Multiparty conference authentication
First Claim
1. A method for accepting a new node to join a secured conference controlled by a top provider, comprising:
- transmitting, by the new node to a first node, a request to join the conference and a certificate specifying an identity of the new node, said first node being connected to the top provider and participating in the conference, said new node being not directly connected to the top provider for transport-layer authentication;
authenticating, by the first node, the new node on a transport level;
forming, by the first node, a secured link with the new node if the new node is successfully authenticated on the transport level;
transmitting, by the first node on an application level, the request and certification of the new node to an application layer of the top provider over a secured link formed between the top provider and the first node;
verifying, by the top provider on an application level, the identity of the new node based on the certificate of the new node; and
informing, by the top provider, a second node connected to the top provider and already participating in the conference that the new node is to join the conference, and making the certificate of the new node available to the second node.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system for controlling admission of new nodes to a secured conference combines transport layer security mechanism and application layer certificate exchange. A new node that is not directly connected to the top provider of the conference sends a request to join the conference and a certification identifying itself to a first conference node connected to the top provider. The first node performs transport level authentication of the new node, and then forwards the request and certificate of the new node on an application level to the top provider. The top provider verifies the identity of the new node based on the certificate. If the new node is allowed to join the conference, the top provider updates a list of conference participants and makes the certificate of the new node available to other conference nodes so that they can also verify the identity of the new node.
-
Citations
23 Claims
-
1. A method for accepting a new node to join a secured conference controlled by a top provider, comprising:
-
transmitting, by the new node to a first node, a request to join the conference and a certificate specifying an identity of the new node, said first node being connected to the top provider and participating in the conference, said new node being not directly connected to the top provider for transport-layer authentication;
authenticating, by the first node, the new node on a transport level;
forming, by the first node, a secured link with the new node if the new node is successfully authenticated on the transport level;
transmitting, by the first node on an application level, the request and certification of the new node to an application layer of the top provider over a secured link formed between the top provider and the first node;
verifying, by the top provider on an application level, the identity of the new node based on the certificate of the new node; and
informing, by the top provider, a second node connected to the top provider and already participating in the conference that the new node is to join the conference, and making the certificate of the new node available to the second node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer-readable medium having computer-executable instructions for performing steps for accepting a new node to join a secured conference controlled by a top provider, comprising:
-
transmitting, by the new node to a first node, a request to join the conference and a certificate specifying an identity of the new node, said first node being connected to the top provider and participating in the conference, said new node being not directly connected to the top provider for transport-layer authentication;
authenticating, by the first node, the new node on a transport level;
forming, by the first node, a secured link with the new node if the new node is successfully authenticated on the transport level;
transmitting, by the first node on an application level, the request and certification of the new node to an application layer of the top provider over a secured link formed between the top provider and the first node;
verifying, by the top provider on an application level, the identity of the new node based on the certificate of the new node; and
informing, by the top provider, a second node connected to the top provider and already participating in the conference that the new node is to join the conference and making the certificate of the new node available to the second node. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer-readable medium having computer-executable instructions for performing steps by a first node participating in a secured conference controlled by a top provider for accepting a new node to join the secured conference, comprising:
-
receiving from the new node a request to join the conference and a certificate specifying an identity of the new node, said new node being not directly connected to the top provider for transport-level authentication;
authenticating the new node on a transport level;
forming a secured link with the new node if the new node is successfully authenticated on the transport level;
transmitting, on an application level, the request and certification of the new node to the top provider over a secured link formed between the top provider and the first node; and
receiving a response on an application level from the top provider to permit the new node to join the secured conference. - View Dependent Claims (22, 23)
-
Specification