PROXY AUTHENTICATION SERVER

US 20090113537A1
Filed: 10/30/2007
Published: 04/30/2009
Est. Priority Date: 10/30/2007
Status: Abandoned Application

First Claim

Patent Images

1. A computer-implemented method for authenticating a client, the method comprising:

receiving, from a client, at a proxy authentication server, a digital certificate request; and

in response to receiving the digital certificate request, the proxy authentication server engaging in an authentication process with a particular server on which a certificate authority resides, thereby sparing the client from participating in the authentication process with the particular server.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques and systems for allowing a client to interact with a Microsoft Windows Server via a proxy authentication server are disclosed. Instead of engaging in the NTLM authentication protocol with a Microsoft Windows Server directly, a client may interact with a proxy authentication server. The proxy authentication server may perform all of the necessary NTLM interactions with the Microsoft Windows Server. Thus, the proxy authentication server authenticates itself with the Microsoft Windows Server, and acts as the client'"'"'s agent. Because the client does not directly interact with the Microsoft Windows Server, the client does not need to authenticate itself with the Microsoft Windows Server; instead, after the proxy authentication server authenticates itself with the Microsoft Windows Server, the client can transact the client'"'"'s business with the Microsoft Windows Server through the authenticated proxy authentication server. The proxy authentication server can act on behalf of multiple different clients in a network.

65 Citations

View as Search Results

17 Claims

1. A computer-implemented method for authenticating a client, the method comprising:
- receiving, from a client, at a proxy authentication server, a digital certificate request; and
  
  in response to receiving the digital certificate request, the proxy authentication server engaging in an authentication process with a particular server on which a certificate authority resides, thereby sparing the client from participating in the authentication process with the particular server.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the step of receiving the digital certificate request from the client comprises receiving a digital certificate request that the client sent through a port other than a standard port on which digital certificate requests are normally sent.
  - 3. The method of claim 1, wherein the step of engaging in the authentication process with the particular server comprises engaging in an NTLM authentication process with a Microsoft Windows Server.
  - 4. The method of claim 1, further comprising:
    - the proxy authentication server authenticating the proxy authentication server with the particular server through the authentication process;
      
      the proxy authentication server sending the digital certificate request to the certificate authority after authenticating the proxy authentication server with the particular server;
      
      the proxy authentication server receiving a digital certificate from the certificate authority in response to the certificate authority'"'"'s receipt of the digital certificate request; and
      
      the proxy authentication server sending the digital certificate to the client.
  - 5. The method of claim 1, wherein the client is incapable of participating in the authentication process with the particular server.
  - 6. The method of claim 1, further comprising:
    - the proxy server establishing a SSH channel with the client;
      
      wherein the step of receiving the digital certificate request from the client comprises receiving the digital certificate request through the SSH channel.

7. A computer-readable medium carrying one or more sequences of instructions, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
- receiving, from a client, at a proxy authentication server, a digital certificate request; and
  
  in response to receiving the digital certificate request, the proxy authentication server engaging in an authentication process with a particular server on which a certificate authority resides, thereby sparing the client from participating in the authentication process with the particular server.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The computer-readable medium of claim 7, wherein the step of receiving the digital certificate request from the client comprises receiving a digital certificate request that the client sent through a port other than a standard port on which digital certificate requests are normally sent.
  - 9. The computer-readable medium of claim 7, wherein the step of engaging in the authentication process with the particular server comprises engaging in an NTLM authentication process with a Microsoft Windows Server.
  - 10. The computer-readable medium of claim 7, wherein the steps further comprise:
    - the proxy authentication server authenticating the proxy authentication server with the particular server through the authentication process;
      
      the proxy authentication server sending the digital certificate request to the certificate authority after authenticating the proxy authentication server with the particular server;
      
      the proxy authentication server receiving a digital certificate from the certificate authority in response to the certificate authority'"'"'s receipt of the digital certificate request; and
      
      the proxy authentication server sending the digital certificate to the client.
  - 11. The computer-readable medium of claim 7, wherein the client is incapable of participating in the authentication process with the particular server.
  - 12. The computer-readable medium of claim 7, wherein the steps further comprise:
    - the proxy server establishing a SSH channel with the client;
      
      wherein the step of receiving the digital certificate request from the client comprises receiving the digital certificate request through the SSH channel.

13. A proxy authentication server that is configured to:
- receive, from a client, a digital certificate request; and
  
  engage in an authentication process with a particular server on which a certificate authority resides in response to receiving the digital certificate request, thereby sparing the client from participating in the authentication process with the particular server.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The proxy authentication server of claim 13, further configured to receive the digital certificate request that the client sent through a port other than a standard port on which digital certificate requests are normally sent.
  - 15. The proxy authentication server of claim 13, further configured to engage in an NTLM authentication process with a Microsoft Windows Server.
  - 16. The proxy authentication server of claim 13, further configured to:
    - authenticate the proxy authentication server with the particular server through the authentication process;
      
      send the digital certificate request to the certificate authority after authenticating the proxy authentication server with the particular server;
      
      receive a digital certificate from the certificate authority in response to the certificate authority'"'"'s receipt of the digital certificate request; and
      
      send the digital certificate to the client.
  - 17. The proxy authentication server of claim 13, further configured to:
    - establish a SSH channel with the client; and
      
      receive the digital certificate request through the SSH channel.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Ricoh Company Limited
Original Assignee
Ricoh Company Limited
Inventors
WOO, JAMES

Application Number

US11/929,704
Publication Number

US 20090113537A1
Time in Patent Office

Days
Field of Search
US Class Current

726/12
CPC Class Codes

H04L 63/0823 using certificates cryptogr...

H04L 63/0884 by delegation of authentica...

PROXY AUTHENTICATION SERVER

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

65 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

PROXY AUTHENTICATION SERVER

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

65 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links