Patents by Inventor Caleb G. Baker
Caleb G. Baker has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10873583Abstract: Methods, systems, and apparatuses in a computing device enable user access to a resource. The method includes receiving, from a user, a request for access to a resource; accessing an authentication flow for granting access to the resource; obtaining first claims for a user from a first claims provider in the authentication flow; determining a second claims provider in the authentication flow, the second claims provider having a trust relationship with the claims facilitator; directing the user to the second claims provider; receiving second claims for the user from the second claims provider; and enabling the user to access the resource in response to at least the received first and second claims.Type: GrantFiled: January 9, 2018Date of Patent: December 22, 2020Assignee: Microsoft Technology Licensing, LLCInventors: Alexander T. Weinert, Caleb G. Baker, Pui-Yin Winfred Wong, Carlos Adrian Lopez Castro, Yordan I. Rouskov, Laurentiu B. Cristofor, Michael V. McLaughlin
-
Patent number: 10574641Abstract: Described is a technology by which a plug-in (e.g., an ActiveX® control) instantiated by a web browser calls functions of a credential service to use a set of credential data (e.g., a card file) for logging into a website. If the credential service determines that a previously used card file for the website exists, a representation of that card file is displayed in the browser, and the data of that card file is used to obtain a token for logging in the user. If not found, an icon is presented instead, by which the user can select a user interface that allows selection of another card file that meets that meet the website's requirements.Type: GrantFiled: April 13, 2018Date of Patent: February 25, 2020Assignee: Microsoft Technology Licensing, LLCInventors: John Deurbrouck, Caleb G. Baker, Danhua Zhu, Colin Leslie Dellow, Roberto A. Franco
-
Publication number: 20190089710Abstract: Methods, systems, and apparatuses in a computing device enable user access to a resource. The method includes receiving, from a user, a request for access to a resource; accessing an authentication flow for granting access to the resource; obtaining first claims for a user from a first claims provider in the authentication flow; determining a second claims provider in the authentication flow, the second claims provider having a trust relationship with the claims facilitator; directing the user to the second claims provider; receiving second claims for the user from the second claims provider; and enabling the user to access the resource in response to at least the received first and second claims.Type: ApplicationFiled: January 9, 2018Publication date: March 21, 2019Inventors: Alexander T. Weinert, Caleb G. Baker, Pui-Yin Winfred Wong, Carlos Adrian Lopez Castro, Yordan I. Rouskov, Laurentiu B. Cristofor, Michael V. McLaughlin
-
Publication number: 20180234406Abstract: Described is a technology by which a plug-in (e.g., an ActiveX® control) instantiated by a web browser calls functions of a credential service to use a set of credential data (e.g., a card file) for logging into a website. If the credential service determines that a previously used card file for the website exists, a representation of that card file is displayed in the browser, and the data of that card file is used to obtain a token for logging in the user. If not found, an icon is presented instead, by which the user can select a user interface that allows selection of another card file that meets that meet the website's requirements.Type: ApplicationFiled: April 13, 2018Publication date: August 16, 2018Applicant: Microsoft Technology Licensing, LLCInventors: John Deurbrouck, Caleb G. Baker, Danhua Zhu, Colin Leslie Dellow, Roberto A. Franco
-
Patent number: 9954838Abstract: Described is a technology by which a plug-in (e.g., an ActiveX® control) instantiated by a web browser calls functions of a credential service to use a set of credential data (e.g., a card file) for logging into a website. If the credential service determines that a previously used card file for the website exists, a representation of that card file is displayed in the browser, and the data of that card file is used to obtain a token for logging in the user. If not found, an icon is presented instead, by which the user can select a user interface that allows selection of another card file that meets that meet the website's requirements.Type: GrantFiled: August 3, 2015Date of Patent: April 24, 2018Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: John Deurbrouck, Caleb G. Baker, Danhua Zhu, Colin Leslie Dellow, Roberto A. Franco
-
Publication number: 20150373005Abstract: Described is a technology by which a plug-in (e.g., an ActiveX® control) instantiated by a web browser calls functions of a credential service to use a set of credential data (e.g., a card file) for logging into a website. If the credential service determines that a previously used card file for the website exists, a representation of that card file is displayed in the browser, and the data of that card file is used to obtain a token for logging in the user. If not found, an icon is presented instead, by which the user can select a user interface that allows selection of another card file that meets that meet the website's requirements.Type: ApplicationFiled: August 3, 2015Publication date: December 24, 2015Applicant: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: John Deurbrouck, Caleb G. Baker, Danhua Zhu, Colin Leslie Dellow, Roberto A. Franco
-
Patent number: 9130926Abstract: A computer-implemented method for authorizing access by a client application to a resource of a user maintained on a first server computing system, the client application being implemented on a second server computing system, includes receiving a delegation message from the first server computer system to initiate authorization of the access by the client application, issuing an authorization message to the first server computer system, the authorization message comprising an authorization data package for redemption by the client application, the authorization data package comprising first through fourth integral delegation data indicative of the user, the client application, the resource, and a timestamp, respectively, receiving a redemption message from the second server computing system comprising the authorization data package, conducting an analysis of the authorization data package, and sending an access token to the second server computing system based on the analysis.Type: GrantFiled: December 27, 2012Date of Patent: September 8, 2015Assignee: Microsoft Technology Licensing, LLCInventors: Vijayavani Nori, Hervey O. Wilson, Caleb G. Baker, Gregory C. Johnson, Murli Dharan Satagopan, Igor Sakhnov, Samantha Kwok
-
Patent number: 9124566Abstract: Described is a technology by which a plug-in (e.g., an ActiveX® control) instantiated by a web browser calls functions of a credential service to use a set of credential data (e.g., a card file) for logging into a website. If the credential service determines that a previously used card file for the website exists, a representation of that card file is displayed in the browser, and the data of that card file is used to obtain a token for logging in the user. If not found, an icon is presented instead, by which the user can select a user interface that allows selection of another card file that meets that meet the website's requirements.Type: GrantFiled: June 23, 2009Date of Patent: September 1, 2015Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: John Deurbrouck, Caleb G. Baker, Danhua Zhu, Colin Leslie Dellow, Roberto A. Franco
-
Publication number: 20140189797Abstract: A computer-implemented method for authorizing access by a client application to a resource of a user maintained on a first server computing system, the client application being implemented on a second server computing system, includes receiving a delegation message from the first server computer system to initiate authorization of the access by the client application, issuing an authorization message to the first server computer system, the authorization message comprising an authorization data package for redemption by the client application, the authorization data package comprising first through fourth integral delegation data indicative of the user, the client application, the resource, and a timestamp, respectively, receiving a redemption message from the second server computing system comprising the authorization data package, conducting an analysis of the authorization data package, and sending an access token to the second server computing system based on the analysis.Type: ApplicationFiled: December 27, 2012Publication date: July 3, 2014Applicant: MICROSOFT CORPORATIONInventors: Vijayavani Nori, Hervey O. Wilson, Caleb G. Baker, Gregory C. Johnson, Murli Dharan Satagopan, Igor Sakhnov, Samantha Kwok
-
Publication number: 20120084244Abstract: A pipeline that includes at least an initialization stage, a processing stage, and a publication stage. The initialization stage acquires a set of globally sourced claims that can be used by any issuance statement. The processing stage manipulates a set of one or more user task specific claims that are derived from the set of one or more globally source claims. The set of one or more user task specific claims are manipulated by generating a set of one or more temporary claims. The processing stage generates the set of one or more temporary claims by applying issuance statements to the set of one or more user task specific claims. A publication stage then issues the set of one or more temporary claim in an issuance format.Type: ApplicationFiled: September 30, 2010Publication date: April 5, 2012Applicant: MICROSOFT CORPORATIONInventors: Caleb G. Baker, Seng Lin Shee, Jan Lyk Choo, Marcelo A. Mas, Krishnanand K. Shenoy, Samuel R. Devasahayam
-
Publication number: 20100325715Abstract: Described is a technology by which a plug-in (e.g., an ActiveX® control) instantiated by a web browser calls functions of a credential service to use a set of credential data (e.g., a card file) for logging into a website. If the credential service determines that a previously used card file for the website exists, a representation of that card file is displayed in the browser, and the data of that card file is used to obtain a token for logging in the user. If not found, an icon is presented instead, by which the user can select a user interface that allows selection of another card file that meets that meet the website's requirements.Type: ApplicationFiled: June 23, 2009Publication date: December 23, 2010Applicant: Microsoft CorporationInventors: John Deurbrouck, Caleb G. Baker, Danhua Zhu, Colin Leslie Dellow, Roberto A. Franco