Method and apparatus for providing a key distribution center without storing long-term server secrets

US 7,395,549 B1
Filed: 10/17/2000
Issued: 07/01/2008
Est. Priority Date: 10/17/2000
Status: Expired due to Term

First Claim

Patent Images

1. A method for operating a key distribution center (KDC) that provides keys to facilitate secure communications between clients and servers across a computer network, wherein the KDC operates without having to store long-term server secrets, comprising:

receiving a communication from a server that is authenticated at the KDC;

wherein the communication includes a temporary secret key to be used in communications with the server for a limited time period, and wherein the temporary secret key is shared between the server and the KDC; and

storing the temporary secret key in a database at the KDC, so that the temporary secret key can be subsequently used to facilitate one or more communications between a client and the server, wherein the temporary secret key is encrypted with a public key belonging to the KDC, so that the temporary secret key can only be decrypted using a private key belonging to the KDC;

wherein the temporary secret key is a short-term secret which becomes invalid after a short time period; and

wherein the server generates a new temporary secret key in response to a request from the KDC for a new temporary secret key to replace the invalid temporary secret key.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

One embodiment of the present invention provides a system for operating a key distribution center (KDC) that provides keys to facilitate secure communications between clients and servers across a computer network, wherein the system operates without having to store long-term server secrets. The system operates by receiving a communication from a server at the KDC. This communication includes an identifier for the server, as well as a temporary secret key to be used in communications between a client and the server for a limited time period. In response the communication, the system attempts to authenticate the server. If the server is successfully authenticated, the system stores the temporary secret key at the KDC, so that the temporary secret key can be subsequently used to facilitate communications with the server. Upon subsequently receiving a request at the KDC from a client that desires to communicate with the server, the system produces a session key to be used in communications between the client and server, and then creates a ticket to the server by encrypting an identifier for the client and the session key with the temporary secret key for the server. Next, the system assembles a message that includes the identifier for the server, the session key and the ticket to the server, and sends the message to the client in a secure manner. The system subsequently allows the client to forward the ticket to the server in order to initiate communications between the client and the server.

Citations

51 Claims

1. A method for operating a key distribution center (KDC) that provides keys to facilitate secure communications between clients and servers across a computer network, wherein the KDC operates without having to store long-term server secrets, comprising:
- receiving a communication from a server that is authenticated at the KDC;
  
  wherein the communication includes a temporary secret key to be used in communications with the server for a limited time period, and wherein the temporary secret key is shared between the server and the KDC; and
  
  storing the temporary secret key in a database at the KDC, so that the temporary secret key can be subsequently used to facilitate one or more communications between a client and the server, wherein the temporary secret key is encrypted with a public key belonging to the KDC, so that the temporary secret key can only be decrypted using a private key belonging to the KDC;
  
  wherein the temporary secret key is a short-term secret which becomes invalid after a short time period; and
  
  wherein the server generates a new temporary secret key in response to a request from the KDC for a new temporary secret key to replace the invalid temporary secret key.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 2. The method of claim 1, wherein upon subsequently receiving:
    - a request from the client at the KDC to communicate with the server, the method further comprises facilitating communications between the client and the server by;
      
      producing a session key to be used in communications between the client and server;
      
      creating a ticket to the server by encrypting an identifier for the client and the session key with the temporary secret key for the server; and
      
      assembling a message that includes the identifier for the server, the session key and the ticket to the server; and
      
      sending the message to the client in a secure manner; and
      
      allowing the client to forward the ticket to the server in order to initiate communications between the client and the server.
  - 3. The method of claim 2, wherein upon receiving the ticket from the client at the server, the method further comprises:
    - decrypting the ticket at the server using the temporary secret key to restore the session key and the identifier for the client; and
      
      using the session key at the server to protect subsequent communications between the server and the client.
  - 4. The method of claim 2, wherein assembling the message involves including an expiration time for the session key in the message.
  - 5. The method of claim 2, wherein allowing the client to forward the ticket to the server includes allowing the client to forward an identifier for the temporary secret key to the server, so that the server can know which temporary secret key to use in decrypting the ticket.
  - 6. The method of claim 2, wherein sending the message to the client in the secure manner involves encrypting the message with a second session key that was previously communicated to the client by the KDC.
  - 7. The method of claim 2, further comprising alternatively creating the ticket to the server by encrypting the identifier for the client and the session key with one of:
    - a public key for the server; and
      
      a secret key for the server previously agreed upon between the server and the KDC and stored at the KDC.
  - 8. The method of claim 1, wherein receiving the communication from the server involves authenticating the server.
  - 9. The method of claim 8, wherein authenticating the server involves using authentication information pertaining to the server, the authentication information including a certificate chain from a trust anchor to the server, and including a server public key that is associated with a server private key to form a public key-private key pair associated with the server.
  - 10. The method of claim 8, wherein authenticating the server involves authenticating the server without having prior configuration information pertaining to the server at the KDC.
  - 11. The method of claim 8, wherein authenticating the server includes using a server public key that is stored locally in the KDC.
  - 12. The method of claim 1, wherein the communication is signed with a server private key so that the KDC can use a corresponding server public key to verify that the communication was sent by the server.
  - 13. The method of claim 1, wherein the communication is received in response to a request being sent by the KDC to the server indicating that the temporary secret key is needed from the server.
  - 14. The method of claim 1, further comprising communicating information to the server that enables the server to authenticate the KDC.
  - 15. The method of claim 1, wherein the KDC operates in accordance with the Kerberos standard.
  - 16. The method of claim 1, wherein the communication received from the server additionally includes an identifier for the server.
  - 17. The method of claim 1, further comprising propagating the temporary secret key to multiple KDCs.

18. A computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method for operating a key distribution center (KDC) that provides keys to facilitate secure communications between clients and servers across a computer network, wherein the KDC operates without having to store long-term server secrets, the method comprising:
- receiving a communication from a server that is authenticated at the KDC;
  
  wherein the communication includes a temporary secret key to be used in communications with the server for a limited time period, and wherein the temporary secret key is shared between the server and the KDC; and
  
  storing the temporary secret key in a database at the KDC, so that the temporary secret key can be subsequently used to facilitate one or more communications between a client and the server, wherein the temporary secret key is encrypted with a public key belonging to the KDC so that the temporary secret key can only be decrypted using a private key belonging to the KDC;
  
  wherein the temporary secret key is a short-term secret which becomes invalid after a short time period; and
  
  wherein the server generates a new temporary secret key in response to a request from the KDC for a new temporary secret key to replace the invalid temporary secret key.
- View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
- - 19. The computer-readable storage medium of claim 18, wherein upon subsequently receiving a request from the client at the KDC to communicate with the server, the method further comprises facilitating communications between the client and the server by:
    - producing a session key to be used in communications between the client and server;
      
      creating a ticket to the server by encrypting an identifier for the client and the session key with the temporary secret key for the server; and
      
      assembling a message that includes the identifier for the server, the session key and the ticket to the server; and
      
      sending the message to the client in a secure manner; and
      
      allowing the client to forward the ticket to the server in order to initiate communications between the client and the server.
  - 20. The computer-readable storage medium of claim 19, wherein upon receiving the ticket from the client at the server, the method further comprises:
    - decrypting the ticket at the server using the temporary secret key to restore the session key and the identifier for the client; and
      
      using the session key at the server to protect subsequent communications between the server and the client.
  - 21. The computer-readable storage medium of claim 19, wherein assembling the message involves including an expiration time for the session key in the message.
  - 22. The computer-readable storage medium of claim 19, wherein allowing the client to forward the ticket to the server includes allowing the client to forward an identifier for the temporary secret key to the server, so that the server can know which temporary secret key to use in decrypting the ticket.
  - 23. The computer-readable storage medium of claim 19, wherein sending the message to the client in the secure manner involves encrypting the message with a second session key that was previously communicated to the client by the KDC.
  - 24. The computer-readable storage medium of claim 19, wherein the method further comprises alternatively creating the ticket to the server by encrypting the identifier for the client and the session key with one of:
    - a public key for the server; and
      
      a secret key for the server previously agreed upon between the server and the KDC and stored at the KDC.
  - 25. The computer-readable storage medium of claim 18, wherein receiving the communication from the server involves authenticating the server.
  - 26. The computer-readable storage medium of claim 25, wherein authenticating the server involves using authentication information pertaining to the server, the authentication information including a certificate chain from a trust anchor to the server, and including a server public key that is associated with a server private key to form a public key-private key pair associated with the server.
  - 27. The computer-readable storage medium of claim 25, wherein authenticating the server involves authenticating the server without having prior configuration information pertaining to the server at the KDC.
  - 28. The computer-readable storage medium of claim 25, wherein authenticating the server includes using a server public key that is stored locally in the KDC.
  - 29. The computer-readable storage medium of claim 19, wherein the communication is signed with a server private key so that the KDC can use a corresponding server public key to verify that the communication was sent by the server.
  - 30. The computer-readable storage medium of claim 18, wherein the communication is received in response to a request being sent by the KDC to the server indicating that the temporary secret key is needed from the server.
  - 31. The computer-readable storage medium of claim 18, wherein the method further comprises communicating information to the server that enables the server to authenticate the KDC.
  - 32. The computer-readable storage medium of claim 18, wherein the KDC operates in accordance with the Kerberos standard.
  - 33. The computer-readable storage medium of claim 18, wherein the communication received from the server additionally includes an identifier for the server.
  - 34. The computer-readable storage medium of claim 18, wherein the method further comprises propagating the temporary secret key to multiple KDCs.

35. An apparatus that provides keys to facilitate secure communications between clients and servers across a computer network, wherein the apparatus operates without having to store long-term server secrets, comprising:
- a key distribution center (KDC);
  
  a receiving mechanism within the KDC that is configured to receive a communication from a server;
  
  wherein the communication includes a temporary secret key to be used in communications with the server for a limited time period, and wherein the temporary secret key is shared between the server and the KDC; and
  
  a storage mechanism within the KDC that is configured to store the temporary secret key in a database at the KDC, so that the temporary secret key can be subsequently used to facilitate one or more communications between a client and the server, wherein the temporary secret key is encrypted with a public key belonging to the KDC, so that the temporary secret key can only be decrypted using a private key belonging to the KDC;
  
  wherein the temporary secret key is a short-term secret which becomes invalid after a short time period; and
  
  wherein the server generates a new temporary secret key in response to a request from the KDC for a new temporary secret key to replace the invalid temporary secret key.
- View Dependent Claims (36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51)
- - 36. The apparatus of claim 35, further comprising a communication facilitation mechanism within the KDC, wherein upon receiving a request from the client to communicate with the server, the communication facilitation mechanism is configured to:
    - produce a session key to be used in communications between the client and server;
      
      create a ticket to the server by encrypting an identifier for the client and the session key with the temporary secret key for the server;
      
      assemble a message that includes the identifier for the server, the session key and the ticket to the server;
      
      send the message to the client in a secure manner; and
      
      toallow the client to forward the ticket to the server in order to initiate communications between the client and the server.
  - 37. The apparatus of claim 36, further comprising a mechanism within the server that is configured to:
    - decrypt the ticket received from the client using the temporary secret key to restore the session key and the identifier for the client; and
      
      touse the session key to protect subsequent communications between the server and the client.
  - 38. The apparatus of claim 36, wherein the communication facilitation mechanism is configured to include an expiration time for the session key in the message.
  - 39. The apparatus of claim 36, wherein the client is configured to additionally forward an identifier for the temporary secret key to the server, so that the server can know which temporary secret key to use in decrypting the ticket.
  - 40. The apparatus of claim 36, wherein in sending the message to the client in the secure manner, the communication facilitation mechanism is configured to encrypt the message with a second session key that was previously communicated to the client by the KDC.
  - 41. The apparatus of claim 36, wherein the communication facilitation mechanism is configured to alternatively create the ticket to the server by encrypting the identifier for the client and the session key with one of:
    - a public key for the server; and
      
      a secret key for the server previously agreed upon between the server and the KDC and stored at the KDC.
  - 42. The computer-readable storage medium of claim 35, further comprising an authentication mechanism that is configured to authenticate the server.
  - 43. The apparatus of claim 42, wherein in authenticating the server, the authentication mechanism is configured to use authentication information pertaining to the server, the authentication information including a certificate chain from a trust anchor to the server, and including a server public key that is associated with a server private key to form a public key-private key pair associated with the server.
  - 44. The apparatus of claim 42, wherein in authenticating the server the authentication mechanism is configured to operate without having prior configuration information pertaining to the server at the KDC.
  - 45. The apparatus of claim 42, wherein in authenticating the server, the authentication mechanism is configured to use a server public key that is stored locally in the KDC.
  - 46. The apparatus of claim 35, wherein the communication is signed with a server private key so that the KDC can use a corresponding server public key to verify that the communication was sent by the server.
  - 47. The apparatus of claim 35, further comprising a requesting mechanism within the KDC that is configured to send a request to the server indicating that the temporary secret key is needed from the server.
  - 48. The apparatus of claim 35, further comprising a sending mechanism that is configured to send information to the server that enables the server to authenticate the KDC.
  - 49. The apparatus of claim 35, wherein the KDC is configured to operate in accordance with the Kerberos standard.
  - 50. The apparatus of claim 35, wherein the communication received from the server additionally includes an identifier for the server.
  - 51. The apparatus of claim 35, wherein the storage mechanism is additionally configured to communicate the temporary secret key to multiple KDCs.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle America, Inc. (Oracle Corporation)
Original Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Inventors
Perlman, Radia J., Hanna, Stephen R.
Primary Examiner(s)
Moise; Emmanuel L.
Assistant Examiner(s)
CALLAHAN, PAUL E

Application Number

US09/691,278
Time in Patent Office

2,814 Days
Field of Search

713/155, 713/156, 713/164, 713/170, 713/176, 380/30, 380/259, 380/282, 380/279, 380/285, 726/5, 726/6, 726/10, 726/30
US Class Current

726/10
CPC Class Codes

H04L 9/0825   using asymmetric-key encryp...

H04L 9/083   involving central third par...

H04L 9/3213   using tickets or tokens, e....

H04L 9/3265   using certificate chains, t...

Method and apparatus for providing a key distribution center without storing long-term server secrets

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

51 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for providing a key distribution center without storing long-term server secrets

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

51 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links