PROVIDING AUTHENTICATION USING PREVIOUSLY-VALIDATED AUTHENTICATION CREDENTIALS

摘要

Embodiments of the invention are directed to systems, methods and computer program products for providing authentication using previously-validated authentication credentials. An exemplary apparatus is configured to receive a request to access a framework application, request, from a user, one or more authentication credentials corresponding to a primary level of user authentication, receive and validate the one or more authentication credentials, create, using the framework application, an authentication token based at least partially on the validation of the primary level of user authentication, wherein the authentication token is accessible by a plurality of applications, receive a request, from the user, to access one or more non-framework applications; and authenticate the one or more non-framework applications, where authenticating the non-framework applications requires accessing the authentication token created by the framework application such that the authentication is at least partially based on the primary level of user authentication.

主权项

1. A computer program product for providing authentication using previously-validated authentication credentials, the computer program product comprising:
a non-transitory computer-readable medium comprising a set of codes for causing a computer to: receive a request, from a user, to access a framework application, wherein access to the framework application requires a primary level of user authentication comprising one of a plurality of authentication types that is selectable by the user, wherein the plurality of authentication types comprises at least one of a hard authentication and a soft authentication, wherein the hard authentication is a multi-factor verification requiring the user present at least two authentication credentials, wherein the soft authentication is at least a single factor verification requiring the user to present at least one authentication credential; receive a user selected authentication type of the primary level of user authentication, wherein the user selected authentication type is selected from at least one of the hard authentication and the soft authentication; request, from the user, one or more authentication credentials corresponding to the user selected authentication type of the primary level of user authentication; receive the one or more authentication credentials from the user; validate the one or more authentication credentials, thereby resulting in a validation of the user selected authentication type of the primary level of user authentication; create, using the framework application, an authentication token corresponding to the user selected authentication type based at least partially on the validation of the user selected authentication type of the primary level of user authentication, wherein the authentication token is accessible by at least one non-framework application; receive a request to access the at least one non-framework application; access the authentication token created by the framework application; and at least partially authenticate the at least one non-framework application using the authentication token such that the authentication of the at least one non-framework application is at least partially based on the user selected authentication type of the primary level of user authentication, wherein authentication of the user selected authentication type of the primary level of user authentication decreases a degree of confidence required for authenticating the at least one non-framework application from at least a first degree of confidence to a second degree of confidence, and wherein the first degree of confidence is stronger than the second degree of confidence.