METHOD AND SYSTEM FOR ONE TIME PASSWORD BASED AUTHENTICATION AND INTEGRATED REMOTE ACCESS
First Claim
Patent Images
1. A system for client authentication using a one time password (OTP), comprising:
- a client configured to request access to an application executing on an internal corporate network, and transmit the OTP and a user name associated with a user to an OTP keys distribution center (KDC), wherein the OTP is used to authenticate the user to the internal corporate network; and
the OTP KDC configured to receive the OTP from the client, and issue an inter-domain key and a ticket-granting-ticket (TGT) to the client upon validation of the OTP, wherein the inter-domain key and the TGT are used to authenticate the client and grant access to the application.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for client authentication using a one time password (OTP) including a client configured to request access to an application executing on an internal corporate network, and transmit the OTP and a user name associated with a user to an OTP keys distribution center (KDC), wherein the OTP is used to authenticate the user to the internal corporate network, and the OTP KDC configured to receive the OTP from the client, and issue an inter-domain key and a ticket-granting-ticket (TGT) to the client upon validation of the OTP, wherein the inter-domain key and the TGT are used to authenticate the client and grant access to the application.
260 Citations
25 Claims
-
1. A system for client authentication using a one time password (OTP), comprising:
-
a client configured to request access to an application executing on an internal corporate network, and transmit the OTP and a user name associated with a user to an OTP keys distribution center (KDC), wherein the OTP is used to authenticate the user to the internal corporate network; and
the OTP KDC configured to receive the OTP from the client, and issue an inter-domain key and a ticket-granting-ticket (TGT) to the client upon validation of the OTP, wherein the inter-domain key and the TGT are used to authenticate the client and grant access to the application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for client authentication using a one time password (OTP), comprising:
-
receiving the OTP from a client, wherein the OTP is used to authenticate a user to the internal corporate network;
validating the OTP;
issuing an inter-domain key and a ticket-granting-ticket (TGT) to the client upon validation of the OTP;
requesting a service ticket using the TGT and the inter-domain key; and
establishing communication with a corporate server executing an application on the internal corporate network using the service ticket. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
-
23. A computer system, comprising:
-
a processor;
a memory;
a storage device; and
software instruction stored in the memory for enabling the computer system under control of the processor to;
receive the OTP from a client, wherein the OTP is used to authenticate a user to the internal corporate network;
validate the OTP;
issue an inter-domain key and a ticket-granting-ticket (TGT) to the client upon validation of the OTP;
request a service ticket using the TGT and the inter-domain key; and
establish communication with a corporate server executing an application on the internal corporate network using the service ticket.
-
-
24. A method for client authentication using an authentication credential, comprising:
-
receiving the authentication credential associated with a user from a client, the authentication credential is used to authenticate the user to the internal corporate network;
validating the authentication credential;
issuing an inter-domain key and a ticket-granting-ticket (TGT) to the client upon validation of the authentication credential;
requesting a service ticket using the TGT and the inter-domain key; and
establishing communication with a corporate server executing an application on the internal corporate network using the service ticket. - View Dependent Claims (25)
-
Specification