	US 12,407,514 B2
	System and method for secure access to legacy data via a single sign-on infrastructure
Ahmed Farouk Shaaban, South Barrington, IL (US); and Venkat Thandra, South Barrington, IL (US)
Filed by Ahmed Farouk Shaaban, South Barrington, IL (US); and Venkat Thandra, South Barrington, IL (US)
Filed on Oct. 11, 2023, as Appl. No. 18/379,064.
Application 18/379,064 is a continuation of application No. 17/010,017, filed on Sep. 2, 2020, granted, now 11,811,928.
Claims priority of provisional application 62/898,095, filed on Sep. 10, 2019.
Prior Publication US 2024/0039726 A1, Feb. 1, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/32 (2006.01); G06F 21/31 (2013.01); H04L 9/40 (2022.01); H04L 67/306 (2022.01)

CPC H04L 9/3213 (2013.01) [G06F 21/31 (2013.01); H04L 9/3226 (2013.01); H04L 63/0807 (2013.01); H04L 67/306 (2013.01)]

20 Claims

1. A system for securely accessing legacy data, the system comprising:

an enterprise server including at least a processor and a memory, the enterprise server configured to communicate with at least (a) a security token service configured to issue a security token, (b) a legacy access provider configured to receive and authenticate the security token, and (c) a legacy system configured to store the legacy data;

the processor being configured to execute instructions stored on the memory to cause the enterprise server to:

(i) associate a first user account with the security token upon reception of the security token by the enterprise server from the security token service;

(ii) communicate the security token from the enterprise server directly to the legacy access provider,

(iii) cause the legacy access provider to initiate communication over a network directly with the security token service to request that the security token service authenticate the security token; and

(iv) prevent access to the legacy system upon the legacy access provider not verifying authentication of the security token.