Method for implementing unified authentication

摘要

A method for implementing unified authentication for user logon, the method comprising the steps of: establishing an authentication server; creating a user authentication account number in the authentication server; storing user information which the user uses in a plurality of systems into the authentication server; associating, in the authentication server, the created user authentication account number with the user information which the user uses in the plurality of systems; and providing an authentication flag to the client of the user by the authentication server based on the association between the user authentication account number and the user information which the user uses in the plurality of systems established in the authentication server so that the user can log on the plurality of systems using the authentication flag. The present invention is applied to provide a unified mechanism of user logon authentication in integration and mergence of the service processes provided by a plurality of Internet information systems or Internet providers, and thus the user can access all authorized application systems or service providers with only one logon authentication.

主权项

1. A method for implementing unified authentication for a user logon for a plurality of application systems, the method comprising the steps of:
logging on an authentication server by a user by:
sending the authentication server an authentication account number by the user, the authentication server having stored therein permanently user information which the user uses in accessing the plurality of application systems, the authentication account number being created beforehand and stored in the authentication server permanently, and the authentication account number of a specific user being associated with the user information of that specific user;establishing a temporary memory area for the user by the authentication server in the authentication server, and allocating a unique identification to said temporary memory area for the user;verifying the authentication account number, and providing an authentication flag to the user by the authentication server;storing the received authentication flag by the user and sending a certain request to the authentication server regularly to keep the authentication flag valid during the logon of the user on the authentication server; accessing one application system among the plurality of application systems by the user by:
sending by the user the authentication flag to the application system;requesting, by said application system, the authentication server to verify said authentication flag;retrieving, if the authentication flag is verified successfully, by the one application system from the authentication server user information which the user uses in accessing the one application system;receiving, by the one application system, the user information of said application system from said authentication server and allowing the user to log on the one application system, wherein if the user accesses another application system different from the one application system when it has a valid authentication flag, the user accesses the other application system by using the verified authentication flag without logging on the authentication server once again.