Information security – Access control or authentication – Network
Reexamination Certificate
2007-12-25
2007-12-25
Moise, Emmanuel L. (Department: 2137)
Information security
Access control or authentication
Network
C726S012000, C713S168000
Reexamination Certificate
active
10022578
ABSTRACT:
A system and method for authenticating a client having a privilege server, a head end server, and a web adapter performs the steps of negotiating an authentication scheme between the server proxy and the privilege server. User information is presented to the web adapter. The user information is provided to the head end server and in turn presents the information to the web adapter. The user is validated in accordance with the authentication scheme. When the user is validated a ticket is generated for the user. The ticket is presented to the client privilege server proxy that decrypts the ticket. A token is formed from the ticket and the client user identification. The token from the client is provided to the privilege server. A packet is formed having a sequence number and session key encrypted with the ticket. The packet is provided to the head end server which in turn authenticates the user. The packet is provided to the client privilege proxy which decrypts the packet and sends the ticket and the sequence number encrypted with the session key to the data server through the web adapter. User is validated at the data server and privileges are granted thereto.
REFERENCES:
patent: 6081900 (2000-06-01), Subramaniam et al.
patent: 6198824 (2001-03-01), Shambroom
patent: 6263432 (2001-07-01), Sasmazel et al.
patent: 6324648 (2001-11-01), Grantges, Jr.
patent: 6405312 (2002-06-01), Lv
patent: 6490624 (2002-12-01), Sampson et al.
patent: 6609198 (2003-08-01), Wood et al.
patent: 6728884 (2004-04-01), Lim
patent: 7062781 (2006-06-01), Shambroom
patent: 2001/0047484 (2001-11-01), Medvinsky et al.
patent: 2002/0095507 (2002-07-01), Jerdonek
patent: 1 026 867 (2000-09-01), None
Menezes et al., “Handbook of Applied Cryptography”, 1997, pp. 15-21 and 31.
Steiner et al., “Kerberos: An Authentication Service for Open Network Systems”, Mar. 30, 1988, pp. 1-15.
Alan H. Harbitter, Daniel A. Menasce, “Performance of Public-Key-Enabled Kerberos Authentication In Large Networks”, Security and Privacy, 2001. S&P 2001. Proceedings. 2001 IEEE Symposium on May 14, 2001-May 16, 2001, Location: Oaland, CA, USA, on pp. 170-183.
Rebala Goplnath
Sinha Bhaskar
Vennelakanti Ravigopal
Brunetti Angela M.
Dickinson Wright PLLC
Moise Emmanuel L.
One Touch Systems, Inc.
Popham Jeffrey D.
LandOfFree
Method and system for authenticating a user in a web-based... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for authenticating a user in a web-based..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for authenticating a user in a web-based... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3844403