| 摘要 |
<p>A method for transferring information about a user in an Identity Management System, wherein the Identity Management System includes at least one Identity Provider (2) and one or more cooperating Service Providers (1), the method comprising the steps of, at a Service Provider (1), upon receipt of a service request from the user, requesting certain user information about the user from said at least one Identity Provider (2), and, at the Identity Provider (2), requesting said user information from an Assertion Provider (3) which has the relevant data by using Identity Management Protocols, and providing said user information to said Service Provider (1) in form of an assertion digitally signed by said Assertion Provider (3), is characterized in that a credential is generated on said user information and concatenated with said user information to produce said assertion, wherein said credential is constructed in such a way that it is verifiable without revealing by which party said credential has been generated.</p> |
| 申请人 |
NEC EUROPE LTD.;GIRAO, JOAO;SARMA, AMARDEO;DA SILVA, JOAO |
发明人 |
GIRAO, JOAO;SARMA, AMARDEO;DA SILVA, JOAO |
