Abstract: Methods and apparatuses are described for authenticating client applications using an identity fabric blockchain. A server receives a first registration request from a first client application. The server generates a first decentralized identifier corresponding to the first client application and stores the first identifier in an identity fabric blockchain. The server receives a second registration request from a second client application, generates a second decentralized identifier corresponding to the second client application, and stores the second identifier in the blockchain. The server receives a first authentication request from a first resource and authenticates the first client application based on the first authentication request and the first decentralized identifier stored in the blockchain.

Abstract: Methods and apparatuses are described for authenticating client applications using an identity fabric blockchain. A server receives a first registration request from a first client application. The server generates a first decentralized identifier corresponding to the first client application and stores the first identifier in an identity fabric blockchain. The server receives a second registration request from a second client application, generates a second decentralized identifier corresponding to the second client application, and stores the second identifier in the blockchain. The server receives a first authentication request from a first resource and authenticates the first client application based on the first authentication request and the first decentralized identifier stored in the blockchain.

Abstract: A method of processing data by one or more data processing systems for classification of the processed data into one or more predefined classifications, the method comprising: receiving by one or more data processing systems social profile data; binding by the one or more data processing systems based on the input social profile data, values of one or more attributes included in the social profile data to one or more parameters of a classifier executing on the one or more data processing systems; classifying data representing the user into one or more predefined classifications; for one of the predefined classifications into which the data representing the user is classified, identifying by the one or more data processing systems a candidate action included in the predefined classification and unassociated with the user; and transmitting an alert to notify the user of the candidate action.

Abstract: A method of processing data by one or more data processing systems for classification of the processed data into one or more predefined classifications, the method comprising: receiving by one or more data processing systems social profile data; binding by the one or more data processing systems based on the input social profile data, values of one or more attributes included in the social profile data to one or more parameters of a classifier executing on the one or more data processing systems; classifying data representing the user into one or more predefined classifications; for one of the predefined classifications into which the data representing the user is classified, identifying by the one or more data processing systems a candidate action included in the predefined classification and unassociated with the user; and transmitting an alert to notify the user of the candidate action.

Abstract: Method and systems for validating a client user in a secured network are provided. Upon authentication, a user is supplied a login cookie that includes verification data. When requesting access to a secured resource, the verification data is compared to the data in the request to confirm that the requestor is a legitimate user and not a user who has stolen the login cookie.

Abstract: Method and systems for validating a client user in a secured network are provided. Upon authentication, a user is supplied a login cookie that includes verification data. When requesting access to a secured resource, the verification data is compared to the data in the request to confirm that the requestor is a legitimate user and not a user who has stolen the login cookie.

Abstract: Methods and apparatuses are described for transferring an authenticated session between security contexts. A mobile device establishes a first authenticated session between a native application and a server computing device via a communications network and requests transfer of the first authenticated session to a browser application. The mobile device receives session transfer parameters from a first Security Assertion Markup Language (SAML) authentication system associated with the first authenticated session after transfer is requested, the session transfer parameters including a web address and a SAML security identifier. The mobile device directs the browser application to a second SAML authentication system using the session transfer parameters to initialize the browser application and validates the SAML identifier at the SAML authentication system to generate an authentication credential.

Abstract: Method and systems for validating a client user in a secured network are provided. Upon authentication, a user is supplied a login cookie that includes verification data. When requesting access to a secured resource, the verification data is compared to the data in the request to confirm that the requestor is a legitimate user and not a user who has stolen the login cookie.