Method and system for providing distributed web server authentication

US 7,082,532 B1
Filed: 12/30/1999
Issued: 07/25/2006
Est. Priority Date: 12/30/1999
Status: Expired due to Fees

First Claim

Patent Images

1. A method of providing distributed web server authentication, said method comprising:

receiving a request to connect a valid user to a web server;

creating a user password cookie using a shared secret key, wherein the web server is part of a common authentication ring having a plurality of web servers each of the plurality of web servers having the shared secret key; and

transmitting the user password cookie in response to the request to connect.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for providing distributed web server authentication of a user in web servers using a shared secret key. The method and system include receiving a request to connect a user to a web server, creating a user password cookie using a shared secret key and transmitting the user password cookie in response to the request to connect. An implementation of the method and system includes establishing a connection between the web server and a second user using a second user password cookie and the shared secret key. Another implementation of the method and system includes establishing a connection between the user and a second web server using the user password cookie and the shared secret key.

Citations

31 Claims

1. A method of providing distributed web server authentication, said method comprising:
- receiving a request to connect a valid user to a web server;
  
  creating a user password cookie using a shared secret key, wherein the web server is part of a common authentication ring having a plurality of web servers each of the plurality of web servers having the shared secret key; and
  
  transmitting the user password cookie in response to the request to connect.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 29, 30, 31)
- - 2. The method of claim 1, wherein creating a user password cookie using a shared secret key, comprises:
    - reading a user credential cookie;
      
      requesting a user identification (ID) and password;
      
      receiving the user ID and password; and
      
      validating the valid user'"'"'s identity.
  - 3. The method of claim 2, wherein validating the valid user'"'"'s identity, comprises:
    - authenticating the user ID and password with the user credential cookie using a local authenticating mechanism.
  - 4. The method of claim 3, wherein the local authenticating mechanism comprises an operating system.
  - 5. The method of claim 2, wherein creating a user password cookie using the shared secret key, further comprises:
    - combining at least the user ID and password with a time stamp; and
      
      encrypting the combined at least user ID, password and time stamp using the shared secret key.
  - 6. The method of claim 1, wherein creating a user password cookie using a shared secret key, comprises:
    - obtaining the user password cookie;
      
      verifying that the user password cookie is valid; and
      
      updating the user password cookie using the shared secret key.
  - 7. The method of claim 6, wherein updating the user password cookie using the shared secret key, comprises:
    - combining at least a user identification (ID) and password with a time stamp; and
      
      encrypting the combined at least user ID, password and time stamp using the shared secret key.
  - 8. The method of claim 1, further comprising:
    - authenticating a second valid user requesting access to the web server.
  - 9. The method of claim 8, wherein authenticating a second valid user requesting access to the web server, comprises:
    - receiving a request to connect the second valid user to the web server; and
      
      creating a second user password cookie using the shared secret key; and
      
      transmitting the second user password cookie in response to the request to connect the second valid user.
  - 10. The method of claim 1, further comprising:
    - authenticating the valid user at a second web server, wherein the web server and the second web server are part of the common authentication ring.
  - 11. The method of claim 10, wherein authenticating the valid user at a second web server, comprises:
    - receiving a request to connect the valid user to the second web server;
      
      updating the user password cookie using the shared secret key; and
      
      transmitting the user password cookie in response to the request to connect the valid user to the second web server.
  - 29. The method of claim 1, further comprising connecting the valid user to the web server.
  - 30. The method of claim 9, further comprising connecting the second valid user to the web server.
  - 31. The method of claim 11, further comprising connecting the valid user to the second web server.

12. A computer-readable medium having stored therein a computer program for providing distributed web server authentication of a valid user requesting access to a web server, said program comprising instructions for:
- receiving a request to connect the valid user to the web server;
  
  creating a user password cookie using a shared secret key, wherein the web server is part of a common authentication ring having a plurality of web servers each of the plurality of web servers having the shared secret key; and
  
  transmitting the user password cookie in response to the request to connect.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
- - 13. The computer-readable medium of claim 12, wherein creating a user password cookie using a shared secret key, comprises:
    - reading a user credential cookie;
      
      requesting a user identification (ID) and password;
      
      receiving the user ID and password; and
      
      validating the valid user'"'"'s identity.
  - 14. The computer-readable medium of claim 13, wherein validating the valid user'"'"'s identity, comprises:
    - authenticating the user ID and password with the user credential cookie using a local authenticating mechanism.
  - 15. The computer-readable medium of claim 14, wherein the local authenticating mechanism comprises an operating system.
  - 16. The computer-readable medium of claim 13, wherein creating a user password cookie using the shared secret key, further comprises:
    - combining at least the user ID and password with a time stamp; and
      
      encrypting the combined at least user ID, password and time stamp using the shared secret key.
  - 17. The computer-readable medium of claim 12, wherein creating a user password cookie using a shared secret key, comprises:
    - obtaining the user password cookie;
      
      verifying that the user password cookie is valid; and
      
      updating the password cookie using the shared secret key.
  - 18. The computer-readable medium of claim 12, further comprising:
    - authenticating a second valid user requesting access to the web server.
  - 19. The computer-readable medium of claim 18, wherein authenticating a second valid user requesting access to the web server, comprises:
    - receiving a request to connect the second valid user to the web server;
      
      creating a second user password cookie using the shared secret key; and
      
      transmitting the second user password cookie in response to the request to connect the second valid user.
  - 20. The computer-readable medium of claim 12, further comprising:
    - authenticating the valid user at a second web server, wherein the web server and the second web server are part of the common authentication ring.
  - 21. The computer-readable medium of claim 20, wherein authenticating the valid user at a second web server, comprises:
    - receiving a request to connect the valid user to the second web server;
      
      updating the user password cookie using the shared secret key; and
      
      transmitting the user password cookie in response to the request to connect the valid user to the second web server.

22. An apparatus for providing distributed web server authentication, said apparatus comprising:
- a plurality of computer systems, wherein each of said plurality of computer systems is coupled to at least one other of said plurality of computer systems, and wherein each of said plurality of computer systems includes;
  
  a processor unit;
  
  a communications unit coupled to said processor unit;
  
  a memory unit coupled to said processor unit; and
  
  a computer program stored in the memory unit, said computer program, which, when executed by the processor unit configures said computer system for;
  
  receiving a request to connect a valid user to the computer system through the communications unit;
  
  creating a user password cookie using a shared secret key, wherein the shared secret key is shared by each of said plurality of computer systems; and
  
  transmitting the user password cookie to the user.
- View Dependent Claims (28)
- - 28. The apparatus of claim 22, wherein said computer program, which, when executed by the processor unit further configures said computer system for:
    - connecting the user to the computer system.

23. A method of providing distributed web server authentication, said method comprising:
- receiving, by a web server, a request to connect a user to the web server;
  
  determining if the user is a valid user;
  
  if the user is not valid, thendenying access to the user;
  
  if the user is valid, then,if a valid user password cookie exists, then,updating the user password cookie using a shared secret key;
  
  if no valid user password cookie exists, then,generating the user password cookie using the shared secret key,wherein the web server is part of a common authentication ring having a plurality of web servers each of the plurality of web servers having the shared secret key;
  
  transmitting the user password cookie to the user; and
  
  connecting the web server to the user.
- View Dependent Claims (24, 25, 26, 27)
- - 24. The method of claim 23, wherein determining if the user is a valid user, comprises:
    - reading a user credential cookie;
      
      requesting a user identification (ID) and password;
      
      receiving the user ID and password; and
      
      validating the user'"'"'s identity.
  - 25. The method of claim 23, wherein determining if the user is a valid user, comprises:
    - obtaining the user password cookie;
      
      verifying that the user password cookie is valid;
      
      if the user password cookie is valid, then, the user is valid;
      
      if the user password cookie is not valid, then, the user is not valid.
  - 26. The method of claim 24, wherein generating the user password cookie using the shared secret key, comprises:
    - combining at least the user ID and password with a time stamp; and
      
      encrypting the combined at least user ID, password and time stamp using the shared secret key.
  - 27. The method of claim 23, further comprising:
    - establishing a connection between the web server and a second user using a second user password cookie and the shared secret key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Mills, David A., Vick, Cornelius V.
Primary Examiner(s)
Smithers, Matthew
Assistant Examiner(s)
FIELDS, COURTNEY D

Application Number

US09/475,062
Time in Patent Office

2,399 Days
Field of Search

713/155, 713/156, 713/157, 713/158, 713/159, 709/226
US Class Current

713/155
CPC Class Codes

H04L 63/0815 providing single-sign-on or...

H04L 63/083 using passwords cryptograph...

Method and system for providing distributed web server authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

31 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for providing distributed web server authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

31 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links