Method and system for authentication in a computer network
First Claim
Patent Images
1. A method for authentication in a computer network, comprising:
- transmitting a get_authToken message from a Universal Discovery Description and Integration (UDDI) client to a UDDI server, the get_authToken message specified in a UDDI standard as a single interaction that does not include an explicit challenge-response request, the get_authToken message requesting authentication information from the server, the get_authToken message comprising user information with at least one error in the user information, the error provided by the UDDI client specifically to trigger a challenge-response exchange with the UDDI server to request the authentication information, the challenge-response exchange providing the security of multiple interactions with the UDDI server using a mechanism specified as a single interaction, the challenge-response exchange comprising;
receiving a second message from the UDDI server in response to the get_authToken message, the second message comprising an error message and a nonce;
encrypting the nonce;
transmitting a second get_authToken message to the server in response to the second message, the second get_authToken message comprising non-erroneous and complete user information and the encrypted nonce; and
receiving authentication information from the server in response to the second get_authToken message; and
wherein the user information comprises user information with at least one username present and at least one missing password.
2 Assignments
0 Petitions
Accused Products
Abstract
Method and system for authentication in a computer network is provided. A first message from a client to a server is transmitted, where the first message includes erroneous user information. In response to the first message, a second message is transmitted from the server to the client, where the second message includes an error message and a nonce. The client transmits a third message to the server in response to the second message, where the third message includes non-erroneous user information and the nonce. The server then provides authentication in response to the client'"'"'s third message.
-
Citations
13 Claims
-
1. A method for authentication in a computer network, comprising:
-
transmitting a get_authToken message from a Universal Discovery Description and Integration (UDDI) client to a UDDI server, the get_authToken message specified in a UDDI standard as a single interaction that does not include an explicit challenge-response request, the get_authToken message requesting authentication information from the server, the get_authToken message comprising user information with at least one error in the user information, the error provided by the UDDI client specifically to trigger a challenge-response exchange with the UDDI server to request the authentication information, the challenge-response exchange providing the security of multiple interactions with the UDDI server using a mechanism specified as a single interaction, the challenge-response exchange comprising; receiving a second message from the UDDI server in response to the get_authToken message, the second message comprising an error message and a nonce; encrypting the nonce; transmitting a second get_authToken message to the server in response to the second message, the second get_authToken message comprising non-erroneous and complete user information and the encrypted nonce; and receiving authentication information from the server in response to the second get_authToken message; and wherein the user information comprises user information with at least one username present and at least one missing password. - View Dependent Claims (2, 3, 4)
-
-
5. A system for authentication in a computer network, comprising:
-
a system for transmitting a get_authToken message from a Universal Discovery Description and Integration (UDDI) client to a UDDI server, the get_authToken message specified in a UDDI standard as a single interaction that does not include an explicit challenge-response request, the get_authToken message requesting authentication information from the server, the get_authToken message comprising user information with at least one error in the user information, the error provided by the UDDI client specifically to trigger a challenge-response exchange with the UDDI server to request the authentication information, the challenge-response exchange providing the security of multiple interactions with the UDDI server using a mechanism specified as a single interaction, the challenge-response exchange comprising; a system for receiving a second message from the UDDI server in response to the get_authToken message, the second message comprising an error message and a nonce; a system for encrypting the nonce; a system for transmitting a second get_authToken message to the server in response to the second message, the second get_authToken message comprising non-erroneous and complete user information and the encrypted nonce; and a system for receiving authentication information from the server in response to the second get_authToken message; and wherein the user information comprises user information with at least one username present and at least one missing password. - View Dependent Claims (6, 7, 8)
-
-
9. A computer readable storage medium including computer executable code for authentication in a computer network, comprising:
-
code for transmitting a get_authToken message from a Universal Discovery Description and Integration (UDDI) client to a UDDI server, the get_authToken message specified in a UDDI standard as a single interaction that does not include an explicit challenge-response request, the get_authToken message requesting authentication information from the server, the get_authToken message comprising user information with at least one error in the user information, the error provided by the UDDI client specifically to trigger a challenge-response exchange with the UDDI server to request the authentication information, the challenge-response exchange providing the security of multiple interactions with the UDDI server using a mechanism specified as a single interaction, the challenge-response exchange comprising; code for receiving a second message from the UDDI server in response to the get_authToken message, the second message comprising an error message and a nonce; code for encrypting the nonce; code for transmitting a second get_authToken message to the server in response to the second message, the second get_authToken message comprising non-erroneous and complete user information and the encrypted nonce; and code for receiving authentication information from the server in response to the second get_authToken message; and wherein the user information comprises user information with at least one username present and at least one missing password. - View Dependent Claims (10, 11, 12)
-
-
13. A method for authentication in a computer network, comprising:
-
receiving correct user information; transmitting to a UDDI server a first message requesting authentication information from the server, the first message comprising user information with at least one error in the user information provided by a client, the error provided by the client specifically to trigger a challenge-response exchange with the UDDI server to request the authentication information, the challenge-response exchange comprising; receiving a second message from the UDDI server in response to the first message, the second message comprising an error message and a nonce; encrypting the nonce; transmitting a third message to the server in response to the second message, the third message comprising non-erroneous and complete user information and the encrypted nonce; and receiving authentication information from the server in response to the third message; and wherein the user information comprises user information with at least one username present and at least one missing password.
-
Specification