Elevating trust in user identity during RESTful authentication
First Claim
Patent Images
1. A computer-implemented method of authenticating an entity, comprising:
- receiving, by a RESTful service running on one or more processors, a request for authentication of an entity;
redirecting the authentication request to a relying party, wherein the relying party facilitates the authentication of the entity and stores a first credential and a back channel SAML credential;
receiving, by the RESTful service, the first credential from the relying party, wherein the first credential is received through a front channel;
receiving, by the RESTful service, the back channel SAML credential from the relying party, wherein the back channel SAML credential is received through a back channel; and
authenticating the entity at a level of confidence based on the credential strength of the first credential and the back channel SAML credential.
3 Assignments
0 Petitions
Accused Products
Abstract
Credentials sent over a back channel during the authentication of a user to a RESTful service can elevate the trust the recipient system can place in the user'"'"'s identity. The addition of an identity credential of higher strength can increase confidence in user identities electronically presented with a lower strength credential.
-
Citations
20 Claims
-
1. A computer-implemented method of authenticating an entity, comprising:
-
receiving, by a RESTful service running on one or more processors, a request for authentication of an entity; redirecting the authentication request to a relying party, wherein the relying party facilitates the authentication of the entity and stores a first credential and a back channel SAML credential; receiving, by the RESTful service, the first credential from the relying party, wherein the first credential is received through a front channel; receiving, by the RESTful service, the back channel SAML credential from the relying party, wherein the back channel SAML credential is received through a back channel; and authenticating the entity at a level of confidence based on the credential strength of the first credential and the back channel SAML credential. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer-implemented authentication system, comprising:
-
a RESTful service running on one or more processors and comprising an authentication component operable to; receive a request for authentication of an entity using an entity agent, redirect the entity agent to a relying party, receive a first credential related to the authentication request, wherein the first credential is received from the relying party and through a front channel, receive a back channel SAML credential related to the authentication request, wherein the back channel SAML credential is received from the relying party and through a back channel, and authenticate the entity at a level of confidence based on the credential strength of the first credential and the back channel SAML credential; a relying party operable to; facilitate the authentication of the entity, store the first credential and the back channel SAML credential, send, through the front channel, the first credential to the authentication component, and send, through the back channel, the back channel SAML credential to the authentication component. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification