Methods and apparatus for transacting with multiple domains based on a credential
First Claim
Patent Images
1. A method, comprising:
- receiving, based on a credential and at a terminal device outside a first domain and a second domain mutually exclusive from the first domain, a credential-owner authentication information associated with (1) an identity of a subject entity, and (2) a request for entity-specific information associated with the subject entity from a relying entity within the first domain, the first domain being at least one of a physical domain or a virtual domain;
authenticating the identity of the subject entity based on the credential-owner authentication information; and
sending, based on the request for entity-specific information and in response to the authenticating, an indication of the identity to an information source of the second domain to instruct the information source of the second domain to send to the relying entity of the first domain the entity-specific information associated with the subject entity based on the indication of the identity.
0 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, a method includes receiving from a credential a credential-owner authentication information associated with an identity of an individual. A issuer validation information associated with an issuer of the credential is also received. The method also includes providing a plurality of options, including a first option associated with a first domain and a second option associated with a second domain mutually exclusive from the first domain. The method also includes sending to a portion of the first domain the credential-owner authentication information and the issuer validation information in response to the first option being selected.
-
Citations
22 Claims
-
1. A method, comprising:
-
receiving, based on a credential and at a terminal device outside a first domain and a second domain mutually exclusive from the first domain, a credential-owner authentication information associated with (1) an identity of a subject entity, and (2) a request for entity-specific information associated with the subject entity from a relying entity within the first domain, the first domain being at least one of a physical domain or a virtual domain; authenticating the identity of the subject entity based on the credential-owner authentication information; and sending, based on the request for entity-specific information and in response to the authenticating, an indication of the identity to an information source of the second domain to instruct the information source of the second domain to send to the relying entity of the first domain the entity-specific information associated with the subject entity based on the indication of the identity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A non-transitory processor-readable medium storing code representing instructions to be executed by a processor, the code comprising code to cause the processor to:
-
authenticate, at a computing device outside a first domain, an identity of a subject entity based on a credential-owner authentication information associated with a credential and the identity; define a request for entity-specific information associated with the subject entity in response to the authenticating; send the request and an indication of the identity to the first domain to cause the first domain to retrieve a privilege value associated with the first domain and based on the authenticating; and receive an indicator, from the first domain and in response to the request, that sending of the entity-specific information to a relying entity of a second domain has been approved based on the privilege value. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. An apparatus, comprising:
-
an information provider implemented in at least one of a memory or a processing device, the information provider configured to receive, based on a credential and via a terminal device different from a relying entity within at least one of a physical domain or a virtual domain and an information source, at least one of a credential-owner authentication information or a credential-owner-provided unique information, the at least one of the credential-owner authentication information or the credential-owner-provided unique information being associated with (1) an identity of a subject entity, and (2) a request from the relying entity for entity-specific information associated with the subject entity, the information provider configured to authenticate the identity of the subject entity based on at least one of the credential-owner authentication information or the credential-owner-provided unique information, the information provider configured to send, based on the request for entity-specific information and in response to authenticating the identity, at least one of an indication of the identity or the credential-owner-provided unique information to the information source to instruct the information source to send to the relying entity the entity-specific information associated with the subject entity based on at least one of the indication of the identity or the credential-owner-provided unique information. - View Dependent Claims (19, 20, 21, 22)
-
Specification