System and method for providing customers with seamless entry to a remote server

US 7,426,530 B1
Filed: 06/12/2000
Issued: 09/16/2008
Est. Priority Date: 06/12/2000
Status: Expired due to Term

First Claim

Patent Images

1. A method for providing accessibility to a plurality of remote service providers across a network via a single login to a host service provider, each of the plurality of remote service providers being accessible through the host service provider and each of the plurality of remote service providers having separate login procedures requiring data, the method comprising the steps of:

the host service provider receiving the single login from a user, the host service provider having a universal session manager;

the universal session manager retrieving data from a validation database based on the single login to the host service provider, wherein the data is effective for accessing a selected one of the plurality of remote service providers, and wherein the data is based at least in part on the single login;

the universal session manager transmitting said data to the remote service provider, the universal session manager and the remote service provider exchanging the data to effect a two-sided authentication; and

the host service provider directing the user to the remote service provider in such manner that the user is simultaneously presented with information, in a single graphical user interface, that is provided by both the host service provider and the remote service provider; and

connecting to a trusted service provider having special access requirements, wherein a trusted service module acts as an intermediary between the host service provider and die trusted service provider; and

wherein the trusted service module receives a sessionID from the trusted service provider;

wherein the trusted service module places a text file on the user'"'"'s network data acquisition module; and

wherein said text file comprises a cookie;

the method further comprising the step of registering the user with the remote service provider; and

wherein the two-sided authentication is a triple handshake, the triple handshake including;

the universal session manager sending a username and password to the remote service provider constituting a login request;

the remote service provider sending the universal session manager a reply to the login request; and

the universal session manager directing the user to the remote service provider; and

wherein the remote service provider is a distinct remote site from the host service provider, and each step of the triple handshake is effected directly between the universal session manager and the remote service provider.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides a seamless entry system that comprises a universal session manager. Users connect to the host service provider with a unique username and password. Then, through a series of data exchanges between the universal session manager, a validation database, and the remote service module, the customer may be transparently logged into remote service providers. Internet banking customers utilize a browser system to connect to a host server providing a range of banking services supported by a remote or distinct server. According to the method, the customer first enters a username and password to gain access to the host service provider. The universal session manager transmits data required for login to the remote service provider. The user is thus able to utilize the remote services with his/her web browser system without having entered a username or password particular to the remote service.

636 Citations

15 Claims

1. A method for providing accessibility to a plurality of remote service providers across a network via a single login to a host service provider, each of the plurality of remote service providers being accessible through the host service provider and each of the plurality of remote service providers having separate login procedures requiring data, the method comprising the steps of:
- the host service provider receiving the single login from a user, the host service provider having a universal session manager;
  
  the universal session manager retrieving data from a validation database based on the single login to the host service provider, wherein the data is effective for accessing a selected one of the plurality of remote service providers, and wherein the data is based at least in part on the single login;
  
  the universal session manager transmitting said data to the remote service provider, the universal session manager and the remote service provider exchanging the data to effect a two-sided authentication; and
  
  the host service provider directing the user to the remote service provider in such manner that the user is simultaneously presented with information, in a single graphical user interface, that is provided by both the host service provider and the remote service provider; and
  
  connecting to a trusted service provider having special access requirements, wherein a trusted service module acts as an intermediary between the host service provider and die trusted service provider; and
  
  wherein the trusted service module receives a sessionID from the trusted service provider;
  
  wherein the trusted service module places a text file on the user'"'"'s network data acquisition module; and
  
  wherein said text file comprises a cookie;
  
  the method further comprising the step of registering the user with the remote service provider; and
  
  wherein the two-sided authentication is a triple handshake, the triple handshake including;
  
  the universal session manager sending a username and password to the remote service provider constituting a login request;
  
  the remote service provider sending the universal session manager a reply to the login request; and
  
  the universal session manager directing the user to the remote service provider; and
  
  wherein the remote service provider is a distinct remote site from the host service provider, and each step of the triple handshake is effected directly between the universal session manager and the remote service provider.
- View Dependent Claims (3, 4, 6, 7, 8, 9, 10, 11, 12, 15)
- - 3. The method of claim 1, wherein the validation database transmits data go the universal session manager or the host service provider indicating which services the user is enrolled.
  - 4. The method of claim 1, wherein the host service provider receiving the single login from the user is performed over a network.
  - 6. The method of claim 1, wherein the host service provider has control of a navigation bar in the graphical user interface, and web pages from the remote service provider are hosted in the graphical user interface and contain a navigation bar.
  - 7. The method of claim 1, the information that that is provided by the host service provider is adjacent the information that is presented by the remote service provider.
  - 8. The method of claim 1, further including the host service provider presenting the user with information, simultaneously to the remote service provider presenting the user with information, both such information being displayed to the user in respective areas of the single graphical user interface.
  - 9. The method of claim 1, further including the host service provider presenting the user with information in a first area of the single graphical user interface, simultaneously with the remote service provider presenting the user with information in a second area of the single graphical user interface.
  - 10. The method of claim 9, in which:
    - the first area of the single graphical user interface is an outer frame of the single graphical user interface; and
      
      the second area of the single graphical user interface is a main bottom panel.
  - 11. The method of claim 9, in which:
    - the first area of the single graphical user interface is an outer frame and top navigational bar of the single graphical user interface; and
      
      the second area of the single graphical user interface is a main bottom panel and a left-hand navigation bar of the single graphical user interface.
  - 12. The method of claim 11, the host service provider controlling the first area, and the left-hand navigation bar in the second area providing the user with remote service navigation.
  - 15. The method of claim 1, wherein the universal session manager retrieving data from a validation database based on the single login to the host service provider includes the universal session manager transmitting the username and an encrypted version of the password to the validation database.

2. A system for providing accessibility to a plurality of remote service providers via a single login to a host service provider, each of the plurality of remote service providers being accessible through the host service provider and each of the plurality of remote service providers having separate login procedures requiring data, the system comprising:
- a user system having a network data acquisition module;
  
  a plurality of remote service providers;
  
  a host service provider for receiving the single login, the host service provider having a universal session manager;
  
  the universal session manager receiving data from a validation database based on the single login to the host service provider, the universal session manager passing the data, which is required for access to the remote service provider, directly to the remote service provider, the universal session manager and the remote service provider exchanging the data to effect a two-sided authentication, the two-sided authentication being performed directly between the universal session manager and the remote service provider; and
  
  the validation database for storing the data for accessing the remote service provider, the universal session manager communicating with the validation database to obtain the data; and
  
  wherein the host service provider directs the user to the selected one of the plurality of remote service providers using the data; and
  
  the host service provider directing the user to the remote service provider in such manner that the user is simultaneously presented with information, in a single interface, that is provided by both the host service provider and the remote service provider; and
  
  said validation database further storing information for registering the user with the remote service provider; and
  
  the system further comprising a trusted service module that serves as an intermediary between the host service module and a trusted service provider,wherein said trusted service provider is a remote service provider with special access requirements,wherein the network data acquisition module is an Internet browser,wherein the remote service provider further comprises a registration module and a login module;
  
  wherein the login module receives the data for gaining access to the services provided by the remote service provider; and
  
  wherein the registration module receives the data for registering a user with the remote service provider; and
  
  the universal session manager registering the user with the remote service provider; and
  
  wherein the two-sided authentication is a triple handshake, the triple handshake being performed by;
  
  the universal session manager sending a username and password to the remote service provider constituting a login request;
  
  the remote service provider sending the universal session manager a reply to the login request; and
  
  the universal session manager directing the user to the remote service provider; and
  
  wherein the remote service provider is a distinct remote site from the host service provider, and each step of the handshake is effected directly between the universal session manager and the remote service provider.
- View Dependent Claims (5)
- - 5. The system of claim 2, wherein the validation database transmits data to the universal session manager of the host service provider indicating which services the user is enrolled.

13. A method for providing accessibility to a plurality of remote service providers across a network via at single login to a host service provider, each of the plurality of remote service providers being accessible through the host service provider and each of the plurality of remote service providers having separate login procedures requiring data, the method comprising the steps of:
- the host service provider receiving the single login from a user, the host service provider having a universal session manager;
  
  the universal session manager retrieving data from a validation database based on the single login to the host service provider, wherein the data is effective for accessing a selected one of the plurality of remote service providers, and wherein the data is based at least in part on the single login;
  
  the universal session manager transmitting said data to the remote service provider, the universal session manager and the remote service provider exchanging the data to effect a two-sided authentication; and
  
  the host service provider directing the user to the remote service provider in such manner that the user is simultaneously presented with information, in a single graphical user interface, that is provided by both the host service provider and the remote service provider; and
  
  connecting to a trusted service provider having special access requirements, wherein a trusted service module acts as an intermediary between the host service provider and the trusted service provider; and
  
  wherein the trusted service module receives a sessionID from the trusted service provider;
  
  wherein the trusted service module places a text file on the user'"'"'s network data acquisition module; and
  
  wherein said text file comprises a cookie;
  
  the method further comprising the step of registering the user with the remote service provider; and
  
  wherein the two-sided authentication is a triple handshake, the triple handshake including;
  
  the universal session manager sending a username and password to the remote service provider constituting a login request;
  
  the remote service provider sending the universal session manager a reply to the login request; and
  
  the universal session manager directing the user to the remote service provider; and
  
  wherein the remote service provider is a distinct remote site from the host service provider, and each step of the triple handshake is effected directly between the universal session manager and the remote service provider.
- View Dependent Claims (14)
- - 14. The method of claim 13, further including the universal session manager registering the user with the remote service provider.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Chase Bank USA National Association (JP Morgan Chase & Co)
Original Assignee
JP Morgan Chase Bank, N.A. (JP Morgan Chase & Co)
Inventors
Ampani, Kumar, Rosko, Robert
Primary Examiner(s)
DINH, KHANH Q

Application Number

US09/591,687
Time in Patent Office

3,018 Days
Field of Search

709/203, 709/219, 709/226, 709/224, 709/232, 709/220, 709/227, 709/228, 709/225, 709/249, 709/204, 709/229, 709/201, 380/21, 380/25, 705/27, 705/10, 705/42, 713/201, 713/183, 707/4, 707/200, 707/203, 707/204, 370/252
US Class Current

709/201
CPC Class Codes

G06F 21/41   where a single sign-on prov...

G06F 2221/2115   Third party

G06Q 20/10   specially adapted for elect...

G06Q 20/108   Remote banking, e.g. home b...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4014   Identity check for transact...

G06Q 40/00   Finance; Insurance; Tax str...

G06Q 40/02   Banking, e.g. interest calc...

Y10S 707/99953   Recoverability

Y10S 707/99954   Version management

System and method for providing customers with seamless entry to a remote server

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

636 Citations

15 Claims

Specification

Use Cases

Quick Links

Others

System and method for providing customers with seamless entry to a remote server

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

636 Citations

15 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others