System and method for providing single sign on interface for applications on mobile devices

US 9,787,665 B2
Filed: 07/02/2013
Issued: 10/10/2017
Est. Priority Date: 07/02/2013
Status: Active Grant

First Claim

Patent Images

1. A system, comprising:

one or more network-enabled computers to;

receive a first set of data from a mobile device that includes a single sign on (SSO) application that enables access to multiple mobile applications using a single sign-on interface,the first set of data including application credentials of a mobile application, of the multiple mobile applications, that is installed on the mobile device and integrated with the SSO application;

perform a first comparison of the first set of data to a first set of stored information;

when the first set of data matches the first set of stored information, transmit an authentication signal;

receive a second set of data from the SSO application of the mobile device after the mobile device receives the authentication signal and determines that session information is not stored in a memory associated with the mobile device,the session information including a session cookie or a token issued by the one or more network-enabled computers;

perform a second comparison of the second set of data to a second set of stored information,the second set of data including one or more credentials associated with a user of the mobile device; and

establish a communication session with the mobile device based on the second comparison.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for and method of providing a mobile device user with a mobile single sign-on (MSSO) platform that can interface with multiple mobile applications on the mobile device. A user having a mobile device may access a mobile application on the mobile device. The mobile application may be enabled to interface with the MSSO platform. The MSSO platform may capture the user credentials sent over a wireless link and provide them to a remote server. The remote server may establish a session over a wireless link with the mobile device based on the user credentials. The MSSO platform may make this session available to other applications on the mobile device seamlessly. The wireless link may be part of a publicly accessible communication network.

Citations

23 Claims

1. A system, comprising:
- one or more network-enabled computers to;
  
  receive a first set of data from a mobile device that includes a single sign on (SSO) application that enables access to multiple mobile applications using a single sign-on interface,the first set of data including application credentials of a mobile application, of the multiple mobile applications, that is installed on the mobile device and integrated with the SSO application;
  
  perform a first comparison of the first set of data to a first set of stored information;
  
  when the first set of data matches the first set of stored information, transmit an authentication signal;
  
  receive a second set of data from the SSO application of the mobile device after the mobile device receives the authentication signal and determines that session information is not stored in a memory associated with the mobile device,the session information including a session cookie or a token issued by the one or more network-enabled computers;
  
  perform a second comparison of the second set of data to a second set of stored information,the second set of data including one or more credentials associated with a user of the mobile device; and
  
  establish a communication session with the mobile device based on the second comparison.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The system of claim 1, wherein the application credentials comprise one or more keys associated with the mobile application.
  - 3. The system of claim 1, wherein the second set of stored information comprises a plurality of stored credentials associated with the user.
  - 4. The system of claim 1, wherein the communication session is established if at least one of the one or more credentials associated with the user matches at least one credential of the second set of stored information.
  - 5. The system of claim 1, wherein establishing the communication session comprises transmitting the session information to the mobile device.
  - 6. The system of claim 5, wherein the session information further comprises a user profile.
  - 7. The system of claim 5, wherein the token issued by the one or more network-enabled computers is an encrypted token.

8. A method comprising:
- receiving, by a server, a first set of data from a mobile device that includes a single sign on (SSO) application that enables access to multiple mobile applications using a single sign-on interface,the first set of data including application credentials of a mobile application, of the multiple mobile applications, that is installed on the mobile device and integrated with the SSO application;
  
  comparing, by the server, the first set of data to a first set of stored information;
  
  transmitting, by the server, an authentication signal based on comparing the first set of data to the first set of stored information;
  
  receiving, by the server, a second set of data from the SSO application of the mobile device after the mobile device receives the authentication signal and determines that session information is not stored in a memory associated with the mobile device,the session information including a session cookie or a token issued by the server;
  
  comparing, by the server, the second set of data to a second set of stored information,the second set of data comprising one or more credentials associated with a user of the mobile device; and
  
  establishing, by the server, a communication session with the mobile device based on comparing the first set of data to the first set of stored information.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
- - 9. The method of claim 8, wherein the second set of data further comprises a device identifier of the mobile device.
  - 10. The method of claim 8, where the SSO application of the mobile device determines that the session information is not stored in the memory associated with the mobile device.
  - 11. The method of claim 8, further comprising:
    - receiving an engagement request from a developer of the mobile application;
      
      generating the application credentials based on the engagement request; and
      
      storing the application credentials as the first set of stored information.
  - 12. The method of claim 11, further comprising:
    - transmitting the application credentials to the developer for the developer to provide the application credentials to the mobile application.
  - 13. The method of claim 8,where the second set of data comprises a device identifier of the mobile device, andwhere the method further comprises:
    - retrieving a profile based on the device identifier, andwhere the profile includes the second set of stored information.
  - 14. The method of claim 8, further comprising:
    - receiving the application credentials during a process that creates the mobile application, andstoring the application credentials as the first set of stored information.
  - 15. The method of claim 8, wherein the application credentials comprise one or more keys associated with the mobile application.

16. A method comprising:
- receiving one or more commands at a mobile device that includes a single sign on (SSO) application that enables access to multiple mobile applications using a single sign-on interface;
  
  starting a program, of the multiple mobile applications, on the mobile device based on the one or more commands;
  
  transmitting, by the mobile device, a first set of data to a remote server,the first set of data including application credentials of the program;
  
  receiving, by the mobile device and from the remote server, an authentication signal that indicates that the first set of data matches a first set of stored information that is stored by the remote server;
  
  checking, by the mobile device and after receiving the authentication signal from the remote server, a memory on the mobile device to determine whether session information is stored in the memory,the session information including a session cookie or a token issued by the remote server; and
  
  if the session information is stored in the memory, the method comprises;
  
  providing, by the mobile device, the session information to the remote server;
  
  orif the session information is not stored in the memory, the method comprises;
  
  capturing, by the SSO application of the mobile device, one or more user credentials input by a user of the mobile device,transmitting, by the mobile device, the one or more user credentials to the remote server,receiving, by the mobile device, the session information from the remote server,providing, by the mobile device, the session information to the program, andstoring, by the mobile device, the session information in the memory.
- View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
- - 17. The method of claim 16, wherein the program comprises a browser-based mobile application.
  - 18. The method of claim 16, wherein the program is configured to perform one or more business-related functions for a business employee.
  - 19. The method of claim 16, wherein the session information is associated with a session between the mobile device and the remote server that was previously initiated by the user of the mobile device using a different program of the multiple mobile applications.
  - 20. The method of claim 19, wherein the session information further comprises a profile associated with the user of the mobile device.
  - 21. The method of claim 19, wherein the token issued by the remote server comprises an encrypted token.
  - 22. The method of claim 16, wherein the one or more user credentials input by the user include at least one of:
    - a username, a password, or biometric information associated with the user.
  - 23. The method of claim 16, wherein the session information is associated with a communication session between the mobile device and the remote server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Verizon Patent and Licensing Incorporated (Verizon Communications Inc.)
Original Assignee
Verizon Patent and Licensing Incorporated (Verizon Communications Inc.)
Inventors
Korat, Mukeshkumar, Alvi, Jamal A., Hwang, Chung-Bun B., Kalianda, Aarathi, Eknath, Sivaguru
Primary Examiner(s)
Desrosiers, Evans

Application Number

US13/933,705
Publication Number

US 20150012995A1
Time in Patent Office

1,561 Days
Field of Search

726 2- 8, 713168-174, 713182-186, 713202, 709206, 709225, 709229, 709249, 709389
US Class Current
CPC Class Codes

H04L 63/0815 providing single-sign-on or...

H04W 12/069 using certificates or pre-s...

System and method for providing single sign on interface for applications on mobile devices

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for providing single sign on interface for applications on mobile devices

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links