	US 11,669,805 B2
	Single sign-on through customer authentication systems
Dinesh Sundaram, Plano, TX (US); and Jacob Creech, McKinney, TX (US)
Assigned to Capital One Services, LLC, McLean, VA (US)
Filed by Capital One Services, LLC, McLean, VA (US)
Filed on May 22, 2020, as Appl. No. 16/881,896.
Claims priority of provisional application 62/852,202, filed on May 23, 2019.
Prior Publication US 2020/0374278 A1, Nov. 26, 2020
Int. Cl. H04L 9/40 (2022.01); G06F 9/54 (2006.01); G06F 21/60 (2013.01); G06F 9/445 (2018.01); G06F 16/25 (2019.01); G06F 21/62 (2013.01); H04L 9/08 (2006.01); G06Q 10/10 (2023.01); G06Q 30/0201 (2023.01); G06F 16/955 (2019.01); G06N 20/00 (2019.01); G06N 3/02 (2006.01); G06Q 20/40 (2012.01); G06Q 30/018 (2023.01); G06Q 30/0601 (2023.01); G06F 40/103 (2020.01); G06F 40/174 (2020.01); G06F 40/18 (2020.01); G06Q 40/02 (2023.01); G06F 21/53 (2013.01); G06N 5/025 (2023.01); G06Q 20/38 (2012.01); H04L 67/01 (2022.01); G06F 18/24 (2023.01); G06Q 40/03 (2023.01); G06F 8/65 (2018.01); G06F 8/71 (2018.01); G06K 7/14 (2006.01); G06Q 50/26 (2012.01)

CPC G06Q 10/10 (2013.01) [G06F 9/44505 (2013.01); G06F 9/54 (2013.01); G06F 9/547 (2013.01); G06F 16/258 (2019.01); G06F 16/9558 (2019.01); G06F 16/9562 (2019.01); G06F 18/24 (2023.01); G06F 21/53 (2013.01); G06F 21/602 (2013.01); G06F 21/604 (2013.01); G06F 21/6227 (2013.01); G06F 21/6245 (2013.01); G06F 40/103 (2020.01); G06F 40/174 (2020.01); G06F 40/18 (2020.01); G06N 3/02 (2013.01); G06N 5/025 (2013.01); G06N 20/00 (2019.01); G06Q 20/382 (2013.01); G06Q 20/4014 (2013.01); G06Q 30/0185 (2013.01); G06Q 30/0206 (2013.01); G06Q 30/0601 (2013.01); G06Q 30/0613 (2013.01); G06Q 30/0619 (2013.01); G06Q 30/0637 (2013.01); G06Q 30/0643 (2013.01); G06Q 40/02 (2013.01); G06Q 40/03 (2023.01); H04L 9/0825 (2013.01); H04L 63/0435 (2013.01); H04L 63/08 (2013.01); H04L 63/0815 (2013.01); H04L 63/102 (2013.01); H04L 63/123 (2013.01); H04L 63/166 (2013.01); H04L 63/168 (2013.01); H04L 67/01 (2022.05); G06F 8/65 (2013.01); G06F 8/71 (2013.01); G06F 2221/2107 (2013.01); G06K 7/1417 (2013.01); G06Q 50/265 (2013.01); G06Q 2220/00 (2013.01); H04L 9/0822 (2013.01)]

20 Claims

1. A method of authentication, the method comprising:

receiving by a service provider, based on an attempt by a user device to access a resource, an authentication request from the user device that indicates an identity provider and an entity associated with the user device;

redirecting the authentication request to the identity provider;

receiving from the identity provider, based on the authentication request, an authentication token and user information associated with the user device;

validating the authentication token against internal configuration information of the service provider,

wherein the internal configuration information includes information corresponding to information included in at least one of the authentication token or the user information, and information absent from the authentication token and the user information;

generating, based on the authentication token, the user information, and the internal configuration information, an identity ID; and

enabling, based on the identity ID, the user device to access the resource.