logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 7137006 B1

PDFFull Text
Date of Patent:
Nov. 14, 2006

Filed:

Sep. 22, 2000

Method and system for single sign-on user access to multiple web servers

Applicants:

Michael L. Grandcolas, Santa Monica, CA (US);

France Law, Los Angeles, CA (US);

Ashwin Doshi, Cerritos, CA (US);

Michael Williams, Thousand Oaks, CA (US);

Yeona Jang, Princeton, NJ (US);

Toni Merschen, White Plains, NY (US);

Jack Pan, Rowland Heights, CA (US);

Inventors:

Michael L. Grandcolas, Santa Monica, CA (US);

France Law, Los Angeles, CA (US);

Ashwin Doshi, Cerritos, CA (US);

Michael Williams, Thousand Oaks, CA (US);

Yeona Jang, Princeton, NJ (US);

Toni Merschen, White Plains, NY (US);

Jack Pan, Rowland Heights, CA (US);

Assignee:

Citicorp Development Center, Inc., Los Angeles, CA (US);

Attorneys:

George T. Marcou

Kilpatrick Stockton LLP

Primary Examiner:

Ayaz Sheikh

Assistant Examiner:

Pramila Parthasarathy

Int. Cl.
CPC ...
H04L 9/00 (2006.01);
U.S. Cl.
CPC ...
Abstract

Methods and systems for single sign-on user access to multiple web servers are provided. A user is authenticated at a first web server (e.g., by user name and password). The first web server provides a web page to the user having a service selector (e.g., a hyperlink comprising the URL of a second web server offering the service indicated by the selector). When the user activates the service selector, the first web server constructs and transmits an encrypted authentication token (e.g., a cookie) from the first web server to a second web server via the user client. The first and second web servers share a sub-domain. The authentication token comprises an expiration time and is digitally signed by the first web server and is authenticated at the second web server. Upon authentication, the second web server allows the user to conduct a session at the second web server.

Find Patent Forward Citations

Loading…