Information security – Access control or authentication – Network
Reexamination Certificate
2006-08-08
2006-08-08
Arani, Taghi T. (Department: 2131)
Information security
Access control or authentication
Network
C713S150000, C726S002000, C726S004000, C726S021000, C709S201000, C709S219000, C709S229000, C370S401000, C370S312000, C370S332000, C380S286000
Reexamination Certificate
active
07089585
ABSTRACT:
The present invention includes a client computer, a first server computer, and a second server computer. The first server provides an authorization ticket containing a time stamp to the client computer when the client computer is authorized to access the first server. An elapsed time counter is started at the client computer when access is provided to the first server. When a request is received at the client computer to access the second server, the client computer determines the session length based upon the elapsed time counter. The client computer calculates a hash value for the authorization ticket, the session length, and a secret shared with the second server computer. The client computer transmits a login request to the second server including the authorization ticket, the session length, and the hash. The second server decrypts the authorization ticket and retrieves a copy of the shared secret. The second server executes a hash function on the authorization ticket, the session length, and the shared secret. The second server then compares the computed hash to the hash value received from the second client application. If the two hash values are identical, the second server retrieves the time stamp from the authorization ticket and adds the session length to the time stamp. The second server then compares the resulting value to the current time. If the resulting value and the current time are within a preset threshold value, the client computer is provided.
REFERENCES:
patent: 5455953 (1995-10-01), Russell
patent: 5481539 (1996-01-01), Hershey et al.
patent: 5721777 (1998-02-01), Blaze
patent: 5999711 (1999-12-01), Misra et al.
patent: 6005853 (1999-12-01), Wang et al.
patent: 6041357 (2000-03-01), Kunzelman et al.
patent: 6088451 (2000-07-01), He et al.
patent: 6101486 (2000-08-01), Roberts et al.
patent: 6236971 (2001-05-01), Stefik et al.
patent: 6240512 (2001-05-01), Fang et al.
patent: 6263432 (2001-07-01), Sasmazel et al.
patent: 6401223 (2002-06-01), DePenning
patent: 6427209 (2002-07-01), Brezak et al.
patent: 6510464 (2003-01-01), Grantges et al.
patent: 6678733 (2004-01-01), Brown et al.
patent: 6877095 (2005-04-01), Allen
patent: 2003/0067926 (2003-04-01), Golikeri et al.
Arani Taghi T.
Christensen O'Connor Johnson & Kindness PLLC
Microsoft Corporation
LandOfFree
Method and system for authorizing a client computer to... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for authorizing a client computer to..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for authorizing a client computer to... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3684622