Authentication method, system, server, and client
First Claim
1. An authentication method based on the Data Synchronization (DS) protocol, comprising:
- receiving, by a client device, a trigger message sent from a server, wherein the trigger message includes;
a session ID identifying a session to be triggered, and a first digest;
authenticating, by the client device, the first digest of the trigger message using a server nonce stored in the client device;
re-authenticating, by the client device, the first digest of the trigger message using the session ID if the authentication fails; and
sending, by the client device, a session request, wherein the session request includes the session ID and a second digest generated using a client nonce, to the server.
0 Assignments
0 Petitions
Accused Products
Abstract
An authentication method is disclosed herein. The method includes: by a server, using a Trigger message nonce to generate a Trigger message, and sending the generated Trigger message to a client so that the client can extract the Trigger message nonce; after determining that the Trigger message nonce is valid, using the Trigger message nonce to generate a digest, and authenticating the Trigger message generated by using the Trigger message nonce; after the authentication succeeds, sending a session request to the server indicated by the Trigger message, where the session request carries a session ID. The corresponding system, server and client are disclosed herein. The present invention makes the authentication process more secure through the client and the server based on the DS or DM protocol.
-
Citations
10 Claims
-
1. An authentication method based on the Data Synchronization (DS) protocol, comprising:
-
receiving, by a client device, a trigger message sent from a server, wherein the trigger message includes;
a session ID identifying a session to be triggered, and a first digest;authenticating, by the client device, the first digest of the trigger message using a server nonce stored in the client device; re-authenticating, by the client device, the first digest of the trigger message using the session ID if the authentication fails; and sending, by the client device, a session request, wherein the session request includes the session ID and a second digest generated using a client nonce, to the server. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A client device, comprising:
-
a receiving unit, configured to receive a trigger message sent from a server, wherein the trigger message includes;
a session ID identifying a session to be triggered, and a first digest; anda generating unit, configured to authenticate the first digest of the trigger message using a server nonce stored in the client device, re-authenticate the first digest of the trigger message using the session ID if the authentication fails, and send a session request, wherein the session request includes the session ID and a second digest generated using a client nonce, to the server. - View Dependent Claims (7, 8, 9, 10)
-
Specification