METHOD AND APPARATUS FOR KEY SHARING OVER REMOTE DESKTOP PROTOCOL
First Claim
1. A method for key sharing for allowing remote desktop access to a service by a client, the method comprising:
- receiving a request from a terminal apparatus to provide a user with access to a remote desktop service, wherein the request comprises a session token;
retrieving a username and password associated with the user based on the session token;
assigning a time period of validity to the password;
generating a first secret key based at least in part on information associated with the user or the terminal apparatus;
generating a second secret key based at least in part on the first secret key and a salt;
encrypting a packet comprising the password and an indication of the time period using the second secret key;
appending the salt to the encrypted packet;
transmitting the username, encrypted packet and appended salt to the terminal apparatus for authenticating the user for accessing the requested remote desktop service.
1 Assignment
0 Petitions
Accused Products
Abstract
Various methods for the secure exchange of private keys for authenticating a user to an RDP service are provided. One example method may comprise receiving a request comprising a session token to provide a user with access to an RDP service, and retrieving a username and password associated with the user using the session token. The method may further comprise assigning a time period of validity to the password. Furthermore, the method may comprise generating a first secret key based on user information, generating a second secret key based on the first secret key and a salt, and encrypting a packet comprising the password and the time period using the second secret key. Additionally, the method may comprise transmitting the username and encrypted packet to the device for authenticating the user with the requested RDP service. Similar and related example methods, apparatuses, systems, and computer program products are also provided.
61 Citations
21 Claims
-
1. A method for key sharing for allowing remote desktop access to a service by a client, the method comprising:
-
receiving a request from a terminal apparatus to provide a user with access to a remote desktop service, wherein the request comprises a session token; retrieving a username and password associated with the user based on the session token; assigning a time period of validity to the password; generating a first secret key based at least in part on information associated with the user or the terminal apparatus; generating a second secret key based at least in part on the first secret key and a salt; encrypting a packet comprising the password and an indication of the time period using the second secret key; appending the salt to the encrypted packet; transmitting the username, encrypted packet and appended salt to the terminal apparatus for authenticating the user for accessing the requested remote desktop service. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An apparatus for key sharing for allowing remote desktop access to a service by a client, the apparatus comprising:
-
at least one processor; and at least one memory storing computer program code, wherein the at least one memory and stored computer program code are configured, with the at least one processor, to cause the apparatus to, receive a request from a terminal apparatus to provide a user with access to a remote desktop service, wherein the request comprises a session token; retrieve a username and password associated with the user based on the session token; assign a time period of validity to the password; generate a first secret key based at least in part on information associated with the user or the terminal apparatus; generate a second secret key based at least in part on the first secret key and a salt; encrypt a packet comprising the password and an indication of the time period using the second secret key; append the salt to the encrypted packet; transmit the username, encrypted packet and appended salt to the terminal apparatus for authenticating the user for accessing the requested remote desktop service. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer program product for key sharing for allowing remote desktop access to a service by a client, the computer program product comprising:
at least one computer-readable storage medium having computer-readable program instructions stored therein, wherein the program instructions are configured to; receive a request from a terminal apparatus to provide a user with access to a remote desktop service, wherein the request comprises a session token; retrieve a username and password associated with the user based on the session token; assign a time period of validity to the password; generate a first secret key based at least in part on information associated with the user or the terminal apparatus; generate a second secret key based at least in part on the first secret key and a salt; encrypt a packet comprising the password and an indication of the time period using the second secret key; append the salt to the encrypted packet; transmit the username, encrypted packet and appended salt to the terminal apparatus for authenticating the user for accessing the requested remote desktop service. - View Dependent Claims (16, 17, 18, 19, 20, 21)
Specification