Method for secure delegation of trust from a security device to a host computer application for enabling secure access to a resource on the web
First Claim
1. A method for authenticating a user on a host computer to a web server, comprising:
- establishing a security context by the web server; and
transferring the security context from the web server to a trusted network security device; and
delegating the security context to a browser plug-in on a host computer by;
establishing a secure channel of communication between the network security device and the browser plug-in on a host computer; and
authenticating the network security device by the browser plug-in on the host computer; and
in response the network security device authenticating the user on the host computer; and
establishing trust between the plug-in on the host computer and the network security device; and
transferring the security context securely from the network security device to the host computer.
0 Assignments
0 Petitions
Accused Products
Abstract
Secure authentication of a user on a host computer to a web server including a security device acquiring trust or a security context from the web server. The security device is operable of providing an X.509 certificate to a browser plug-in on the host computer. The browser plug-in on the host computer performing authentication of the security device and in response providing user credentials to the security device. The security device performing authentication of the user and requests a security context from the web server. In response, the web server provides a security context to the security device. The security device delegates the web server trust by transmitting the context to the host computer and enabling the user to securely access resources on the web server.
47 Citations
19 Claims
-
1. A method for authenticating a user on a host computer to a web server, comprising:
-
establishing a security context by the web server; and
transferring the security context from the web server to a trusted network security device; and
delegating the security context to a browser plug-in on a host computer by;
establishing a secure channel of communication between the network security device and the browser plug-in on a host computer; and
authenticating the network security device by the browser plug-in on the host computer; and
in response the network security device authenticating the user on the host computer; and
establishing trust between the plug-in on the host computer and the network security device; and
transferring the security context securely from the network security device to the host computer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for authenticating a user on a host computer to a web server, comprising:
-
establishing a security context by the web server; and
transferring the security context from the web server to a security device; and
delegating the security context to a browser plug-in on a host computer by;
establishing a secure channel of communication between the security device and the browser plug-in on a host computer; and
authenticating the security device by the browser plug-in on the host computer; and
in response the security device authenticating the user on the host computer; and
establishing trust between the plug-in on the host computer and the security device; and
transferring the security context securely from the security device to the host computer. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification