| 发明名称 |
Trusted third party client authentication |
| 摘要 |
A method includes receiving, at a video service provider system, a request for an online video session from a third party device with a security markup assertion language (SAML) token as an input, decrypting a SAML assertion in the SAML token with a private key associated with the video service provider system, validating the SAML assertion based on a third party public key associated with the third party STS, and retrieving a third party account user identifier and a device type. The method also includes identifying a link time based on the third party account user identifier, identifying a password change time (PCT) stamp associated with the service provider user account, and providing the online video session to the third party device in response to determining that the PCT stamp is not later than the link time. |
| 申请公布号 |
US9003189(B2) |
申请公布日期 |
2015.04.07 |
| 申请号 |
US201213609530 |
申请日期 |
2012.09.11 |
| 申请人 |
Verizon Patent and Licensing Inc. |
发明人 |
Yin Fenglin;Hao Jack Jianxiu |
| 分类号 |
H04L9/32;G06F21/10;H04L29/06;H04L29/08 |
主分类号 |
H04L9/32 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A computer-implemented method comprising:
receiving, at a video service provider system, a request for an online video session from a third party device with a security markup assertion language (SAML) token as an input, wherein the SAML token is encrypted for the video service provider system and signed by a third party security token service (STS) device, and the third party device is associated with a third party user account and a third party entity; decrypting a SAML assertion in the SAML token with a private key associated with the video service provider system; validating the SAML assertion based on a third party public key associated with the third party STS device; retrieving a third party account user identifier (ID) and a device type from an account link table wherein the account link table includes an authorization identifier, the third party account user ID, the device type, and a link time, wherein the link time identifies a time that the third party user account was linked with a service provider user account associated with the video service provider system; identifying the link time based on the third party account user identifier; identifying a password change time (PCT) stamp associated with the service provider user account; and providing the online video session to the third party device in response to determining that the PCT stamp is not later than the link time. |
| 地址 |
Basking Ridge NJ US |
