Automatic re-authentication
First Claim
Patent Images
1. A server system programmed to perform actions comprising:
- authenticating a client device for a particular server session;
sharing auto-reconnect data with the client device;
after losing communications with the client device, receiving from the client device a session verifier that is derived at least in part from the auto-reconnect data;
validating the session verifier;
upon successfully validating the session verifier, automatically re-authenticating the client device for the particular server session.
2 Assignments
0 Petitions
Accused Products
Abstract
Upon successfully authenticating a client device with a server system, the client device and server system share auto-reconnect data. Upon subsequently losing and re-establishing communications with the server system, the client sends an auto-authenticate request to the server. The auto-authenticate request includes a session verifier that is based at least in part on the shared auto-reconnect data. The server validates the session verifier. If the validation is successful, the server automatically re-authenticates the client device.
-
Citations
54 Claims
-
1. A server system programmed to perform actions comprising:
-
authenticating a client device for a particular server session;
sharing auto-reconnect data with the client device;
after losing communications with the client device, receiving from the client device a session verifier that is derived at least in part from the auto-reconnect data;
validating the session verifier;
upon successfully validating the session verifier, automatically re-authenticating the client device for the particular server session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A terminal server system programmed to perform actions comprising:
-
executing multiple server sessions in conjunction with remote terminals, wherein user applications execute primarily on the terminal server system and user I/O is performed through the remote terminals;
requesting user credentials to authenticate a particular remote terminal for a particular server session;
sharing auto-reconnect data with the particular remote terminal over a secure communications channel, the auto-reconnect data comprising a first random number;
re-establishing communications with the particular remote terminal after a communications failure;
sharing a second random number with the particular remote terminal after re-establishing communications;
receiving from the particular remote terminal a session verifier that is derived at least in part from the first and second random numbers;
validating the session verifier;
upon successfully validating the session verifier, automatically re-authenticating the particular remote terminal for the particular server session without again requesting user credentials. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A client device programmed to perform actions comprising:
-
providing user credentials to a server system to authenticate the client device with the server system;
initiating a server session on a server system, the server session being associated with the client device;
sharing auto-reconnect data with the server system, the auto-reconnect data comprising a session ID and a first random number;
deriving a session verifier at least in part from the first random number;
after losing and re-establishing communications with the server system, requesting automatic re-authentication by the server system without providing user credentials, wherein said requesting comprises sending the session verifier to the server system. - View Dependent Claims (28, 29, 30, 31)
-
-
32. A method comprising:
-
establishing data communications between a client device and a server system;
authenticating the client device for a particular server session;
sharing auto-reconnect data between client device and the server system;
deriving a client session verifier at the client device from at least a portion of the auto-reconnect data;
re-establishing data communications between the client device and the server system after a communications failure;
after re-establishing data communications, providing the client session verifier from the client device to the server system;
deriving a server session verifier at the server system from at least a portion of the auto-reconnect data;
validating the client session verifier by comparing it to the server session verifier;
upon successfully validating the session verifier, automatically re-authenticating the client device for the particular server session. - View Dependent Claims (33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. One or more computer-readable media containing instructions that are executable by a computer to perform actions comprising:
-
establishing communications with a client device;
requesting user credentials through the client device to authenticate the client device for a particular server session;
sharing auto-reconnect data with the client device, the auto-reconnect data comprising a first random number;
re-establishing communications with the client device after a communications failure;
receiving from the particular client device a session verifier that is derived at least in part from the first random number;
validating the received session verifier;
upon successfully validating the session verifier, automatically re-authenticating the particular client device for the particular server session without again requesting user credentials. - View Dependent Claims (44, 45, 46, 47, 48, 49, 50)
-
-
51. One or more computer-readable media containing instructions that are executable by a client computer to perform actions comprising:
-
providing user credentials to a server system to authenticate the client computer with the server system;
initiating a server session on a server system, the server session being associated with the client computer;
sharing auto-reconnect data with the server system, the auto-reconnect data comprising a session ID and a first random number;
after losing and re-establishing communications with the server system requesting automatic re-authentication by the server system without providing user credentials, wherein said requesting comprises;
sharing a second random number with the server system;
deriving a session verifier at least in part from the first and second random numbers;
sending the session verifier to the server system. - View Dependent Claims (52, 53, 54)
-
Specification