Federated identity management for data repositories
US-2024348610-A1 · Oct 17, 2024 · US
A Method and Apparatus for Anonymous and Trustworthy Authentication in Pervasive Social Networking
US2016127341A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2016127341-A1 |
| Application number | US-201314896988-A |
| Country | US |
| Kind code | A1 |
| Filing date | Jun 25, 2013 |
| Priority date | Jun 25, 2013 |
| Publication date | May 5, 2016 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method for anonymous authentication may comprise: issuing token information to a first node registered with a network entity, wherein the token information indicates one or more tokens for the first node; distributing a token list to a plurality of nodes registered with the network entity, wherein the token list is associated with respective tokens for the plurality of nodes comprising at least the first node and a second node, and wherein the token information and the token list are used for an anonymous authentication between the first node and the second node.
First claim
Opening claim text (preview).
1 - 55 . (canceled) 56 . An apparatus, comprising: at least one processor; and at least one memory comprising computer program code, the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following: issuing token information to a first node registered with the apparatus, wherein the token information indicates one or more tokens for the first node; distributing a token list to a plurality of nodes registered with the apparatus, wherein the token list is associated with respective tokens for the plurality of nodes comprising at least the first node and a second node, and wherein the token information and the token list are used for an anonymous authentication between the first node and the second node. 57 . The apparatus according to claim 56 , wherein the one or more tokens for the first node comprise: a first token for the first node, at least one backup token of the first token, or a combination thereof; and wherein the respective tokens for the plurality of nodes comprise at least: the first token for the first node, the at least one backup token of the first token, a second token for the second node, and at least one backup token of the second token. 58 . The apparatus according to claim 57 , wherein the first token comprises: a first validity period, and a pseudonym identifier and a trust value of the first node corresponding to the first validity period; and wherein a backup token of the first token comprises: an extended first validity period, and a pseudonym identifier and a trust value of the first node corresponding to the extended first validity period. 59 . The apparatus according to claim 58 , wherein the trust value of the first node corresponding to the extended first validity period is set based at least in part on an analysis of a change trend within the extended first validity period according to a trust value change pattern generated based at least in part on historical statistics for the first node. 60 . The apparatus according to claim 56 , wherein the token list is updated based at least in part on a change of the respective tokens for the plurality of nodes. 61 . The apparatus according to claim 56 , wherein the token list comprises an aggregated list of hashed tokens, which is certified by the apparatus. 62 . The apparatus according to claim 56 , wherein the apparatus comprises a trusted server which is authorized for social networking participated by the plurality of the nodes. 63 . An apparatus, comprising: at least one processor; and at least one memory comprising computer program code, the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following: obtaining token information from a network entity with which the apparatus is registered, wherein the token information indicates one or more tokens for the apparatus; generating security information for the apparatus based at least in part on the token information; and sending a message with authentication information to another apparatus from the apparatus, wherein the authentication information is associated with the security information and used for an anonymous authentication between the apparatus and the another apparatus. 64 . The apparatus according to claim 63 , wherein the one or more tokens for the apparatus comprise: a first token for the apparatus, at least one backup token of the first token, or a combination thereof. 65 . The apparatus according to claim 64 , wherein the first token comprises: a first validity period, and a pseudonym identifier and a trust value of the apparatus corresponding to the first validity period; and wherein a backup token of the first token comprises: an extended first validity period, and a pseudonym identifier and a trust value of the apparatus corresponding to the extended first validity period. 66 . The apparatus according to claim 63 , wherein the security information comprises a short-lived public and private key pair for the apparatus. 67 . The apparatus according to claim 66 , wherein the authentication information comprises: the short-lived public key of the apparatus, and a signature generated by using the short-lived private key of the apparatus. 68 . A computer program product comprising a computer-readable medium bearing computer program code embodied therein for use with a computer, the computer program code comprising: code for obtaining token information from a network entity with which a first node is registered, wherein the token information indicates one or more tokens for the first node; code for generating security information for the first node based at least in part on the token information; and code for sending a message with authentication information to a second node from the first node, wherein the authentication information is associated with the security information and used for an anonymous authentication between the first node and the second node. 69 . The computer program product according to claim 68 , wherein the one or more tokens for the first node comprise: a first token for the first node, at least one backup token of the first token, or a combination thereof. 70 . The computer program product according to claim 69 , wherein the first token comprises: a first validity period, and a pseudonym identifier and a trust value of the first node corresponding to the first validity period; and wherein a backup token of the first token comprises: an extended first validity period, and a pseudonym identifier and a trust value of the first node corresponding to the extended first validity period. 71 . The computer program product according to claim 68 , wherein the security information comprises a short-lived public and private key pair for the first node. 72 . The computer program product according to claim 71 , wherein the authentication information comprises: the short-lived public key of the first node, and a signature generated by using the short-lived private key of the first node.
Assignees
Inventors
Classifications
involving digital signatures · CPC title
Anonymization, e.g. involving pseudonyms · CPC title
including means for verifying the identity or authority of a user of the system {or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials} · CPC title
Broadcast encryption · CPC title
for mutual authentication (network architectures or network communication protocols for achieving mutual authentication in a packet data network H04L63/0869) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2016127341A1 cover?
- A method for anonymous authentication may comprise: issuing token information to a first node registered with a network entity, wherein the token information indicates one or more tokens for the first node; distributing a token list to a plurality of nodes registered with the network entity, wherein the token list is associated with respective tokens for the plurality of nodes comprising at lea…
- Who is the assignee on this patent?
- Nokia Technologies Oy
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0421. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Thu May 05 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).