logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 7748046 B1

PDFFull Text
Date of Patent:
Jun. 29, 2010

Filed:

Apr. 29, 2005

Security claim transformation with intermediate claims

Applicants:

Ryan D. Johnson, Bothell, WA (US);

Donald E. Schmidt, Redmond, WA (US);

Jeffrey F. Spelman, Woodinville, WA (US);

Kahren Tevosyan, Kirkland, WA (US);

Vijayavani Nori, Bellevue, WA (US);

Inventors:

Ryan D. Johnson, Bothell, WA (US);

Donald E. Schmidt, Redmond, WA (US);

Jeffrey F. Spelman, Woodinville, WA (US);

Kahren Tevosyan, Kirkland, WA (US);

Vijayavani Nori, Bellevue, WA (US);

Assignee:

Microsoft Corporation, Redmond, WA (US);

Attorney:
Primary Examiner:

Kambiz Zand

Assistant Examiner:

Tongoc Tran

Int. Cl.
CPC ...
G06F 21/00 (2006.01);
U.S. Cl.
CPC ...
Abstract

Systems and methods directed at transforming security claims in a federated authentication system using an intermediate format. The systems and methods described herein are directed at transforming security claims in a federated authentication system using an intermediate format. The federated authentication system includes an identity provider and a resource provider. The identity provider receives a request for information from the resource provider to authenticate an account by an application associated with the resource provider. A security claim associated with the account is retrieved where the security claim is provided by an account store in a format specific to the account store. The security claim is transformed from the account store specific format to an intermediate format. The security claim is then transformed from the intermediate format to a federated format recognized by the resource provider. The transformed security claim is provided in a security token to the resource provider. A similar two step transformation process using intermediate claims can also be implemented by the resource provider to transform security claims provided by an identity provider from a federated format to formats recognized by the applications.

Find Patent Forward Citations

Loading…