Method and apparatus for establishing a federated identity using a personal wireless device
First Claim
1. A method for performing transactions between a user and a merchant at a same location, the method comprising:
- a personal wireless device authenticating the user of the personal wireless device;
in response to successful authentication of the user of the personal wireless device, the personal wireless device providing credentials to a federated identity provider to authenticate the personal wireless device with the federated identity provider;
in response to successful authentication of the personal wireless device after providing the credentials, the personal wireless device receiving a token for the user from the federated identity provider, wherein the token is a temporary token having an expiry;
the personal wireless establishing a communication session with a merchant located at a first location, wherein the personal wireless device is also located at the first location during the communication session, and wherein the communication session is established using a short range wireless communication protocol; and
the personal wireless device providing the token to the merchant using the short range wireless communication protocol to purchase goods or services from the merchant.
3 Assignments
0 Petitions
Accused Products
Abstract
A federated identity, established through possession of a single sign-on token, will allow a personal wireless device (PWD) to be used in a commercial environment to purchase goods or services, access a building, access a telephone, wireless, or computer network, or in numerous other instances. The token may be obtained by the user authenticating with the PWD and the PWD authenticating with the network. When the PWD comes within range of a service provider, a session is established using a short range wireless protocol, such as Bluetooth or infrared. The session is secured using a security protocol such as SSL, and the service provider authenticates its identity to the PWD. Policy may be implemented regarding transmission of the token to the service provider. Upon receipt of the token, the service provider will validate the token with the federated identity provider, obtain identifying information, and complete the transaction.
262 Citations
30 Claims
-
1. A method for performing transactions between a user and a merchant at a same location, the method comprising:
-
a personal wireless device authenticating the user of the personal wireless device; in response to successful authentication of the user of the personal wireless device, the personal wireless device providing credentials to a federated identity provider to authenticate the personal wireless device with the federated identity provider; in response to successful authentication of the personal wireless device after providing the credentials, the personal wireless device receiving a token for the user from the federated identity provider, wherein the token is a temporary token having an expiry; the personal wireless establishing a communication session with a merchant located at a first location, wherein the personal wireless device is also located at the first location during the communication session, and wherein the communication session is established using a short range wireless communication protocol; and the personal wireless device providing the token to the merchant using the short range wireless communication protocol to purchase goods or services from the merchant. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A non-transitory, computer accessible memory medium of a personal wireless device, wherein the memory medium stores program instructions for performing transactions between a user and a merchant at a same location, wherein the program instructions are executable to:
-
authenticate the user of the personal wireless device; in response to successful authentication of the user of the personal wireless device, provide credentials to a federated identity provider to authenticate the personal wireless device with the federated identity provider; in response to successful authentication of the personal wireless device after providing the credentials, receive a token for the user from the federated identity provider, wherein the token is a temporary token having an expiry; establish a communication session with a merchant located at a first location, wherein the personal wireless device is also located at the first location during the communication session, and wherein the communication session is established using a short range wireless communication protocol; and provide the token to the merchant using the short range wireless communication protocol to purchase goods or services from the merchant. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
-
24. A personal wireless device, comprising:
-
wireless communication circuitry for performing wireless communication over one or more wireless networks; logic coupled to the wireless circuitry, wherein the logic is configured to; authenticate a user of the personal wireless device; in response to successful authentication of the user of the personal wireless device, provide credentials to a federated identity provider to authenticate the personal wireless device with the federated identity provider; in response to successful authentication of the personal wireless device after providing the credentials, receive a token for the user from the federated identity provider, wherein the token is a temporary token having an expiry; establish a communication session with a merchant located at a first location using the wireless communication circuitry, wherein the personal wireless device is also located at the first location during the communication session, and wherein the communication session is established using a short range wireless communication protocol; and provide the token to the merchant using the short range wireless communication protocol to purchase goods or services from the merchant. - View Dependent Claims (25, 26, 27, 28, 29, 30)
-
Specification