TRANSPORT LAYER SECURITY TOKEN BINDING AND TRUSTED SIGNING
First Claim
1. A method for managing data communications, the method comprising:
- establishing a secure communication session between a client device and a server over a network, the secure communication session comprising one or more communication subsessions in which data is exchanged between the client device and the server, wherein establishing the secure communication session comprises;
providing an access token to the server, the access token comprising information for securely binding the one or more communication subsessions to the secure communication session, andproviding attestation information to the server, the attestation information attesting to security of management of the access token by the client device.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for managing data communications are provided. A method according to these techniques includes establishing a secure communication session between a client device and a server over a network, the secure communication session comprising one or more communication subsessions in which data is exchanged between the client device and the server. Establishing the secure communication session include providing an access token to the server, the access token comprising information for securely binding the one or more communication subsessions to the secure communication session, and providing attestation information to the server, the attestation information attesting to security of management of the access token by the client device.
61 Citations
24 Claims
-
1. A method for managing data communications, the method comprising:
establishing a secure communication session between a client device and a server over a network, the secure communication session comprising one or more communication subsessions in which data is exchanged between the client device and the server, wherein establishing the secure communication session comprises; providing an access token to the server, the access token comprising information for securely binding the one or more communication subsessions to the secure communication session, and providing attestation information to the server, the attestation information attesting to security of management of the access token by the client device. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. An apparatus for managing data communications, the apparatus comprising:
means for establishing a secure communication session between the apparatus and a server over a network, the secure communication session comprising one or more communication subsessions in which data is exchanged between the apparatus and the server, wherein the means for establishing the secure communication session comprises; means for providing an access token to the server, the access token comprising information for securely binding the one or more communication subsessions to the secure communication session, and means for providing attestation information to the server, the attestation information attesting to security of management of the access token by the apparatus. - View Dependent Claims (8, 9, 10, 11, 12)
-
13. A non-transitory, computer-readable medium, having stored thereon computer-readable instructions for managing data communications, comprising instructions configured to cause at least one processor to:
establish a secure communication session between a client device and a server over a network, the secure communication session comprising one or more communication subsessions in which data is exchanged between the client device and the server, wherein the instructions configured to cause the at least one processor to establish the secure communication session comprises instructions to cause the at least one processor to; provide an access token to the server, the access token comprising information for securely binding the one or more communication subsessions to the secure communication session, and provide attestation information to the server, the attestation information attesting to security of management of the access token by the client device. - View Dependent Claims (14, 15, 16, 17, 18)
-
19. A client device comprising:
a processor configured to; establish a secure communication session between the client device and a server over a network, the secure communication session comprising one or more communication subsessions in which data is exchanged between the client device and the server, wherein the processor is configured to; provide an access token to the server, the access token comprising information for securely binding the one or more communication subsessions to the secure communication session, and provide attestation information to the server, the attestation information attesting to security of management of the access token by the client device. - View Dependent Claims (20, 21, 22, 23, 24)
Specification