Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Reexamination Certificate
2005-05-10
2005-05-10
Barron, Gilberto (Department: 2132)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
C713S152000, C713S155000, C713S156000, C713S175000
Reexamination Certificate
active
06892307
ABSTRACT:
A security architecture has been developed in which a single sign-on is provided for multiple information resources. Rather than specifying a single authentication scheme for all information resources, the security architecture associates trust-level requirements with information resources. Authentication schemes (e.g., those based on passwords, certificates, biometric techniques, smart cards, etc.) are associated with trust levels and a log-on service obtains credentials for an entity commensurate with the trust-level requirement(s) of an information resource (or information resources) to be accessed. Once credentials have been obtained for an entity and the entity has been authenticated to a given trust level, access is granted, without the need for further credentials and authentication, to information resources for which the authenticated trust level is sufficient.
REFERENCES:
patent: 5610981 (1997-03-01), Mooney et al.
patent: 5774551 (1998-06-01), Wu et al.
patent: 5826014 (1998-10-01), Coley et al.
patent: 5875296 (1999-02-01), Shi et al.
patent: 5944824 (1999-08-01), He
patent: 6041357 (2000-03-01), Kunzelman et al.
patent: 6161139 (2000-12-01), Win et al.
patent: 6226752 (2001-05-01), Gupta et al.
patent: 6275941 (2001-08-01), Saito et al.
patent: 6308273 (2001-10-01), Goertzel et al.
patent: 6408336 (2002-06-01), Schneider et al.
patent: 6691232 (2004-02-01), Wood et al.
patent: 0 465 016 (1992-01-01), None
patent: 0 849 680 (1998-06-01), None
patent: 9642041 (1996-12-01), None
patent: 9825373 (1998-06-01), None
patent: 9857247 (1998-12-01), None
“X/Open Single Sign-On Service (XSSO)—Pluggable Authentication Modules,”Open Group Preliminary Specification,P702 ISBN 1-85912-144-6, Jun. 1997, 140 pages.
“Kerberos: An Authentication Service for Computer Networks,” USC/ISI Technical Report number ISI/RS-94-399, 1994,IEEE Communications Magazine,Vol. 32, No. 9, pp. 33-38, Sep. 1994, http:/
ii.isi.edu/publications/kerberos-neuman-tso.html, 12 pages.
“A White Paper on Authentication and Access Management Issues in Cross-organizational Use of Networked Information Resources,” Clifford Lynch, editor,Coalition for Networked Information,Apr. 14, 1998, http://www.cni.org/projects/authentication/authentication-wp.html, 28 pages.
“AutoSecure SSO, The single-point information security solution for heterogeneous environments,”PLATINUM Technology Brochure,downloaded May 3, 1999, http://www.platinum.com/products/brochure/sm/autosso/ssobroch.htm, 5 pages.
D. Davis and R. Swick, “Workstation Services and Kerberos Authentication at Project Athena,”MIT Laboratory for Computer Science Technical Memorandum #424,Mar. 17, 1989, 12 pages.
Don Davis, “Kerberos Plus RSA for World Wide Web Security, ”Proc. 1st USENIX Workshop on Electronic Commerce,NYC, Aug. 3, 1995, 4 pages.
D. Geer and D. Davis, “Token-Mediated Certification and Electronic Commerce,”Proc. 2nd USENIX Workshop on Electronic Commerce,Oakland, CA, Nov. 1996, 11 pages.
“Enterprise Single Sign-On, Definitions and Approaches,”PLATINUM Technology White Paper,downloaded May 3, 1999, http://www.platinum.com/products/wp/wp_sso.htm, 7 pages.
“How Does PATROL CGI Server Work?” BMC Software, Houston, TX, downloaded Apr. 20, 1999, http://www.bmc.com.cgiserver/info/how_itworks.html, 3 pages.
“How to Develop a Network Security Policy, An Overview of Internetworking Site Security,”Sun Microsystems White Paper,Palo Alto, CA, downloaded Apr. 20, 1999, http://www.sun.com/security/sec.policy.wp.html, 23 pages.
“Kerberos and 3rd Party Authetication,” Version 2.1-Mar. 26, 1994,SecurityDynamics White Paper,Bedford, MA, http://www.securitydynamics.com/products/whitepapers/kerberos.html, 8 pages.
Mastering Security on the Internet for Competitive Advantage,Sun Microsystems, Palo Alto, CA, Aug. 1997, 47 pages.
Ari Medvinsky et al., “Public Key Utilizing Tickets for Application Servers (PKTAPP), ”Cybersafe Corporation INTERNET-DRAFT,Common Authetication Technology Working Group, Issaquah, WA, Mar. 1998, http://www.ietf.org/internet-drafts/draft-ietf-cat-pktapp-01.txt, 6 pages.
“Optimizing Internet/Intranet Services with PATROL CGI Server,”BMC Software White Paper,Houston, TX, downloaded Apr. 20, 1999, http://www.bmc.com/cgiserver/info/cgawp.html, 15 pages.
“PLATINUM AutoSecure Single Sign On (AutoSecure SSO),”PLATINUM Technology Fact Sheet,downloaded May 3, 1999, http:www.platinum.com/products/factsht/assso_fs.htm, 3 pages.
“Products Application Server,”Art Technology Group Product Overview Developer Workbench,downloaded Apr. 21, 1999, http://www.atg.com/products/das/das_main.html?didframe=true, 4 pages.
“TrustBrokerSMSecurity Server, The Only Multi-Mechanism Authentication Server,” Cybersafe Corporation, Issaquah, WA, 1999, 2 pages.
Hubbard, S. D. et al., “Firewalling the Net” BT Technology Journal, BT Laboratories, GB, vol. 15, No. 2, Apr. 1997, XP000703560, ISSN: 1358-3948, pp. 94-106.
Doty, Ted, “A Firewall Overview”, ConneXions, vol. 9, No. 7, Jul. 1, 1995, XP000564023, ISSN: 0894-5926, pp. 20-23.
W. Stallings, “Authentication Applications”,Cryptography and Network Security,Chapter 11, pp. 323-340, 1998 Prentice-Hall, US XP002161792.
R. Ganesan, “Yaksha: Augmenting Kerberos with Public Key Cryptography”,Proceedings of the Symposium on Network and Distributed System Security,pp. 132-143, Feb. 16, 1995, IEEE, XP002148503.
W. Stallings, “IPV6: The New Internet Protocol”, IEEECommunications Magazine, IEEE Service Center, Piscataway, N.J., US, vol. 34, No. 7, Jul. 1, 1996, pp. 96-108 XP000623747, ISSN: 0163-6804.
Ferris Chris
Norton Derk
Weschler Paul
Wilson Yvonne
Wood David L.
Barron Gilberto
Stulberger Cas
Sun Microsystems Inc.
Zagorin O'Brien Graham LLP
LandOfFree
Single sign-on framework with trust-level mapping to... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Single sign-on framework with trust-level mapping to..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Single sign-on framework with trust-level mapping to... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3438134