Single sign-on process
First Claim
Patent Images
1. A single sign-on method allowing a user to remote-access a remote location over a communication network using a single sign-on module in a device, comprising the steps of:
- providing the sign-on module in the device, said sign-in module including an interface with a smart-card;
initiating a user request for remote access to the remote location by accepting a user authenticator provided by the user via a user interface on the device provided to the user by said sign-on module;
authenticating the user using said sign-on module based on said user authenticator;
activating said smart-card based on said authenticating;
establishing a connection over said communication network with said remote location after activating said smart card;
authenticating said user in said remote location using a different authenticator derived using said smart-card without requiring additional authentication information being input from the user; and
granting the user access to said remote location in response to said accepting.
8 Assignments
0 Petitions
Accused Products
Abstract
Single sign-on process allowing a mobile user with a mobile phone or with a laptop to remote-access a remote server, comprising the steps of:
- (1) sending a first authenticator over a first communication layer to a first intermediate equipment between said mobile equipment and said remote server,
- (2) verifying in said first intermediate equipment said first authenticator sent by said mobile equipment,
- (3) if said first authenticator is accepted by said first intermediate equipment, completing the communication layer between said mobile equipment and said intermediate equipment,
- (4) repeating steps (1) to (3) with a plurality of successive intermediate equipment and over a plurality of successive communication layers, until a communication has been completed at the last requested communication layer between said mobile equipment and said remote server,
- wherein at least a plurality of said authenticators are furnished by a smart-card in said mobile equipment.
25 Citations
25 Claims
-
1. A single sign-on method allowing a user to remote-access a remote location over a communication network using a single sign-on module in a device, comprising the steps of:
-
providing the sign-on module in the device, said sign-in module including an interface with a smart-card; initiating a user request for remote access to the remote location by accepting a user authenticator provided by the user via a user interface on the device provided to the user by said sign-on module; authenticating the user using said sign-on module based on said user authenticator; activating said smart-card based on said authenticating; establishing a connection over said communication network with said remote location after activating said smart card; authenticating said user in said remote location using a different authenticator derived using said smart-card without requiring additional authentication information being input from the user; and granting the user access to said remote location in response to said accepting. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A single sign-on method allowing a user to remote-access a remote location over a communication network using a single sign-on module in a device, comprising the steps of:
-
providing the sign-on module in the device; initiating a user request for remote access to the remote location by accepting a user authenticator provided by the user via a user interface on the device provided to the user by said sign-on module; authenticating said user in the communication network using said sign-on module and said user authenticator provided by the user; establishing a connection over said communication network with said remote location after authenticating said user in the communication network; authenticating said user in said remote location using a different authenticator provided to said remote location by said sign-on module without requiring additional authentication information being input from the user; and granting the user access to said remote location in response to said authenticating. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A user device for allowing a user to access a remote location over a network using a single sign-on process, comprising:
-
a processor; an identification module for storing a plurality of authenticators for providing access to a plurality of different secure resources; and memory for storing information relating to a different authenticator, wherein said device is adapted for interacting with said network for registering the user in the network utilizing said identification module using said user authenticator, and wherein said device is further adapted for, subsequent to said registering in the network, interacting with said remote location for providing the different authenticator to said remote location based on said stored information relating to the different authenticator without requiring further authenticator information from the user, said different authenticator for authenticating said user in said remote location, and further wherein said device is also adapted for providing the user access to one or more secure resources at said remote location after said user is authenticated in said remote location. - View Dependent Claims (22, 23, 24, 25)
-
Specification