Authentication of untrusted gateway without disclosure of private information

US 8,261,070 B2
Filed: 04/23/2004
Issued: 09/04/2012
Est. Priority Date: 04/23/2004
Status: Active Grant

First Claim

Patent Images

1. A method for authorizing use of a server on a mobile platform without providing the server with sensitive information, said method comprising:

providing a local server having no encryption capabilities and no decryption capabilities;

establishing a secure authorization link between a user interface and a remote authorization server utilizing a user interface web browser, the local server being configured between the user interface and the remote authorization server such that all communications between the user interface and the remote authorization, including the authorization link, are required to pass through the local server, and where the authorization link is unreadable by the local server;

sending user authorization data from the user interface to the authorization server, via the authorization link, and through the local server without any encryption or modification of the user authorization data by the local server, and by utilizing the user interface web browser;

returning a redirected validation message from the authorization server through the local server to the user interface, via the authorization link, with the redirected validation message being unreadable by the local server, the redirected validation message further including a uniform resource locator (URL) that includes information useable by the local server to permit or deny access to a requested service;

using the redirected validation message to provide an instruction to the user interface that causes the user interface to automatically forward the redirected validation message back to the local server, the redirected validation message including data for authorizing use of the local server by the user interface to enable the user interface to access the requested service; and

using the local server to receive the forwarded, redirected validation message, which causes the local server to establish an unsecured local link between the user interface and the local server based on the data included in the redirected validation message, the local link established utilizing the user interface web browser, and the local server adapted to read only unencrypted communications received from the user interface.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method provides user authorization for use of a server without providing the server with sensitive user information. A secure authorization link is established between a user interface and a remote authentication server. The authorization link passes through a local server while being unreadable by the local server. User authorization data is sent from the user interface to the authorization server, via the authorization link. The authorization server then returns a redirected validation message to the user interface, via the authorization link. A local link is established between the user interface and the local server based on data included in the redirected validation message. All communication between the user interface, the local server and authorization server is performed utilizing the user interface web browser. Thus, authorization for use of services controlled by the local server is accomplished without the need to load specialized software on the user interface for establishing such links and performing such communications.

29 Citations

View as Search Results

35 Claims

1. A method for authorizing use of a server on a mobile platform without providing the server with sensitive information, said method comprising:
- providing a local server having no encryption capabilities and no decryption capabilities;
  
  establishing a secure authorization link between a user interface and a remote authorization server utilizing a user interface web browser, the local server being configured between the user interface and the remote authorization server such that all communications between the user interface and the remote authorization, including the authorization link, are required to pass through the local server, and where the authorization link is unreadable by the local server;
  
  sending user authorization data from the user interface to the authorization server, via the authorization link, and through the local server without any encryption or modification of the user authorization data by the local server, and by utilizing the user interface web browser;
  
  returning a redirected validation message from the authorization server through the local server to the user interface, via the authorization link, with the redirected validation message being unreadable by the local server, the redirected validation message further including a uniform resource locator (URL) that includes information useable by the local server to permit or deny access to a requested service;
  
  using the redirected validation message to provide an instruction to the user interface that causes the user interface to automatically forward the redirected validation message back to the local server, the redirected validation message including data for authorizing use of the local server by the user interface to enable the user interface to access the requested service; and
  
  using the local server to receive the forwarded, redirected validation message, which causes the local server to establish an unsecured local link between the user interface and the local server based on the data included in the redirected validation message, the local link established utilizing the user interface web browser, and the local server adapted to read only unencrypted communications received from the user interface.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The method of claim 1, wherein the method further comprises providing a user access to a requested service controlled by the local server once the local link is established.
  - 3. The method of claim 1, wherein the method further comprises sending data from the local server to the authorization server via the secure authorization link.
  - 4. The method of claim 1, wherein said establishing a secure authorization link between the user interface and the authorization server comprises sending a login notification from the local server to the user interface, the login notification utilized by a user to request access to the requested service controlled by the local server.
  - 5. The method of claim 1, wherein said returning a redirected validation message comprises validating the user authorization data utilizing the authorization server.
  - 6. The method of claim 1, wherein said establishing a local link comprises verifying the redirected message is valid using a public key of the authorization server and a digital signature attached to the redirected message.
  - 7. The method of claim 1, wherein said forwarding the redirected validation message comprises encrypting the forwarded redirected validation message.
  - 8. The method of claim 1, wherein said establishing a secure authorization link comprises establishing the authorization link absent specialized software on the user interface for establishing the authorization link.
  - 9. The method of claim 1, wherein said sending a login notification comprises sending a login page from the local server to the user interface.
  - 10. The method of claim 1, wherein said sending a login notification comprises sending a link to a login page from the local server to the user interface.
  - 11. The method of claim 1, wherein said establishing a secure authorization link comprises establishing an https session between the user interface and the authorization server.
  - 12. The method of claim 1, wherein said establishing a secure authorization link comprises providing the authorization link while blocking access to a plurality of selected Internet links.
  - 13. The method of claim 1, wherein said establishing a secure authorization link comprises sending communication identification data regarding the user interface from the local server to the authorization server.
  - 14. The method of claim 13, wherein said sending communication identification data comprises encrypting the communication identification data sent.
  - 15. The method of claim 1, wherein said establishing a secure authorization link server comprises sending user login information from the user interface to the authorization server.
  - 16. The method of claim 1, wherein said returning a redirected validation message comprises constructing an http redirected validation message using the authorization server.
  - 17. The method of claim 1, wherein returning a redirected validation message comprises constructing a script redirected validation message using the authorization server.
  - 18. The method of claim 1, wherein said returning a redirected validation message comprises sending authorization and authorized service related data from the authorization server to the local server.
  - 19. The method of claim 1, wherein said establishing the local link comprises establishing the local link while cookies are disabled within the user interface web browser.
  - 20. The method of claim 1, wherein said returning a redirected validation message comprises embedding in the redirected validation message a time stamp adapted to limit the duration the validation message is valid.

21. A communication system comprising:
- a connection port adapted to provide a connection for a user interface;
  
  a remote authorization server;
  
  a local server on a mobile platform including a local processor and a local storage device having local server (LS) software stored thereon executable by the local processor, the local server being configured between the user interface and the remote authorization server such that all communications between the user interface and the remote authorization are required to pass through the local server, and where a secure authorization link sent from the remote authorization server is unreadable by the local server and the local server is devoid of encryption and decryption capabilities, and wherein the local processor is configured to;
  
  execute the LS software to send a login notification from the local server to the user interface when the user interface is communicatively connected to the connection port, wherein the login notification is utilized by a user to make a user request that requests access to a service controlled by the local server;
  
  execute the LS software to establish the secure authorization link between the user interface and the authorization server in response to the user request, wherein the authorization link is established utilizing a user interface web browser absent other specialized software stored in the user interface for establishing the authorization link, the authorization link passing through the local server, without any encryption being applied by the local server, and being unreadable by the local server;
  
  use the authorization server to generate a redirected validation message that is sent over the authorization link back to the user interface web browser, through the local server without being read or encrypted by the local server, the redirected validation message containing user authorization data and verified utilizing a public key of the authorization server, and the redirected validation message further including a uniform resource locator (URL) that includes information useable by the local server to permit or deny access to a requested service;
  
  use the user interface web browser to recognize an instruction in the redirected validation message to forward the redirected validation message, without requiring a response by the user via the user interface web browser, back to the local server;
  
  use the local server to execute the LS software to verify the redirected validation message sent by the authorization server, the redirected validation message being verified utilizing a public key of the authorization server; and
  
  use the software to execute the LS software to establish an unsecured local link between the user interface and the local server according to the authorization data, the link established utilizing the user interface web browser absent other specialized software stored in the user interface for establishing the local link, and the local server adapted to read only unencrypted communications from the user interface.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29)
- - 22. The system of claim 21, wherein the local processor is further configured to execute the LS software to enable the user to have access to the requested service controlled by the local server, the requested service identified in the redirected validation message.
  - 23. The system of claim 21, wherein the authorization server comprises a remote processor and a remote storage device having authorization server (AS) software stored thereon executable by the remote processor, wherein the remote processor is configured to:
    - execute the AS software to validate the user authorization data sent from the user interface to the authorization server via the authorization link; and
      
      execute the AS software to return a redirected validation message to the user interface, via the authorization link, the validation message including authorization and data related to the requested service, wherein the validation message is forwarded by the user interface to the local server utilizing the user interface web browser absent other specialized software stored in the user interface for communicating with the local server.
  - 24. The system of claim 21, wherein the local processor is further configured to execute the LS software to establish the secure authorization link comprising an https session between the user interface and the authorization server.
  - 25. The system of claim 21, wherein the local processor is further configured to execute the LS software to establish the secure authorization link while blocking access to various selected Internet links.
  - 26. The system of claim 21, wherein the local processor is further configured to execute the LS software to establish the local link while cookies are disabled within the user interface web browser.
  - 27. The system of claim 21, wherein the remote processor is further configured to execute the AS software to return the redirected validation message comprising an embedded time stamp adapted to limit the duration the redirected validation message is valid.
  - 28. The system of claim 21, wherein the remote processor is further configured to execute the AS software to return the redirected validation message comprising a digital signature.
  - 29. The system of claim 28, wherein the local processor is further configured to execute the LS software to validate the authenticity of the redirected validation message using the digital signature and a private key of the authorization server.

30. A method for authorizing use of a service controlled by an onboard server of an aircraft without disclosing confidential information to the onboard server, said method comprising:
- configuring the onboard server without encryption capability and without decryption capability, and such that the onboard server is disposed between a user interface having a web browser and a remotely located ground based server;
  
  sending a login notification from the onboard server to the user interface, the login notification utilized by a user to request access to the service controlled by the onboard server;
  
  establishing a secure authorization link between the user interface and the ground based server, the authorization link being established utilizing the user interface web browser absent other specialized software stored in the user interface for establishing the authorization link, the authorization link passing through the onboard server and being unreadable by the onboard server;
  
  sending user authorization data from the user interface to the ground based server via the authorization link, the authorization data passing through the onboard server without being encrypted or read by the onboard server, and utilizing the user interface web browser absent other specialized software stored in the user interface for establishing the authorization link;
  
  validating the user authorization data utilizing the ground based server;
  
  causing the ground based server to generate and send a redirected validation message back to the user interface using the authorization link, the redirected validation message including authorization and authorized service related data including a uniform resource locator (URL) that includes information useable by the local server to permit or deny access to a requested service, the redirected validation message being transmitted within the authorization link and passing through the onboard server but being unreadable by the onboard server;
  
  including an instruction in the redirected validation message that causes the user interface web browser to automatically forward the redirected validation message, upon receipt thereof, back to the onboard server without requiring specialized software stored in the user interface for communicating with the onboard server;
  
  using the onboard server to verify that the redirected validation message received from the user interface web browser is valid by utilizing a public key of the ground based server; and
  
  establishing an unsecured local link between the user interface and the onboard server utilizing the user interface web browser absent other specialized software stored in the user interface for communicating with the onboard server, the onboard server being able to read only unencrypted communications from the user interface.
- View Dependent Claims (31, 32, 33, 34, 35)
- - 31. The method of claim 30, wherein said establishing a secure authorization link comprises establishing an https session between the user interface and the ground based server using a certificate of the ground based server.
  - 32. The method of claim 30, wherein said establishing a secure authorization link comprises providing the secure link while blocking access to a plurality of selected Internet links.
  - 33. The method of claim 30, wherein said returning a redirected validation message comprises constructing one of an http redirected validation message and a Java Script redirected validation message using the ground based server.
  - 34. The method of claim 30, wherein said establishing the local link comprises establishing the local link while cookies are disabled within the user interface web browser.
  - 35. The method of claim 30, wherein said forwarding the redirected validation message back to the onboard server comprises embedding in the redirected validation message a time stamp adapted to limit the duration the validation message is valid.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
The Boeing Co.
Original Assignee
The Boeing Co.
Inventors
Angus, Ian G, Pahm, Rosanne P, Skinner, John
Primary Examiner(s)
SHAW, YIN CHEN

Application Number

US10/831,672
Publication Number

US 20050240774A1
Time in Patent Office

3,056 Days
Field of Search

726 2- 4, 713/150, 713/168, 713/176, 709/223, 709/225
US Class Current

713/168
CPC Class Codes

H04L 63/10 for controlling access to d...

Authentication of untrusted gateway without disclosure of private information

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

29 Citations

35 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication of untrusted gateway without disclosure of private information

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

29 Citations

35 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links