×

Secure network computing

  • US 9,246,901 B2
  • Filed: 04/17/2014
  • Issued: 01/26/2016
  • Est. Priority Date: 10/22/2008
  • Status: Active Grant
First Claim
Patent Images

1. A host based security system for a computer network having a local computer and a destination site in communication therewith to eliminate substantially detection at the local computer of the input of user credentials which uniquely identify a user of the local computer wherein the destination site has associated therewith a credential authentication policy under which the user credentials when received at the destination site are authenticated with respect to registered credentials stored in association with the destination site, the system comprising:

  • a credential host being in communication with the network and having the user credentials of the user of the local computer stored thereat, wherein the credential host intercepts a request transmitted onto the network by the local computer to connect securely to the destination site and further wherein the credential host in response to intercepting the request transmits the user credentials onto the network; and

    an auxiliary device associated with the user of the local computer, the credential host having a credential authentication policy under which the user credentials upon being authenticated at the credential host authorizes the credential host to be responsive to the request received from the local computer, the auxiliary device being in communication with the credential host, the user credentials being entered at the auxiliary device and transmitted to the credential host;

    wherein the destination site upon receipt of the user credentials executes the credential authentication policy with the received user credentials and further wherein in the event the received user credentials are authenticated the destination site transmits secure session information onto the network;

    wherein the local computer upon receipt of the session information establishes a secure communication session with the destination site;

    wherein the session information is received from the network at the credential host and retransmitted therefrom to the local computer such that upon receipt of the session information at the local computer the communication session is established between the local computer and the destination site;

    wherein a computer-to-host communication session exists between the local computer and the credential host and a host-to-site communication session exists between the credential host and the destination site;

    wherein the request is transmitted from the local computer over the computer-to-host communication session and retransmitted from the credential host over the host-to-site communication session; and

    wherein the local computer includes a proxy controlled by the credential host such that data communicated between the local computer and the destination during the communication session is routed through the credential host.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×