| CPC G06F 21/45 (2013.01) [G06F 21/31 (2013.01); G06F 21/46 (2013.01); G06Q 10/00 (2013.01); G06Q 50/265 (2013.01); H04L 63/0421 (2013.01); H04L 63/08 (2013.01); H04L 63/0884 (2013.01); H04L 63/10 (2013.01); H04L 67/60 (2022.05); G06F 2221/2117 (2013.01)] | 20 Claims |
|
20. A system comprising:
at least one processor;
memory storing a plurality of credentials, each of the plurality of credentials being associated with a globally unique identifier (GUID) corresponding to a person, and each of the plurality of credentials being stored with a respective level of assurance; and
memory storing instructions that, when executed by the at least one processor, causes the system to perform operations including:
receiving a credential request from an application, the credential request including an identity assertion and a requested level of assurance,
determining a set of credentials from the plurality of credentials, the set of credentials including credentials with a respective level of assurance that is equal to or higher than the requested level of assurance and having a GUID matching the identity assertion,
providing a user interface in response to the credential request that displays the set of credentials so that each credential in the set of credentials is selectable by a user, and
responsive to selection of a credential from the set of credentials, using the credential in an authentication process before allowing access to the application, wherein the authentication process is associated with a credential service agent that is independent of the application.
|