Device independent authentication system and method
DCFirst Claim
1. A method comprising:
- receiving, by a computer based system for initiating a secure communication session, a http request file and browser identification data, wherein the http request file includes client agent data and communication device model data;
analyzing, by the computer based system, the browser identification data to selectively grant access to proceed based upon a determination that a device sending the http request file is a supported type of device;
at least one of by the computer based system, comparing the client agent data to authorized client agents, or comparing the communication device model data to authorized communication device models on an associated database; and
based on the comparing, at least one of;
configure, grant, or deny access, by the computer based system, to the host web server.
4 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A system is disclosed which facilitates authentication processes with web-enabled wireless devices, including those that do not support the use of cookie files. To facilitate such authentication, a web server analyzes an HTTP request file from a communication device for the presence of security token data. Where none is found, a client is directed to a login page for input of authentication data, such as a user name and password information. Upon proper authentication, the client'"'"'s communication device is issued a security token using standard HTML-INPUT tags. Thereafter, the web server determines if each additional HTTP request file received from the client includes a security token before responding to the request.
-
Citations
20 Claims
-
1. A method comprising:
-
receiving, by a computer based system for initiating a secure communication session, a http request file and browser identification data, wherein the http request file includes client agent data and communication device model data; analyzing, by the computer based system, the browser identification data to selectively grant access to proceed based upon a determination that a device sending the http request file is a supported type of device; at least one of by the computer based system, comparing the client agent data to authorized client agents, or comparing the communication device model data to authorized communication device models on an associated database; and based on the comparing, at least one of;
configure, grant, or deny access, by the computer based system, to the host web server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. An article of manufacture including a non-transitory, tangible computer readable storage medium having instructions stored thereon that, in response to execution by a computer-based system for initiating a secure communication session, cause the computer-based system to perform operations comprising:
-
receiving, by the computer based system, a http request file and browser identification data, wherein the http request file includes client agent data and communication device model data; analyzing, by the computer based system, the browser identification data to selectively grant access to proceed based upon a determination that a device sending the http request file is a supported type of device; at least one of by the computer based system, comparing the client agent data to authorized client agents, or comparing the communication device model data to authorized communication device models on an associated database; and based on the comparing, at least one of;
configure, grant, or deny access, by the computer based system, to the host web server. - View Dependent Claims (18, 19)
-
-
20. A system comprising:
-
a processor for initiating a secure communication session, a tangible, non-transitory memory configured to communicate with the processor, the tangible, non-transitory memory having instructions stored thereon that, in response to execution by the processor, cause the processor to perform operations comprising; receiving, by the processor, a http request file and browser identification data, wherein the http request file includes client agent data and communication device model data; analyzing, by the processor, the browser identification data to selectively grant access to proceed based upon a determination that a device sending the http request file is a supported type of device; at least one of, by the processor, comparing the client agent data to authorized client agents, or comparing the communication device model data to authorized communication device models on an associated database; and based on the comparing, at least one of;
configure, grant, or deny access, by the processor, to the host web server.
-
Specification