Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Patent
1998-03-06
2000-12-12
Peeso, Thomas R.
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
713201, 713168, 380255, G06F 126
Patent
active
061611824
ABSTRACT:
A centralized token generating server is disclosed for limiting access to remote equipment. The token generating server provides outgoing authentication of a user, before permitting the user to leave the network environment to access remote equipment. The token generating server generates responses (tokens) for authorized users to satisfy challenges posed by remote equipment and maintains a log of all processed transactions. The token generating server provides an initial outbound access control, whenever a user desires to leave the network environment to access remote equipment, and the remote equipment performs a secondary authorization to ensure that a given user can access the given remote equipment. Each attempt by a user to obtain token-regulated access to remote equipment requires two token management sessions. During a token acquisition process, the user establishes a first session with the token generating server to obtain an access token to obtain access to a given piece of remote equipment. The initial session terminates once the token is acquired and the user accesses the remote equipment. Once the user has completed accessing the remote equipment, a second session is established between the user and the token generating server to terminate the session. An access transaction is complete when the active session is terminated and the token generating server is notified.
REFERENCES:
patent: 5636280 (1997-06-01), Kelly
patent: 5757916 (1998-05-01), MacDoran et al.
patent: 5892902 (1999-04-01), Clark
J. Kohl and C. Neuman, "The Kerberos Network Authentication Service (V%)," RFC No. 1510, downloaded from http://www.cis.ohio-state.edu/hypertext/information/rfc.html, (Sep. 1993).
N. Haller, "The S/Key One-Time Password System," RFC No. 1760, downloaded from http://www.cis.ohio-state.edu/hypertext/information/rfc.html, (Feb. 1995).
W. Simpson, PPP Challenge Handshake Authentication Protocol (CHAP), RFC. No. 1994, downloaded from http://www.cis.ohio-state.edu/hypertext/information/rfc.html, (Aug. 1996).
Security Dynamics, Inc., "Existing Strong Authentication Technologies," (date unknown).
"Digital Certificates and Strong Authentication," downloaded from http://www.sirrus.com/web.sub.-- security.sub.-- at. html (1997).
Lucent Technologies - Inc.
Peeso Thomas R.
LandOfFree
Method and apparatus for restricting outbound access to remote e does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for restricting outbound access to remote e, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for restricting outbound access to remote e will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-226771