Secure delegation using public key authorization
First Claim
Patent Images
1. A method of impersonating a client to a plurality of servers, comprising:
- obtaining by a middle tier server, a common nonce that is created based at least in part upon a pre-nonce contribution from each of a plurality of back-end servers, wherein the common nonce is generated front an entity other than the client that the middle tier server is to impersonate or the plurality of back-end servers that the middle tier server is to interact with on behalf of the client;
receiving by the middle tier server, a request from the client for a transaction with at least one of yhe plurality of back-end servers;
providing the common nonce from the middle tier server to the client;
receiving the common nonce signed by the client with the client'"'"'s digital signature at the middle-tier server; and
impersonating the client by the middle tier server interacting with a selected one of the plurality of back-end servers for implementation of the client request on behalf of the client by providing the signed common nonce and the client request from the middle tier server to at least one of the plurality of back-end servers so as to authenticate the client to the plurality of servers for implementation of the client request on behalf of the client.
1 Assignment
0 Petitions
Accused Products
Abstract
A client is impersonated to a plurality of servers using a middle-tier server. A common nonce associated with each of the plurality of servers is obtained and the common nonce is provided to the client. The common nonce signed by the client is received at the middle-tier server and provided as a signature for transactions from the client to the plurality of servers so as to authenticate the client to the plurality of servers.
-
Citations
25 Claims
-
1. A method of impersonating a client to a plurality of servers, comprising:
-
obtaining by a middle tier server, a common nonce that is created based at least in part upon a pre-nonce contribution from each of a plurality of back-end servers, wherein the common nonce is generated front an entity other than the client that the middle tier server is to impersonate or the plurality of back-end servers that the middle tier server is to interact with on behalf of the client; receiving by the middle tier server, a request from the client for a transaction with at least one of yhe plurality of back-end servers; providing the common nonce from the middle tier server to the client; receiving the common nonce signed by the client with the client'"'"'s digital signature at the middle-tier server; and impersonating the client by the middle tier server interacting with a selected one of the plurality of back-end servers for implementation of the client request on behalf of the client by providing the signed common nonce and the client request from the middle tier server to at least one of the plurality of back-end servers so as to authenticate the client to the plurality of servers for implementation of the client request on behalf of the client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
Specification