-demand requests

US 8,593,659 B2
Filed: 06/28/2011
Issued: 11/26/2013
Est. Priority Date: 06/28/2011
Status: Active Grant

First Claim

Patent Images

1. A method for allowing users of third party vendors to access print shop applications without separate authentication, comprising the steps of:

a. a third party vendor server, in response to a user'"'"'s access to a third party vendor'"'"'s server or web-site, creating a query-string including a first part containing identification information of the third party vendor encrypted with a master key shared by all third party vendors and a second part containing authentication information of the user of the third party vendor encrypted with a private key assigned only to the third party vendor, the query-string being contained in an inline frame;

b. a print shop server, upon receiving the encrypted query-string sent from a server of the third party vendor server to the print shop server, decrypting the first part of the query-string with the masker key to ascertain the identification information of the third party vendor;

c. the print shop server, based on identification of the third party vendor obtained from decrypting the first part of the query-string, identifying the private key assigned to the third party vendor, and retrieving the private key assigned to the third party vendor;

d. the print shop server decrypting the second part of the query-string with the private key assigned to the third party vendor to ascertain the authentication information of the user of the third party vendor;

e. the print shop server, based on identification of the user obtained from decrypting the second part of the query-string, determining whether the user has an existing account on the print shop server; and

f. the print shop server automatically logging the user into the print shop server after it is determined that the user has an existing account so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and program implement a process for allowing users of third party vendors to access print shop applications without separate authentication. The process includes the steps of creating a query-string having identification information of a third party vendor and authentication information of a user of the third party vendor. The query-string is created in response to the user'"'"'s access to the third party vendor'"'"'s web-site, and is contained in an inline frame and encrypted. Upon receiving the encrypted query-string sent from a third party vendor server to a print shop server, the query-string is decrypted. It is then determined whether the user has an existing account on the print shop server. If the user has an existing account, the user is automatically logged into the print shop server so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.

Citations

23 Claims

1. A method for allowing users of third party vendors to access print shop applications without separate authentication, comprising the steps of:
- a. a third party vendor server, in response to a user'"'"'s access to a third party vendor'"'"'s server or web-site, creating a query-string including a first part containing identification information of the third party vendor encrypted with a master key shared by all third party vendors and a second part containing authentication information of the user of the third party vendor encrypted with a private key assigned only to the third party vendor, the query-string being contained in an inline frame;
  
  b. a print shop server, upon receiving the encrypted query-string sent from a server of the third party vendor server to the print shop server, decrypting the first part of the query-string with the masker key to ascertain the identification information of the third party vendor;
  
  c. the print shop server, based on identification of the third party vendor obtained from decrypting the first part of the query-string, identifying the private key assigned to the third party vendor, and retrieving the private key assigned to the third party vendor;
  
  d. the print shop server decrypting the second part of the query-string with the private key assigned to the third party vendor to ascertain the authentication information of the user of the third party vendor;
  
  e. the print shop server, based on identification of the user obtained from decrypting the second part of the query-string, determining whether the user has an existing account on the print shop server; and
  
  f. the print shop server automatically logging the user into the print shop server after it is determined that the user has an existing account so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1, further comprising a step of creating an account for the user on the print shop server with the authentication information of the user if it is determined in step “
    - e”
      
      that the user does not have an existing account on the print shop server.
  - 3. The method according to claim 2, further comprising a step of automatically logging the user into the print shop server after the user has a newly created account so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.
  - 4. The method according to claim 1, further comprising a step of receiving a print-on-demand request from a user of a third party vendor at the third party vendor server.
  - 5. The method according to claim 1, further comprising a step of sharing the master key with a multiplicity of third party vendors.
  - 6. The method according to claim 1, further comprising a step of assigning a unique private key to each third party vendor.
  - 7. The method according to claim 1, wherein the inline frame contains a uniform resource locator (URL).

8. A system for allowing users of third party vendors to access print-on-demand applications without separate authentication comprising at least one data processing apparatus having a non-transitory memory storing a computer software program and a processor executing the computer software program, wherein the computer software program includes program code configured to cause the at least one data processing apparatus to execute a process which comprises the steps of:
- a. a third party vendor server, in response to a user'"'"'s access to a third party vendor'"'"'s server or web-site, creating a query-string including a first part containing identification information of the third party vendor encrypted with a master key shared by all third party vendors and a second part containing authentication information of the user of the third party vendor encrypted with a private key assigned only to the third party vendor, the query-string being contained in an inline frame;
  
  b. a print shop server, upon receiving the encrypted query-string sent from the third party vendor server to the print shop server, decrypting the first part of the query-string with the master key to ascertain the identification information of the third party vendor;
  
  c. the print shop server, based on identification of the third party vendor obtained from decrypting the first part of the query-string, identifying the private key assigned to the third party vendor, and retrieving the private key assigned to the third party vendor;
  
  d. the print shop server decrypting the second part of the query-string with the private key assigned to the third party vendor to ascertain the authentication information of the user of the third party vendor;
  
  e. the print shop server, based on identification of the user obtained from decrypting the second part of the query-string, determining whether the user has an existing account on the print shop server; and
  
  f. the print shop server automatically logging the user into the print shop server after it is determined that the user has an existing account so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system according to claim 8, wherein the process further comprises a step of creating an account for the user on the print shop server with the authentication information of the user if it is determined in step “
    - e”
      
      that the user does not have an existing account on the print shop server.
  - 10. The system according to claim 9, wherein the process further comprises a step of automatically logging the user into the print shop server after the user has a newly created account so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.
  - 11. The system according to claim 8, wherein the process further comprises a step of receiving a print-on-demand request from a user of a third party vendor at the third party vendor server.
  - 12. The system according to claim 8, wherein the process further comprises a step of sharing the master key with a multiplicity of third party vendors.
  - 13. The system according to claim 8, wherein the process further comprises a step of assigning a unique private key to each third party vendor.
  - 14. The system according to claim 8, wherein the inline frame contains a uniform resource locator (URL).

15. A computer software program product having a computer readable program code embedded in a computer usable non-transitory storage medium for controlling at least one data processing apparatus, the computer readable program code configured to cause the at least one data processing apparatus to execute a process which comprises the steps of:
- a. a third party server, in response to a user'"'"'s access to a third party vendor'"'"'s server or web-site, creating a query-string including a first part containing identification information of the third party vendor encrypted with a master key shared by all third party vendors and a second part containing authentication information of the user of the third party vendor encrypted with a private key assigned to the third party vendor, the query-string being contained in an inline frame;
  
  b. a print shop server, upon receiving the encrypted query-string sent from the third party vendor server to the print shop server, decrypting the first part of the query-string with the master key to ascertain the identification information of the third party vendor;
  
  c. the print shop server, based on identification of the third party vendor obtained from decrypting the first part of the query-string, identifying the private key assigned to the third party vendor, and retrieving the private key assigned to the third party vendor;
  
  d. the print shop server decrypting the second part of the query-string with the private key assigned to the third party vendor to ascertain the authentication information of the user of the third party vendor;
  
  e. the print shop server, based on identification of the user obtained from decrypting the second part of the query-string, determining whether the user has an existing account on the print shop server; and
  
  f. the print shop server automatically logging the user into the print shop server after it is determined that the user has an existing account so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23)
- - 16. The computer software program product according to claim 15, wherein the process further comprises a step of creating an account for the user on the print shop server with the authentication information of the user if it is determined in step “
    - e”
      
      that the user does not have an existing account on the print shop server.
  - 17. The computer software program product according to claim 16, wherein the process further comprises a step of automatically logging the user into the print shop server after the user has a newly created account so that the user may access and use any print-on-demand applications on the print shop server without manually inputting user authentication information on the print shop server.
  - 18. The computer software program product according to claim 15, wherein the process further comprises a step of receiving a print-on-demand request from a user of a third party vendor at the third party vendor server.
  - 19. The computer software program product according to claim 15, wherein the process further comprises a step of sharing the master key with a multiplicity of third party vendors.
  - 20. The computer software program product according to claim 15, wherein the process further comprises a step of assigning a unique private key to each third party vendor.
  - 21. The computer software program product according to claim 15, wherein the inline frame contains a uniform resource locator (URL).
  - 22. The computer software program product according to claim 15, comprising a third party vendor module installed on a server of the third party vendor for executing step “
    - a”
      
      of claim 15.
  - 23. The computer software program product according to claim 22, further comprising a print shop module installed on a print shop server for executing steps “
    - b”
      
      through “
      
      f”
      
      of claim 15.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Konica Minolta Laboratory U.S.A., Inc. (Konica Minolta Inc.)
Original Assignee
Konica Minolta Laboratory U.S.A., Inc. (Konica Minolta Inc.)
Inventors
Barber, Daniel
Primary Examiner(s)
Haskins, Twyler
Assistant Examiner(s)
ZONG, HELEN

Application Number

US13/170,799
Publication Number

US 20130003103A1
Time in Patent Office

882 Days
Field of Search

None
US Class Current

358/1.14
CPC Class Codes

G06F 21/31   User authentication

G06F 21/41   where a single sign-on prov...

G06F 21/6263   during internet communicati...

G06F 2221/2115   Third party

G06F 3/1204   resulting in reduced user o...

G06F 3/1222   Increasing security of the ...

G06F 3/1238   Secure printing, e.g. user ...

G06F 3/1288   in client-server-printer de...

H04L 63/0815   providing single-sign-on or...

H04L 63/0884   by delegation of authentica...

H04L 63/126   the source of the received ...

System and method for third party authentication of web-based print-on-demand requests

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for third party authentication of web-based print-on-demand requests

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links