Split terminal single sign-on combined authentication method and system

A single sign-on and terminal technology, which is applied in the field of scene interoperability and can solve the problem of lack of authentication and authentication.

Inactive Publication Date: 2013-12-04
ZTE CORP
View PDF3 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] For separated terminals in a non-UICC environment, because the GBA architecture cannot be used for authentication and authentication, for this type of IMS terminal, an architecture that uses the SIP Digest mechanism to implement the SSO function is designed in SSO_APS, a

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Split terminal single sign-on combined authentication method and system
  • Split terminal single sign-on combined authentication method and system
  • Split terminal single sign-on combined authentication method and system

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0049] figure 1 Shown is the architecture diagram of the integration and interworking of the SSO architecture and the OpenID architecture, wherein the OpenID provider entity (OP) and the application server (AS) entity on the SSO architecture in SSO_APS are regarded as an entity, which is called OP / AS or OP in the present invention (Unless otherwise specified below, OP, AS, and OP / AS all refer to the same meaning); UE is an IMS terminal; RP corresponds to the final application server of the OpenID of the converged system to be accessed by the IMS terminal; IdP serves as a user authentication center, It is used to complete the authentication of UE in the SSO framework in SSO_APS.

[0050] figure 2 The schematic diagram of the architecture in the scenario of separated terminals is shown, where the UE is divided into BA and AA, and the two are not located on the same physical entity, for example, the BA is located on a personal computer, and the AA is located on a mobile termina...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a split terminal single sign-on combined authentication method and system. The method comprises the steps that a BA in an OpenID is redirected to an OP by an RP, and the OP generates a Session Id and pushes the Session Id to the BA; communication is carried out between an AA and the OP according to the Session Id acquired by the AA, the OP instructs the AA to carry out SDALS authentication, and after authentication is carried out between the AA and an IdPDALS, the OP generates a random number Nonce2 and sends the random number Nonce2 to the AA according to an acquired session key K1 between the OP and the AA and an authentication result of the AA; the AA sends the Session Id, the acquired session key K1 and the received random number Nonce2 to the BA; OpenID authentication is carried out on the OP and the RP by the BA according to the Session Id, the session key K1 and the random number Nonce2. According to the split terminal single sign-on combined authentication method and system, single sign-on is achieved based on a split terminal under the condition that a GBA is not arranged, and then various WEB services can be available.

Description

technical field [0001] The present invention relates to the field of scenario interworking of mobile communication systems, and in particular to a separate terminal single sign-on combined authentication method and system. Background technique [0002] At present, the 3rd Generation Partnership Project (3rd Generation Partnership Project, referred to as 3GPP) organization has the following research project: Using the Session Initiation Protocol Digest (abbreviated as SIP Digest) authentication mechanism to realize the non-universal integrated circuit card (abbreviated as UICCless) A unified IP Multimedia System (IP Multimedia Subsystem, IMS for short) terminal accessing a Single Sign On (SSO, Single Sign On) function of an Application Server (Application Server, short for AS) under the environment. [0003] Wherein, an SSO architecture in SSO_APS (Application Support Sublayer) can realize the above functions. The SSO architecture usually consists of a unified IMS terminal, ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04W12/06
Inventor 夏正雪
Owner ZTE CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap