Align session security for connected systems
First Claim
1. A computer-implemented method of granting an aligned secured access to a system resource for a client system during a session having a predefined session time, the method comprising:
- receiving, from the client system, a first authentication token comprising an authorization for accessing the system resource and comprising the predefined session time, the authorization for accessing the system resource being generated by a first server, and the first authentication token originating from the first server based on an authentication between the client system and the first server, wherein the receiving is by a second server that provides access to the system resource, wherein the predefined session time comprises a preset duration of time for the session, the session to be established between the client system and the second server for accessing the system resource, and wherein a first validity time period value related to the first authentication token defines a time period during which the first authentication token is valid; and
based on receiving the first authentication token, sending, to the client system, by the second server, a second authentication token for a second validity period during which the second authentication token is valid, such that an aligned secured access is granted for the client system to the system resource, wherein a second validity time period value of the second validity period of the second authentication token for a service provided by the second server to the client system defines the time period during which the second authentication token is valid and is set equal to said predefined session time received as part of the first authentication token from the client system, thereby making the time period during which the second authentication token is valid correspond to the preset duration of time, which is indicated by the predefined session time in the first authentication token, for the session between the client system and the second server for accessing the system resource.
4 Assignments
0 Petitions
Accused Products
Abstract
Granting an aligned secured access to a resource for a client system. A first authentication token and a first validity time period value are received from a first server. The first authentication token includes an authorization for accessing the system resource and the predefined session time. The first authentication token including the predefined session time is sent from the client system to a second server. A second validity period value of a second validity period of a second authentication token for a service provided by the second server to the client system is set equal to the received predefined session time. The second authentication token for the second validity period is sent from the second server to the client system such that an aligned secured access is granted for the client system to the resource.
-
Citations
18 Claims
-
1. A computer-implemented method of granting an aligned secured access to a system resource for a client system during a session having a predefined session time, the method comprising:
-
receiving, from the client system, a first authentication token comprising an authorization for accessing the system resource and comprising the predefined session time, the authorization for accessing the system resource being generated by a first server, and the first authentication token originating from the first server based on an authentication between the client system and the first server, wherein the receiving is by a second server that provides access to the system resource, wherein the predefined session time comprises a preset duration of time for the session, the session to be established between the client system and the second server for accessing the system resource, and wherein a first validity time period value related to the first authentication token defines a time period during which the first authentication token is valid; and based on receiving the first authentication token, sending, to the client system, by the second server, a second authentication token for a second validity period during which the second authentication token is valid, such that an aligned secured access is granted for the client system to the system resource, wherein a second validity time period value of the second validity period of the second authentication token for a service provided by the second server to the client system defines the time period during which the second authentication token is valid and is set equal to said predefined session time received as part of the first authentication token from the client system, thereby making the time period during which the second authentication token is valid correspond to the preset duration of time, which is indicated by the predefined session time in the first authentication token, for the session between the client system and the second server for accessing the system resource. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer system for granting an aligned secured access to a system resource for a client system during a session having a predefined session time, the computer system comprising:
-
a memory; and a processor in communication with the memory, wherein the computer system is configured to perform a method, the method comprising; receiving, from the client system, a first authentication token comprising an authorization for accessing the system resource and comprising the predefined session time, the authorization for accessing the system resource being generated by a first server, and the first authentication token originating from the first server based on an authentication between the client system and the first server, wherein the receiving is by a second server that provides access to the system resource, wherein the predefined session time comprises a preset duration of time for the session, the session to be established between the client system and the second server for accessing the system resource, and wherein a first validity time period value related to the first authentication token defines a time period during which the first authentication token is valid; and based on receiving the first authentication token, sending, to the client system, by the second server, a second authentication token for a second validity period during which the second authentication token is valid, such that an aligned secured access is granted for the client system to the system resource, wherein a second validity time period value of the second validity period of the second authentication token for a service provided by the second server to the client system defines the time period during which the second authentication token is valid and is set equal to said predefined session time received as part of the first authentication token from the client system, thereby making the time period during which the second authentication token is valid correspond to the preset duration of time, which is indicated by the predefined session time in the first authentication token, for the session between the client system and the second server for accessing the system resource. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A computer program product for granting an aligned secured access to a system resource for a client system during a session having a predefined session time, the computer program product comprising:
a non-transitory computer readable storage medium readable by a processing circuit and storing instructions for execution by the processing circuit for performing a method comprising;
receiving, from the client system, a first authentication token comprising an authorization for accessing the system resource and comprising the predefined session time, the authorization for accessing the system resource being generated by a first server, and the first authentication token originating from the first server based on an authentication between the client system and the first server, wherein the receiving is by a second server that provides access to the system resource, wherein the predefined session time comprises a preset duration of time for the session, the session to be established between the client system and the second server for accessing the system resource, and wherein a first validity time period value related to the first authentication token defines a time period during which the first authentication token is valid; and
based on receiving the first authentication token, sending, to the client system, by the second server, a second authentication token for a second validity period during which the second authentication token is valid, such that an aligned secured access is granted for the client system to the system resource, wherein a second validity time period value of the second validity period of the second authentication token for a service provided by the second server to the client system defines the time period during which the second authentication token is valid and is set equal to said predefined session time received as part of the first authentication token from the client system, thereby making the time period during which the second authentication token is valid correspond to the preset duration of time, which is indicated by the predefined session time in the first authentication token, for the session between the client system and the second server for accessing the system resource.- View Dependent Claims (16, 17, 18)
Specification