Method for PC client security authentication
First Claim
1. A security authentication method for a PC client, comprising:
- sending by the PC client a registry request to a user server with a user ID and a password;
performing, by the user server, a first authentication based on the user ID and the password, if the first authentication being successful, creating a field used for re-authentication and returning the field to the PC client through an authentication successful message;
when initiating a call each time, transmitting, by the PC client, the user ID and the field returned by the user server as well as a calling number and a called number to a service server;
transferring, by the service server, a request for re-authentication including the user ID and the field as well as the calling number and the called number to the user server each time the service server receives a call from the PC client;
performing, by the user server, a second authentication based on the user ID and the field each time the user server receives the request for re-authentication, and if the second authentication fails, rejecting the call, otherwise accepting the call and returning information of a called subscriber to the service server; and
accepting, by the service server after the second authentication, the call and establishing the call.
1 Assignment
0 Petitions
Accused Products
Abstract
A security authentication for PC client is provided according to the present invention, wherein said method includes: PC client sends a registry request to a server with a user ID and a password; The server makes first authentication based on the user ID and password, if the authentication succeeds, a field used for re-authentication will be created and returned to the PC client through an authentication successful message; When initiating a call, the PC client transmits the user ID and the field used for re-authentication acquired when registered to media gateway controller; The media gateway controller transfers the user ID and field used for re-authentication to the server, which makes second authentication according to the user ID and the field used for the second authentication, if the authentication fails, the call will be rejected, otherwise the call will be accepted and returns information of the called subscriber. The present invention successfully associates call and subscriber registry together, preferably solves security problems of the having registered legal PC subscriber and largely improves security performance when the subscriber uses the resources.
-
Citations
5 Claims
-
1. A security authentication method for a PC client, comprising:
-
sending by the PC client a registry request to a user server with a user ID and a password;
performing, by the user server, a first authentication based on the user ID and the password, if the first authentication being successful, creating a field used for re-authentication and returning the field to the PC client through an authentication successful message;when initiating a call each time, transmitting, by the PC client, the user ID and the field returned by the user server as well as a calling number and a called number to a service server; transferring, by the service server, a request for re-authentication including the user ID and the field as well as the calling number and the called number to the user server each time the service server receives a call from the PC client; performing, by the user server, a second authentication based on the user ID and the field each time the user server receives the request for re-authentication, and if the second authentication fails, rejecting the call, otherwise accepting the call and returning information of a called subscriber to the service server; and accepting, by the service server after the second authentication, the call and establishing the call. - View Dependent Claims (2, 3, 4, 5)
-
Specification
-
- Resources
-
Current AssigneeHuawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
-
Original AssigneeHuawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
-
InventorsWang, Xiaolan, Gan, Quan, Lin, Haitao, Chen, Shuiyang
-
Primary Examiner(s)Moise; Emmanuel L
-
Assistant Examiner(s)GERGISO, TECHANE
-
Application NumberUS10/491,093Publication NumberTime in Patent Office2,272 DaysField of Search726/5, 713/168, 380/258US Class Current726/5CPC Class CodesH04L 2463/081 applying self-generating cr...H04L 63/083 using passwords cryptograph...
