Information security – Access control or authentication – Network
Reexamination Certificate
2007-07-10
2007-07-10
Zand, Kambiz (Department: 2134)
Information security
Access control or authentication
Network
C726S021000
Reexamination Certificate
active
10151747
ABSTRACT:
A method and system is provided to integrate the Kerberos security mechanism into the message flow of the signaling operation under the Session Initiation Protocol to allow a SIP client and a SIP proxy to authenticate each other. When the SIP proxy receives an request message, such an INVITE request, from the SIP client, it responds with a challenge message indicating that authentication based on Kerberos is required. In response, the SIP client sends a second request message with a proxy authorization header containing authentication data, including a Kerberos server ticket for the Proxy, to allow the proxy to authenticate the client's user.
REFERENCES:
patent: 6173173 (2001-01-01), Dean et al.
patent: 6865681 (2005-03-01), Nuutinen
patent: 6870848 (2005-03-01), Prokop
patent: 2002/0078153 (2002-06-01), Chung et al.
patent: 2002/0120760 (2002-08-01), Kimchi et al.
patent: 2002/0141358 (2002-10-01), Requena
patent: 2002/0150226 (2002-10-01), Gallant et al.
patent: 2002/0157019 (2002-10-01), Kadyk et al.
patent: 2003/0009463 (2003-01-01), Gallant
patent: 2003/0012382 (2003-01-01), Ferchichi et al.
patent: 2003/0081791 (2003-05-01), Erickson et al.
patent: 2003/0217164 (2003-11-01), Buch
U.S. Appl. No. 60/276,923, filed Mar. 2001, Gallant.
Song, D., “Kerberos on the Web: Protocoll Example,” Internet Archive, Online!, May 11, 2001 (2 pages) http://web.archive.org/web/20010511171619.
Tschalar, R., et al., “Kerberos Authentication and Authentication (proxy ticket forwarding),” Apache Development Mailing List, Online!, Nov. 6, 1999 (3 pages) http://hypermail.linklord.com
ew-httpd/old/1999/Nov/0106.html.
Handley, M. et al., “RFC 2543 SIP: Session Initiation Protocol,” Network Working Group Request for Comments, Mar. 1999 (153 pages).
Nokia: UMTS AKA in SIP, Aug.4, 2000 (3 pages).
Byerly, B.J. et al., “SIP Authentication Using CHAP-Password,” IETF Internet Draft, Oct. 2000 (12 pages).
Rosenberg, J., H. Schulzrinne, G. Camarillo, A. Johnston, J. Peterson, R. Sparks, M. Handley and E. Schooler, “SIP: Session Initiation Protocol - DRAFT RFC 2543,” Internet Engineering Task Force, draft-ietf-sip-rfc2543bis—09.txt, Feb. 27, 2002, 243 pages.
“How PGP works,” Chapter 1 of Introduction to Cryptography in the PGP 6.5.1 documentation, copyright 1999 Network Associates, http://www.pgpi.org/doc/pgpintro/, 23 pages last accessed Nov. 18, 2005.
La Tour, Irenee Dupre, “Chapters 7-9 of A Secure Authentication Infrastructure for Mobile Communication Services over the Internet,” University of Ottawa Thesis, Mar. 2001, 71 pages.
Bobde Nikhil P.
Demirtjis Ann
Han Mu
Microsoft Corporation
Perkins Coie LLP
Wyszynski Aubrey H.
Zand Kambiz
LandOfFree
Method and system for integrating security mechanisms into... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for integrating security mechanisms into..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for integrating security mechanisms into... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3799639