×

Session ticket authentication scheme

  • US 7,747,856 B2
  • Filed: 07/24/2003
  • Issued: 06/29/2010
  • Est. Priority Date: 07/26/2002
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method comprising:

  • intercepting at an agent residing on a processor-controlled server a first request to grant a web service customer access to a first web service, the agent residing between the web service customer and the first web service and between the web service customer and a second web service;

    collecting at the agent one or more authentication credentials of the web service customer;

    determining at the agent whether the web service customer is authenticated and authorized;

    if the web service customer is authenticated and authorized, at the agent;

    granting the first request;

    initiating creation of a session and a session ticket;

    obtaining a session ticket ID for the session ticket; and

    encrypting the session ticket ID and a public key into an assertion;

    intercepting at the agent a second request to grant the web service customer access to the second web service, the second request comprising the assertion and a signature associated with a private key; and

    if the private key matches the public key in the assertion, granting at the agent the second request without reauthenticating or reauthorizing the web service customer.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×