Method and system for authenticating a requestor without providing a key
First Claim
Patent Images
1. A method for authenticating a requesting entity in a subnet communications environment, the method comprising:
- determining a client identification of a client node associated with the requesting entity by receiving a source identifier from said requesting entity and associating said source identifier with one or more permanent identifiers of said client node, wherein said source identifier is a source logical identifier (SLID), and said one or more permanent identifiers are one or more globally unique identifiers (GUID) of said client node;
determining whether the requesting entity associated with said client node is acting in a supervisor capacity by defining a supervisor only privileged key for each client node in the communications environment, and by determining whether a connection request received from said requested entity includes said supervisor only privileged key corresponding to said client node of said requesting entity; and
returning, from a resource provider node, a key to said requesting entity upon determining that said client identification of said client node indicates that said client node is permitted to access one or more resources of said provider node, and that said client node is acting in a supervisor capacity;
wherein said associating said SLID with one or more globally unique identifiers (GUID) of said client node further comprises;
forwarding said SLID to a subnet administrator; and
receiving, from said subnet administrator, said one or more GUIDs corresponding to said SLID.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for authenticating a requesting entity in a communications environment. In an exemplary embodiment, the method includes determining a client identification of a client node associated with the requesting entity, and determining whether the requesting entity associated with the client node is acting in a supervisor capacity. A key to the requesting entity is returned from a resource provider node upon determining that the client identification of the client node indicates that the client node is permitted to access one or more resources of the provider node, and that the client node is acting in a supervisor capacity.
-
Citations
4 Claims
-
1. A method for authenticating a requesting entity in a subnet communications environment, the method comprising:
-
determining a client identification of a client node associated with the requesting entity by receiving a source identifier from said requesting entity and associating said source identifier with one or more permanent identifiers of said client node, wherein said source identifier is a source logical identifier (SLID), and said one or more permanent identifiers are one or more globally unique identifiers (GUID) of said client node; determining whether the requesting entity associated with said client node is acting in a supervisor capacity by defining a supervisor only privileged key for each client node in the communications environment, and by determining whether a connection request received from said requested entity includes said supervisor only privileged key corresponding to said client node of said requesting entity; and returning, from a resource provider node, a key to said requesting entity upon determining that said client identification of said client node indicates that said client node is permitted to access one or more resources of said provider node, and that said client node is acting in a supervisor capacity; wherein said associating said SLID with one or more globally unique identifiers (GUID) of said client node further comprises; forwarding said SLID to a subnet administrator; and receiving, from said subnet administrator, said one or more GUIDs corresponding to said SLID. - View Dependent Claims (2, 3, 4)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeInternational Business Machines Corporation
-
Original AssigneeInternational Business Machines Corporation
-
InventorsPfister, Gregory F., Brey, Thomas M., Rooney, William J., Frazier, Giles R.
-
Primary Examiner(s)Hu; Jinsong
-
Application NumberUS10/987,280Publication NumberTime in Patent Office1,432 DaysField of Search709/223, 709/224, 709/225, 709/226, 380/228, 380/229, 713/171, 726/17, 726/21US Class Current709/223CPC Class CodesG06F 2221/2105 Dual mode as a secondary as...G06F 2221/2129 Authenticate client device ...H04L 61/00 Network arrangements, proto...H04L 63/06 for supporting key manageme...H04L 63/08 for authentication of entit...H04L 67/1097 for distributed storage of ...H04L 69/329 in the application layer [O...
