| US 7,596,804 B2 | ||
| Seamless cross-site user authentication status detection and automatic login | ||
| Christopher Newell Toomey, Cupertino, Calif. (US); and Conor Cahill, Dulles, Va. (US) | ||
| Assigned to AOL LLC, Dulles, Va. (US) | ||
| Appl. No. 10/519,774 PCT Filed Jul. 02, 2003, PCT No. PCT/US03/21244 § 371(c)(1), (2), (4) Date Dec. 22, 2004, PCT Pub. No. WO2004/006499, PCT Pub. Date Jan. 15, 2004. |
||
| Claims priority of provisional application 60/393658, filed on Jul. 02, 2002. | ||
| Prior Publication US 2005/0216582 A1, Sep. 29, 2005 | ||
| Int. Cl. H04L 9/00 (2006.01) | ||
| U.S. Cl. 726—5 [707/200; 709/213] | 16 Claims |
| 1. An apparatus for a baseline authentication agency for determining a user's login status as the user accesses a site within
a network, said apparatus comprising:
a database storing information about partner web sites that have been selected by a user for defining login parameters of
the user associated with one or more of the partner web sites;
a baseline authentication agency server for providing core global network authentication services configured:
to receive a request from a user's browser, the request comprising: a site identification identifying a site; and
a cookie related to the user and including:
a reference to the baseline authentication agency; and
an identifier distinguishing the baseline authentication agency which is associated with the user from a set of baseline authentication
agencies;
to determine whether the cookie is valid;
to determine whether the user has authorized seamless login for the site using the information from the database; and
to generate a login ticket for the site and send the login ticket to the user's browser if the cookie is valid and the user
has authorized seamless login for the site;
wherein the cookie is stored on a global network domain used for cookie sharing and the site is one of a collection of partner
sites with access to cookies shared on the global network domain.
|