Browse Prior Art Database

A System and Method for providing secure shared access to Website accounts via decentralized delegation of permission

IP.com Disclosure Number: IPCOM000215499D
Publication Date: 2012-Mar-02
Document File: 1 page(s) / 40K

Publishing Venue

The IP.com Prior Art Database

Abstract

A large proportion of Web sites offer the capability to register an account, accounts are generally created for the use of one person yet the functionality provided by that account may be useful to one or more persons that the account holder knows and trusts. This idea extends the principles behind OpenID to allow an end user to grant another end user permission to access their account on a particular Website without giving away their password and without the Website having to know about any delegation of access.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 51% of the total text.

Page 01 of 1

A System and Method for providing secure shared access to Website accounts via decentralized delegation of permission

A large proportion of Web sites offer the capability to register an account, accounts are generally created for the use of one person yet the functionality provided by that account may be useful to one or more persons that the account holder knows and trusts. For example a DVD rental site allows an individual user to register and choose a certain number of DVDs per month to be sent to their address. There may be several members of a family at an address for which access to that account

would be useful, currently in most cases the only way to access that account is to share the login and password amongst family members this presents a security issue and is often against the terms of service of many websites which dictate that you do not distribute your username and password. Increasingly sites are adopting schemes such as OpenID which allow a user to have a single identity that they use to log into multiple Web Sites and Systems. This idea extends the principles behind OpenID to allow an end user to grant another end user permission to access their account on a particular Website without giving away their password and without the Website having to know about any delegation of access. OpenId (http://openid.net/)

works on the principle that a user enters an identity in the openid login field at the website they wish to log in at (that supports openid), the identity is used to contact an openid service provider, the user is redirected to this provider and enters their authentication details, after successful authentication they are directed back to the original site, the original site is given information about the user which it uses to match the u...