Networked identity framework
First Claim
Patent Images
1. A method comprising:
- receiving, by a computing system comprising one or more processors, a first request for one or more of a plurality of sets of identity data associated with a user;
transmitting a second request to release from a homesite at least one of the requested plurality of sets of identity data associated with the user that would authenticate the user at a membersite;
selecting a set of the at least one of the plurality of requested sets of identity data associated with the user to release in accordance with a user preference;
receiving, by an anonymizer and through a network interface, at least a portion of identity information in the selected set of identity data and user instructions to anonymize the identity information;
redacting the identity information to remove identifying information associated with the user; and
transmitting the selected set of identity data associated with the user to the membersite.
11 Assignments
0 Petitions
Accused Products
Abstract
A system and method provide a framework for networked identity management in a user-centric model by providing the ability for a user to delegate permissions to release identity information, by enabling a mechanism for releasing one of a requested plurality of data sets and by providing facilities for the retrieval of identity information from an external server. Anonymization of identity data is enabled through the use of an anonymizer system that can optionally be integrated with an identity store such as a homesite.
30 Citations
37 Claims
-
1. A method comprising:
-
receiving, by a computing system comprising one or more processors, a first request for one or more of a plurality of sets of identity data associated with a user; transmitting a second request to release from a homesite at least one of the requested plurality of sets of identity data associated with the user that would authenticate the user at a membersite; selecting a set of the at least one of the plurality of requested sets of identity data associated with the user to release in accordance with a user preference; receiving, by an anonymizer and through a network interface, at least a portion of identity information in the selected set of identity data and user instructions to anonymize the identity information; redacting the identity information to remove identifying information associated with the user; and transmitting the selected set of identity data associated with the user to the membersite. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35)
-
-
36. A system comprising:
-
a processor configured to receive a first request for one or more of a plurality of sets of identity data associated with a user; a transmitter configured to transmit a second request to release from a homesite at least one of the requested plurality of sets of identity data associated with the user that would authenticate the user at a membersite; the processor further configured to select a set of the at least one of the plurality of requested sets of identity data associated with the user to release in accordance with a user preference; the processor in data communication with an anonymizer, the anonymizer configured to; receive at least a portion of identity information in the selected set of identity data; receive a user instruction to redact the identity information; and remove identifying information associated with the user based on the received user instruction; and the transmitter configured to transmit the selected set of identity data associated with the user to the membersite.
-
-
37. A non-transitory computer readable storage medium including instructions executable by a processor of a device, the instructions causing the device to:
-
receive a first request for one or more of a plurality of sets of identity data associated with a user; transmit a second request to release from a homesite at least one of the requested plurality of sets of identity data associated with the user that would authenticate the user at a membersite; select a set of the at least one of the plurality of requested sets of identity data associated with the user to release in accordance with a user preference; receive at least a portion of identity information in the selected set of identity data and user instructions to anonymize the identity information; redact the identity information to remove identifying information associated with the user; and transmit the selected set of identity data associated with the user to the membersite.
-
Specification