| CPC H04L 63/08 (2013.01) [H04L 63/20 (2013.01)] | 20 Claims |
|
1. A method for identity authentication, comprising:
in response to receiving an identity authentication request from a user at an edge server, searching an identity authentication database of the edge server for identity authentication information associated with the user;
in response to the identity authentication information associated with the user not being found in the identity authentication database, sending the identity authentication request to a cloud server, the cloud server comprising an agent for interfacing with a plurality of identity authentication providers including at least a first identity authentication provider and a second identity authentication provider different than the first identity authentication provider, the first and second identity authentication providers being configured to provide the agent of the cloud server with respective different types of identity authentication information associated with the user, via respective first and second different interfaces with the agent of the cloud server, wherein in response to the identity authentication information associated with the user being found in the identity authentication database, the user is authenticated by the edge server using the identity authentication information found in the identity authentication database without sending the identity authentication request to the cloud server and without requiring the edge server to access any of the first and second identity authentication providers;
in response to sending the identity authentication request to the cloud server, receiving the identity authentication information associated with the user from the cloud server as obtained by the agent of the cloud server via at least one of the first and second different interfaces;
storing the received identity authentication information to the identity authentication database;
using the received identity authentication information to authenticate the user; and
in response to movement of the user from a range of one edge serviced by the edge server to a range of another edge serviced by another edge server, triggering transfer of at least a portion of the identity authentication information of the identity authentication database to another identity authentication database of the other edge server, such that the user can be authenticated by the other edge server without sending an additional identity authentication request to the cloud server and without requiring the other edge server to access any of the first and second identity authentication providers.
|