Jericho Systems receives patent for trust elevation during RESTful authentication of user identity
Cyber security contractor Jericho Systems Corporation of Dallas, TX announced on November 19 that it has received issuance notification from the U.S. Patent and Trademark Office of patent number 8,893,293, “Elevating Trust in User Identity During RESTful Authentication.”
The patented technology is a trust-sensitive system for securing access to representational state transfer (REST)-based web resources. The system can dynamically recognize and respond to varying levels of confidence in the strength of an identity credential provided by an individual or system during the authentication and authorization process, the firm said.
“This new patent describes an innovative back-channel, trust-based approach to securing and customizing access to a web-based resource,” said David Staggs, CTO of Jericho Systems.
According to Jericho, the system incorporates features of policy based access control (PBAC) and attribute based access control (ABAC), and leverages information that describes the user and context which is communicated through a secured “back channel.” This process uses an industry standard protocol such as security assertion markup language (SAML). The approach allows integration with lightweight, stateless REST architectures that are commonly used in mobile and World-Wide Web hypermedia systems with the back channel handling the complexity of trust elevation and fine-grained dynamic access control.
“Jericho is committed to enabling the power, flexibility, and convenience of mobility and Web 2.0 APIs and services with the security and privacy protection we all need and want,” said Brynn Mow, CEO. “Our newly patented trust elevation technology will enable cutting-edge approaches for better security and privacy in online activities.”
Source: Jericho Systems Corp.