US Patent 9225711 Transferring an authenticated session between security contexts

Methods and apparatuses are described for transferring an authenticated session between security contexts. A mobile device establishes a first authenticated session between a native application and a server computing device via a communications network and requests transfer of the first authenticated session to a browser application. The mobile device receives session transfer parameters from a first Security Assertion Markup Language (SAML) authentication system associated with the first authenticated session after transfer is requested, the session transfer parameters including a web address and a SAML security identifier. The mobile device directs the browser application to a second SAML authentication system using the session transfer parameters to initialize the browser application and validates the SAML identifier at the SAML authentication system to generate an authentication credential. The mobile device authenticates the browser application to the server computing device using the authentication credential and redirects the browser application to the server computing device.