×

Asymmetric session credentials

  • US 10,680,827 B2
  • Filed: 01/19/2018
  • Issued: 06/09/2020
  • Est. Priority Date: 12/03/2015
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method, comprising:

  • obtaining a first request to establish a session, the first request cryptographically protected by a first key;

    generating, at least in part as a result of cryptographically verifying the first request using the first key, credential data comprising a second key usable to authenticate messages within the session, wherein the second key is associated with a shorter duration than duration of the first key;

    encrypting the credential data with a first asymmetric key of a key pair to generate encrypted credential data;

    providing, in response to the first request, the encrypted credential dataand the second key, wherein decryption of the encrypted credential data using a second asymmetric key of the key pair produces an extracted second key from the encrypted credential data;

    authenticating a second request using the extracted second key, wherein the second request, which includes the encrypted credential data, is signed using the second key; and

    fulfilling the second request by providing access to a computer resource.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×