logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 9690920 B1

PDFFull Text
Date of Patent:
Jun. 27, 2017

Filed:

Aug. 30, 2012

Secure configuration catalog of trusted identity providers

Applicants:

Jane B. Marcus, Medford, MA (US);

Alan D. Eldridge, Hollis, NH (US);

David Scott Kern, Jr., Billerica, MA (US);

Michael J. Kerrigan, Salem, MA (US);

Patrick Charles Mancuso, Center Tuftonboro, NH (US);

Robert John Paganetti, Scituate, MA (US);

Inventors:

Jane B. Marcus, Medford, MA (US);

Alan D. Eldridge, Hollis, NH (US);

David Scott Kern, Jr., Billerica, MA (US);

Michael J. Kerrigan, Salem, MA (US);

Patrick Charles Mancuso, Center Tuftonboro, NH (US);

Robert John Paganetti, Scituate, MA (US);

Assignee:

International Business Machines Corporation, Armonk, NY (US);

Attorneys:

David B. Woycechowsky

David H. Judson

Jeffrey S. LaBaw

Primary Examiner:

Eleni Shiferaw

Assistant Examiner:

Huan V Doan

Int. Cl.
CPC ...
G06F 7/04 (2006.01); G06F 15/16 (2006.01); G06F 17/30 (2006.01); H04L 29/06 (2006.01); G06F 21/33 (2013.01);
U.S. Cl.
CPC ...
G06F 21/33 (2013.01); H04L 63/0815 (2013.01); H04L 63/0884 (2013.01);
Abstract

A secure database includes a catalog of information about one or more identity providers (IdPs) that are trusted by a service provider (SP) to authenticate users on the SP's behalf. The catalog securely stores one or more IdP configurations. An entry in the database stores information associated with the trusted IdP including artifacts to identify the IdP, artifacts used by the IdP for cryptographic operations, and a specification of one or more website(s) serviced by the trusted identity provider. Upon receipt by the SP of identity information representing a user that has authenticated to an IdP, information in the catalog of information is used to determine whether the IdP is trusted to authenticate the user on the service provider's behalf. The determination verifies that the SP uses the IdP and that a binding between an IdP identifier and at least one IdP cryptographic artifact is valid.

Find Patent Forward Citations

Loading…