The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Dec. 10, 2013
Filed:
Jul. 21, 2004
Heather Maria Hinton, Austin, TX (US);
Brian James Turner, Santa Cruz, CA (US);
Anthony Scott Moran, Santa Cruz, CA (US);
Shane Weeden, Santa Cruz, CA (US);
Ian Michael Glazer, Washington, DC (US);
Gavin George Bray, Robina, AU;
Venkat Raghavan, Austin, TX (US);
Heather Maria Hinton, Austin, TX (US);
Brian James Turner, Santa Cruz, CA (US);
Anthony Scott Moran, Santa Cruz, CA (US);
Shane Weeden, Santa Cruz, CA (US);
Ian Michael Glazer, Washington, DC (US);
Gavin George Bray, Robina, AU;
Venkat Raghavan, Austin, TX (US);
International Business Machines Corporation, Armonk, NY (US);
Abstract
A method and a system are presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions. When a user is provisioned at a particular federated domain, the federated domain can provision the user to other federated domains within the federated environment. A provision operation may include creating or deleting an account for a user, pushing updated user account information including attributes, and requesting updates on account information including attributes.