Single sign-on process
First Claim
1. A method for allowing a user to remotely access a remote location, the method comprising:
- sending by a server associated with the remote location, an authentication request to user equipment associated with the user, in response to the user requesting remote access;
receiving by the server, corresponding remote-access authentication data from the user equipment, wherein;
the remote-access authentication data is obtained, without requiring user input, from an activated smart-card associated with the user equipment,the smart-card is activated based on successful verification of the user using local-access authentication data,the local-access authentication data is provided by the user in response to request by the user equipment,the local-access authentication data is different from the remote-access authentication data, andauthenticating the user by the server based on the remote-access authentication data, wherein the user is granted access to the remote location over a communication network based on successful authentication of the user.
6 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems are provided for single sign-on process for remote-access to remote servers, using user equipment associated with a user. An intermediate device (e.g., smart-card) associated with the user equipment may be activated using local-access authentication information provided by the user. The local-access authentication data may be provided by the user in response to requests by the user equipment. Once activated, the intermediate device may support remote-access operations, by providing, in response to authentication requests received from remote servers, remote-access authentication data, which may be used in authenticating the user at the remote servers. The authentication requests may be sent by the remote server to the user equipment in response to the user requesting remote access. The remote-access authentication data may be provided without requiring user input, once the intermediate device is activated. Further, the remote-access authentication data is different from the local-access authentication data.
-
Citations
30 Claims
-
1. A method for allowing a user to remotely access a remote location, the method comprising:
-
sending by a server associated with the remote location, an authentication request to user equipment associated with the user, in response to the user requesting remote access; receiving by the server, corresponding remote-access authentication data from the user equipment, wherein; the remote-access authentication data is obtained, without requiring user input, from an activated smart-card associated with the user equipment, the smart-card is activated based on successful verification of the user using local-access authentication data, the local-access authentication data is provided by the user in response to request by the user equipment, the local-access authentication data is different from the remote-access authentication data, and authenticating the user by the server based on the remote-access authentication data, wherein the user is granted access to the remote location over a communication network based on successful authentication of the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for allowing a user to remotely access a remote location, the method comprising:
in user equipment associated with the user; receiving local-access authentication data from the user; authenticating the user based on the local-access authentication data; activating a smart-card when the user is successfully authenticated using the local-access authentication data; and in response to the user requesting remote access to the remote location, for each authentication request received from a server associated with the remote location; obtaining corresponding remote-access authentication data from the smart-card; and sending the remote-access authentication data to the server associated with the remote location; and wherein; the remote-access authentication data is different from the local-access authentication data, the remote-access authentication data is provided by the smart-card, once activated, without requiring additional user input, and the user is granted access to the remote location over a communication network based on successful authentication of the user. - View Dependent Claims (10, 11, 12, 13, 14)
-
15. A system comprising:
one or more servers for use in allowing a user to remotely access a remote location, wherein each server is operable to; send an authentication request to user equipment associated with the user, in response to the user requesting remote access; receive corresponding remote-access authentication data from the user equipment, wherein; the remote-access authentication data is obtained, without requiring user input, from an activated smart-card associated with the user equipment, the smart-card is activated based on successful verification of the user using local-access authentication data, the local-access authentication data is provided by the user in response to request by the user equipment, and the local-access authentication data is different from the remote-access authentication data; and authenticate the user based on the remote-access authentication data, wherein the user is granted access to the remote location over a communication network based on successful authentication of the user. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23)
-
24. A system for allowing a user to remotely access a remote location, comprising:
-
user equipment that comprises at least one processor; a smart-card associated with the user equipment; and wherein the user equipment is operable to; receive local-access authentication data from the user; authenticate the user based on the local-access authentication data; activate the smart-card when the user is successfully authenticated using the local-access authentication data; and in response to the user requesting remote access to the remote location, for each authentication request received from a server associated with the remote location; obtain from the smart-card corresponding remote-access authentication data; and send the remote-access authentication data to the server of the remote location; and wherein; the remote-access authentication data is different from the local-access authentication data, the remote-access authentication data is provided by the smart-card, once activated, without requiring additional user input, and the user is granted access to the remote location over a communication network based on successful authentication of the user. - View Dependent Claims (25, 26, 27, 28, 29, 30)
-
Specification