Abstract: An approach is provided for providing authentication session sharing between browsers and run time environments in network communication. An interface receives an authentication context associated with a first service. The interface causes, at least in part, storage of the authentication context in a first cache associated with the interface. The interface causes, at least in part, population of the authentication context to a second cache associated with a second service. The second cache is not directly linked to the interface. The authentication context in the second cache authenticates access to the second service.

Abstract: An approach is provided for providing separation of authentication protocols and/or authentication contexts for client-server and server-server communication in network communication. A proxy server receives a request to initiate a service session. The request includes a first authentication context. The proxy server request verification of the first authentication context from an authentication server and validates the first authentication context based, at least in part, on the verification. The proxy server implements a second authentication context based, at least in part, on the verification of the first authentication context to initiate the service session.

Abstract: An approach is provided for providing authentication session sharing between browsers and run time environments in network communication. An interface receives an authentication context associated with a first service. The interface causes, at least in part, storage of the authentication context in a first cache associated with the interface. The interface causes, at least in part, population of the authentication context to a second cache associated with a second service. The second cache is not directly linked to the interface. The authentication context in the second cache authenticates access to the second service.

Abstract: An approach is provided for providing separation of authentication protocols and/or authentication contexts for client-server and server-server communication in network communication. A proxy server receives a request to initiate a service session. The request includes a first authentication context. The proxy server request verification of the first authentication context from an authentication server and validates the first authentication context based, at least in part, on the verification. The proxy server implements a second authentication context based, at least in part, on the verification of the first authentication context to initiate the service session.

Abstract: An approach is provided for providing separation of authentication protocols and/or authentication contexts for client-server and server-server communication in network communication. A proxy server receives a request to initiate a service session. The request includes a first authentication context. The proxy server request verification of the first authentication context from an authentication server and validates the first authentication context based, at least in part, on the verification. The proxy server implements a second authentication context based, at least in part, on the verification of the first authentication context to initiate the service session.

Abstract: Techniques for an ID federation gateway include determining whether a user associated with a request for a particular network resource is to be identified by the provider of the particular service or by a different party. The service also comprises causing the different party to provide identification data that indicates an identity for the user, if the user is to be identified by the different party. The method further comprises causing user credentials data, based on the identification data, to be sent to an authentication process of the provider for a set of one or more network resources that includes the particular network resource requested by the user, if the data indicates that the user is successfully identified.

Abstract: An approach is provided for providing separation of authentication protocols and/or authentication contexts for client-server and server-server communication in network communication. A proxy server receives a request to initiate a service session. The request includes a first authentication context. The proxy server request verification of the first authentication context from an authentication server and validates the first authentication context based, at least in part, on the verification. The proxy server implements a second authentication context based, at least in part, on the verification of the first authentication context to initiate the service session.

Abstract: An approach is provided for providing authentication session sharing between browsers and run time environments in network communication. An interface receives an authentication context associated with a first service. The interface causes, at least in part, storage of the authentication context in a first cache associated with the interface. The interface causes, at least in part, population of the authentication context to a second cache associated with a second service. The second cache is not directly linked to the interface. The authentication context in the second cache authenticates access to the second service.

Abstract: A near field communication (NFC) device is capable of operating as an NFC initiator device or an NFC target device for exchanging request and response messages with another similar device in order to determine a secondary transport mechanism suitable for communications between the two devices with bandwidth greater than available for NFC and for determining appropriate roles for both devices without excessive communication. Such determination of roles can be determined by rule or by exchanging information indicating a choice of roles.

Abstract: An apparatus for providing service invitations may include a processor. The processor may be configured to receive user contacts associated with a user. The user contacts may be received from a server, a mobile terminal, or the like. The user contacts may also be received in response to an invitation associated with the user. The processor may also be configured to compare user contacts with a service member database to determine a member status associated with each user contact. The processor may be further configured to provide for invitations via the user contacts based on the associated member statuses. Associated methods and computer program products may also be provided.

Abstract: A near field communication (NFC) device is capable of operating as an NFC initiator device or an NFC target device for exchanging request and response messages with another similar device in order to determine a secondary transport mechanism suitable for communications between the two devices with bandwidth greater than available for NFC and for determining appropriate roles for both devices without excessive communication. Such determination of roles can be determined by rule or by exchanging information indicating a choice of roles.

Abstract: A near field communication (NFC) device is capable of operating as an NFC initiator device or an NFC target device for exchanging request and response messages with another similar device in order to determine a secondary transport mechanism suitable for communications between the two devices with bandwidth greater than available for NFC and for determining appropriate roles for both devices without excessive communication. Such determination of roles can be determined by rule or by exchanging information indicating a choice of roles.

Abstract: A near field communication (NFC) device is capable of operating as an NFC initiator device or an NFC target device for exchanging request and response messages with another similar device in order to determine a secondary transport mechanism suitable for communications between the two devices with bandwidth greater than available for NFC and for determining appropriate roles for both devices without excessive communication. Such determination of roles can be determined by rule or by exchanging information indicating a choice of roles.

Abstract: A method for issuing an electronic identity based on previously certified electronic identity. This is accomplished by providing a method to use a previously certified identity to create another representational form for the same identity. This way the holder of a certificate can extend his or her already verified identity for other uses. The previously certified identity can be for instance so called mobile identity which is associated to a person's mobile terminal such as mobile phone. The person can show to certificate be his/her own by using the digital signature feature of the mobile terminal.