CPC H04L 63/08 (2013.01) [H04L 9/3247 (2013.01); H04L 67/56 (2022.05)] | 20 Claims |
1. A backup authentication system to use an authentication package from a primary authentication system to authenticate a principal, the backup authentication system comprising:
a memory; and
one or more processors coupled to the memory, the one or more processors configured to:
store the authentication package from the primary authentication system in the memory,
the authentication package including an authentication artifact, which is signed with a cryptographic key by the primary authentication system and which includes one or more claims that are usable to authenticate the principal, and further including metadata associated with the authentication artifact,
the metadata including credential verification information that is usable to verify a credential of the principal,
the metadata further including a first principal identifier that identifies the principal; and
authenticate the principal by verifying the credential of the principal, which is included in a received request to authenticate the principal, using the credential verification information and further by determining that the first principal identifier, which is included in the metadata, corresponds to a second principal identifier, which identifies the principal and which is included in the request to authenticate the principal, based at least in part on the request requesting authentication of the principal.
|