×

Server pool Kerberos authentication scheme

  • US 8,984,613 B2
  • Filed: 01/05/2007
  • Issued: 03/17/2015
  • Est. Priority Date: 10/28/2003
  • Status: Active Grant
First Claim
Patent Images

1. An apparatus comprising:

  • one or more processing devices;

    one or more non-transitory computer readable media having executable instructions thereon that, in response to execution of the instructions by the one or more processing devices, cause the apparatus to;

    authenticate, with an authentication service of the apparatus, whether a client device is eligible to access a key distributor;

    issue to the client device, with the authentication service, a grant ticket if the client device is authenticated;

    accept, with a ticket granting service of the apparatus, the grant ticket from the client device;

    determine, with the ticket granting service, whether a plurality of servers are available to provide the requested network service;

    generate, with the ticket granting service, an unencrypted session key;

    encrypt, with the ticket granting service, a text with the unencrypted session key;

    determine, with the ticket granting service, a number of servers available to provide the network service requested by the client device;

    for each determined server, encrypt, with the ticket granting service, the unencrypted session key with a secret key of the corresponding server;

    create, with the ticket granting service, a service ticket that includes the encrypted text and the plurality of encrypted session keys associated with respective ones of the plurality of servers; and

    transmit, with the ticket granting service, the service ticket to the client device.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×