IN2014CN02076A - - Google Patents
Info
- Publication number
- IN2014CN02076A IN2014CN02076A IN2076CHN2014A IN2014CN02076A IN 2014CN02076 A IN2014CN02076 A IN 2014CN02076A IN 2076CHN2014 A IN2076CHN2014 A IN 2076CHN2014A IN 2014CN02076 A IN2014CN02076 A IN 2014CN02076A
- Authority
- IN
- India
- Prior art keywords
- server
- cookie
- authentication
- domain
- browser client
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G01—MEASURING; TESTING
- G01S—RADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
- G01S19/00—Satellite radio beacon positioning systems; Determining position, velocity or attitude using signals transmitted by such systems
- G01S19/01—Satellite radio beacon positioning systems transmitting time-stamped messages, e.g. GPS [Global Positioning System], GLONASS [Global Orbiting Navigation Satellite System] or GALILEO
- G01S19/13—Receivers
- G01S19/32—Multimode operation in a single same satellite system, e.g. GPS L1/L2
-
- G—PHYSICS
- G01—MEASURING; TESTING
- G01S—RADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
- G01S19/00—Satellite radio beacon positioning systems; Determining position, velocity or attitude using signals transmitted by such systems
- G01S19/01—Satellite radio beacon positioning systems transmitting time-stamped messages, e.g. GPS [Global Positioning System], GLONASS [Global Orbiting Navigation Satellite System] or GALILEO
- G01S19/13—Receivers
- G01S19/24—Acquisition or tracking or demodulation of signals transmitted by the system
- G01S19/246—Acquisition or tracking or demodulation of signals transmitted by the system involving long acquisition integration times, extended snapshots of signals or methods specifically directed towards weak signal acquisition
-
- G—PHYSICS
- G01—MEASURING; TESTING
- G01S—RADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
- G01S19/00—Satellite radio beacon positioning systems; Determining position, velocity or attitude using signals transmitted by such systems
- G01S19/38—Determining a navigation solution using signals transmitted by a satellite radio beacon positioning system
- G01S19/39—Determining a navigation solution using signals transmitted by a satellite radio beacon positioning system the satellite radio beacon positioning system transmitting time-stamped messages, e.g. GPS [Global Positioning System], GLONASS [Global Orbiting Navigation Satellite System] or GALILEO
- G01S19/42—Determining position
- G01S19/421—Determining position by combining or switching between position solutions or signals derived from different satellite radio beacon positioning systems; by combining or switching between position solutions or signals derived from different modes of operation in a single system
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/02—Services making use of location information
Landscapes
- Engineering & Computer Science (AREA)
- Remote Sensing (AREA)
- Radar, Positioning & Navigation (AREA)
- Computer Networks & Wireless Communication (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Signal Processing (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Information Transfer Between Computers (AREA)
- Storage Device Security (AREA)
- Computer And Data Communications (AREA)
Abstract
Disclosed is a method for protecting a single sign on domain from credential leakage. In the method an authentication server (210) provides an authentication cookie (102) to a browser client (220). The cookie has an authentication credential for the domain and is associated with an authentication subdomain of the domain. The server (10) receives the cookie from the browser client (114). Upon authentication of the user authentication credential in the received cookie the server (210) responds to the access request by forwarding to the browser client a limited use cookie for the domain (132). The server (210) receives a request (134) from the content server (230) to validate a session identifier of the limited use cookie received from the browser client. Upon validation the server (210) provides a valid session message (182) to the content server (230) for enabling the content server to forward requested content (184) to the client.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US13/252,931 US8943571B2 (en) | 2011-10-04 | 2011-10-04 | Method and apparatus for protecting a single sign-on domain from credential leakage |
PCT/US2012/058789 WO2013052693A1 (en) | 2011-10-04 | 2012-10-04 | Method and apparatus for protecting a single sign-on domain from credential leakage |
Publications (1)
Publication Number | Publication Date |
---|---|
IN2014CN02076A true IN2014CN02076A (en) | 2015-05-29 |
Family
ID=47993958
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
IN2076CHN2014 IN2014CN02076A (en) | 2011-10-04 | 2012-10-04 |
Country Status (8)
Country | Link |
---|---|
US (1) | US8943571B2 (en) |
EP (1) | EP2764673B1 (en) |
JP (1) | JP5791814B2 (en) |
KR (1) | KR101579801B1 (en) |
CN (1) | CN103843300B (en) |
IN (1) | IN2014CN02076A (en) |
TW (1) | TW201334482A (en) |
WO (1) | WO2013052693A1 (en) |
Families Citing this family (27)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2013177687A1 (en) * | 2012-05-31 | 2013-12-05 | Netsweeper Inc. | Policy service authorization and authentication |
US8977560B2 (en) * | 2012-08-08 | 2015-03-10 | Ebay Inc. | Cross-browser, cross-machine recoverable user identifiers |
US9419963B2 (en) * | 2013-07-02 | 2016-08-16 | Open Text S.A. | System and method for controlling access |
US9521146B2 (en) | 2013-08-21 | 2016-12-13 | Microsoft Technology Licensing, Llc | Proof of possession for web browser cookie based security tokens |
US9106642B1 (en) | 2013-09-11 | 2015-08-11 | Amazon Technologies, Inc. | Synchronizing authentication sessions between applications |
US20150244704A1 (en) * | 2014-02-27 | 2015-08-27 | Netapp, Inc. | Techniques to authenticate user requests involving multiple applications |
US9461983B2 (en) * | 2014-08-12 | 2016-10-04 | Danal Inc. | Multi-dimensional framework for defining criteria that indicate when authentication should be revoked |
US9454773B2 (en) | 2014-08-12 | 2016-09-27 | Danal Inc. | Aggregator system having a platform for engaging mobile device users |
US10154082B2 (en) | 2014-08-12 | 2018-12-11 | Danal Inc. | Providing customer information obtained from a carrier system to a client device |
CN107077403B (en) | 2014-08-21 | 2020-10-09 | 卫盟软件股份公司 | Backup server, method and computer program product for user authorization |
KR102309744B1 (en) * | 2014-11-21 | 2021-10-07 | 삼성전자 주식회사 | Apparatus and method for controlling traffic in wireless communication systems |
CN104410650A (en) * | 2014-12-24 | 2015-03-11 | 四川金网通电子科技有限公司 | Method for authenticating user based on Session and Cookie |
US20160241536A1 (en) * | 2015-02-13 | 2016-08-18 | Wepay, Inc. | System and methods for user authentication across multiple domains |
US10243957B1 (en) * | 2015-08-27 | 2019-03-26 | Amazon Technologies, Inc. | Preventing leakage of cookie data |
JP6719875B2 (en) * | 2015-09-01 | 2020-07-08 | キヤノン株式会社 | Authentication server, authentication method and program |
US10798096B2 (en) * | 2015-10-12 | 2020-10-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Methods to authorizing secondary user devices for network services and related user devices and back-end systems |
US10348712B2 (en) * | 2016-02-26 | 2019-07-09 | Ricoh Company, Ltd. | Apparatus, authentication system, and authentication method |
US10715513B2 (en) * | 2017-06-30 | 2020-07-14 | Microsoft Technology Licensing, Llc | Single sign-on mechanism on a rich client |
US11196733B2 (en) * | 2018-02-08 | 2021-12-07 | Dell Products L.P. | System and method for group of groups single sign-on demarcation based on first user login |
US11212101B2 (en) * | 2018-10-09 | 2021-12-28 | Ca, Inc. | Token exchange with client generated token |
CN111404921B (en) * | 2020-03-12 | 2022-05-17 | 广州市百果园信息技术有限公司 | Webpage application access method, device, equipment, system and storage medium |
WO2021232347A1 (en) * | 2020-05-21 | 2021-11-25 | Citrix Systems, Inc. | Cross device single sign-on |
US11076002B1 (en) * | 2020-06-22 | 2021-07-27 | Amazon Technologies, Inc. | Application streaming with specialized subdomains |
KR102582904B1 (en) * | 2021-01-05 | 2023-09-27 | 고승곤 | Blockchain-based prepaid content billing service method and system |
CN113190828A (en) * | 2021-05-25 | 2021-07-30 | 网宿科技股份有限公司 | Request proxy method, client device and proxy service device |
KR20230012874A (en) * | 2021-07-16 | 2023-01-26 | (주)모니터랩 | User authentication method using cookies in a secure apparatus |
GB2619518A (en) * | 2022-06-07 | 2023-12-13 | Id Ward Ltd | Privacy-preserving cross-domain user tracking |
Family Cites Families (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6226752B1 (en) * | 1999-05-11 | 2001-05-01 | Sun Microsystems, Inc. | Method and apparatus for authenticating users |
US7188181B1 (en) * | 1999-06-30 | 2007-03-06 | Sun Microsystems, Inc. | Universal session sharing |
US7174383B1 (en) | 2001-08-31 | 2007-02-06 | Oracle International Corp. | Method and apparatus to facilitate single sign-on services in a hosting environment |
WO2003073783A1 (en) * | 2002-02-28 | 2003-09-04 | Telefonaktiebolaget L M Ericsson | System, method and apparatus for federated single sign-on services |
US7221935B2 (en) | 2002-02-28 | 2007-05-22 | Telefonaktiebolaget Lm Ericsson (Publ) | System, method and apparatus for federated single sign-on services |
US7237118B2 (en) * | 2002-12-05 | 2007-06-26 | Microsoft Corporation | Methods and systems for authentication of a user for sub-locations of a network location |
US7496953B2 (en) * | 2003-04-29 | 2009-02-24 | International Business Machines Corporation | Single sign-on method for web-based applications |
KR101079238B1 (en) * | 2003-08-11 | 2011-11-03 | 소니 주식회사 | Authentication method authentication system and authentication server |
US7503031B2 (en) * | 2004-02-19 | 2009-03-10 | International Business Machines Corporation | Method of transforming an application into an on-demand service |
US20060085345A1 (en) * | 2004-10-19 | 2006-04-20 | Khandelwal Rajesh B | Right to receive data |
WO2007076074A2 (en) | 2005-12-22 | 2007-07-05 | Catalog.Com, Inc. | System and method for cross-domain social networking |
JP2008181427A (en) | 2007-01-25 | 2008-08-07 | Fuji Xerox Co Ltd | Single sign-on system, information terminal device, single sign-on server, program |
US20090259851A1 (en) | 2008-04-10 | 2009-10-15 | Igor Faynberg | Methods and Apparatus for Authentication and Identity Management Using a Public Key Infrastructure (PKI) in an IP-Based Telephony Environment |
WO2011128183A2 (en) * | 2010-04-13 | 2011-10-20 | Telefonaktiebolaget L M Ericsson (Publ) | Method and apparatus for interworking with single sign-on authentication architecture |
-
2011
- 2011-10-04 US US13/252,931 patent/US8943571B2/en active Active
-
2012
- 2012-10-04 TW TW101136700A patent/TW201334482A/en unknown
- 2012-10-04 CN CN201280048720.4A patent/CN103843300B/en active Active
- 2012-10-04 KR KR1020147012094A patent/KR101579801B1/en active IP Right Grant
- 2012-10-04 WO PCT/US2012/058789 patent/WO2013052693A1/en active Application Filing
- 2012-10-04 JP JP2014534730A patent/JP5791814B2/en not_active Expired - Fee Related
- 2012-10-04 EP EP12778872.7A patent/EP2764673B1/en not_active Not-in-force
- 2012-10-04 IN IN2076CHN2014 patent/IN2014CN02076A/en unknown
Also Published As
Publication number | Publication date |
---|---|
CN103843300B (en) | 2017-05-24 |
CN103843300A (en) | 2014-06-04 |
EP2764673A1 (en) | 2014-08-13 |
US8943571B2 (en) | 2015-01-27 |
WO2013052693A1 (en) | 2013-04-11 |
KR20140084126A (en) | 2014-07-04 |
TW201334482A (en) | 2013-08-16 |
JP2014529156A (en) | 2014-10-30 |
KR101579801B1 (en) | 2015-12-24 |
US20130086656A1 (en) | 2013-04-04 |
JP5791814B2 (en) | 2015-10-07 |
EP2764673B1 (en) | 2018-03-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
IN2014CN02076A (en) | ||
GB2558484A (en) | A method and system for the secure transfer of entities on a blockchain | |
WO2013151851A3 (en) | Secure authentication in a multi-party system | |
PH12018501746A1 (en) | Blockchain-based exchange with tokenisation | |
WO2014191768A3 (en) | Multi-factor zero-knowledge authentication using pairings | |
WO2010144207A3 (en) | Method and apparatus for processing authentication request message in a social network | |
MX2015012581A (en) | Wireless data privacy maintained through a social network. | |
GB2507213A (en) | Authenticating a rich client from within an existing browser session | |
IN2014CN04541A (en) | ||
EP2574009A3 (en) | Network apparatus based on content name, method of generating and authenticating content name | |
WO2011094096A3 (en) | Establishing, at least in part, secure communication channel between nodes so as to permit inspection, at least in part, of encrypted communication carried out, at least in part, between the nodes | |
IN2014CN04375A (en) | ||
GB2464397B (en) | Segregating anonymous access to dynamic content on a web server, with cached logons | |
WO2013002538A3 (en) | Method and apparatus for preventing distributed denial of service attack | |
MX351030B (en) | Third-party captive portal. | |
WO2010062491A3 (en) | Authentication in a network using client health enforcement framework | |
MX342518B (en) | Session establishment method, server, device, system and apparatus. | |
WO2009151730A3 (en) | Authentication for distributed secure content management system | |
SG143127A1 (en) | Client credential based secure session authentication method and apparatus | |
WO2013120026A3 (en) | Enabling secure access to a discovered location server for a mobile device | |
GB201212055D0 (en) | Securing asynchronous client server transactions | |
WO2009111313A3 (en) | Method and apparatus for enhanced age verification and activity management of internet users | |
WO2013032671A3 (en) | Methods and apparatus for source authentication of messages that are secured with a group key | |
MX2010011817A (en) | Secure web based transactions. | |
PH12014501310B1 (en) | Method, system, network server and storage medium for anonymous dating. |