| 发明名称 | System and method for pool-based identity generation and use for service access | ||
| 摘要 | A computer-implemented system and method for pool-based identity generation and use for service access is disclosed. The method in an example embodiment includes seeding an identity generator with a private key; retrieving independently verifiable data corresponding to a service consumer; using the independently verifiable data to create signed assertions corresponding to the service consumer; generating a non-portable identity document associated with the service consumer, the identity document including the signed assertions; signing the identity document with the private key; and conveying the signed identity document to the service consumer via a secure link. | ||
| 申请公布号 | US8893242(B2) | 申请公布日期 | 2014.11.18 |
| 申请号 | US200812111338 | 申请日期 | 2008.04.29 |
| 申请人 | eBay Inc. | 发明人 | Kolluru Raju Venkata;Kleinpeter Michael Dean;Lynch Liam Sean;Kasten Christopher J.;Kanungo Rajesh |
| 分类号 | H04L29/06;G06Q20/40;G06Q20/38;G06F21/33;G06Q20/02;H04L9/32 | 主分类号 | H04L29/06 |
| 代理机构 | Schwegman Lundberg & Woessner, P.A. | 代理人 | Schwegman Lundberg & Woessner, P.A. |
| 主权项 | 1. A method comprising: receiving, by a service consumer from an identification authority, a non-portable identity document associated with the service consumer, the identity document including signed assertions corresponding to independently verifiable data of the service consumer, the independently verifiable data including an IP address of the service consumer, the identity document being bound to the IP address of the service consumer, and the signed assertions being compatible with a security assertion markup language; generating, by use of a processor of the service consumer, a request for credentials including at least a portion of the content of the identity document, the portion including an assertion corresponding to the IP address; sending the request for credentials from the service consumer to an authentication authority; and based on a match between the IP address corresponding to the assertion included in the sent portion of the content of the identity document and an IP address retrieved by the authentication authority based on the request but independently from the identity document, receiving credentials from the authentication authority by the service consumer; and sending the received credentials along with a request for service from the service consumer to a service provider. | ||
| 地址 | San Jose CA US | ||