| 摘要 |
Method for managing appliance authentication. In one embodiment, the method comprises generating, by a server, a first secret and a second secret from a certificate; transmitting from the server to a client computer, via a first channel secured and trusted based on a trusted computer, the first secret and the second secret; presenting the certificate to an appliance in response to a secure channel request from the appliance, wherein the appliance is holding the first secret; receiving, from the appliance, a description of a second channel, via the appliance, between the client computer and the server; establishing a trust in the second channel based on the description; and transmitting, in response to the trust in the second channel, via the second channel, channel information that comprises a portion of the description signed by the second secret. |
| 主权项 |
1. A method of establishing trusted inter-computer communications, comprising:
initiating, by a server, an establishment of a first leg of a first trusted channel with a trusted computer based on a verifiable certificate of the trusted computer; initiating, by a client computer, an establishment of a second leg of the first trusted channel with the trusted computer based on the verifiable certificate; transmitting, by the server, to the client computer, via the first trusted channel, a first secret and a second secret generated from a self-signed certificate of the server; initiating, by the client computer, a first leg of a second trusted channel to the server, by addressing a packet with an Internet Protocol address of the server, wherein an Authorized Intermediary Appliance (AIM) identifies the packet as associated with the first leg of the second trusted channel and terminates the first leg of the second trusted channel, and wherein the AIM is authorized based on a second verifiable certificate of the AIM, the first secret shared with the AIM; establishing a trust, by the AIM, of a second leg of the second trusted channel based on the server presenting the self-signed certificate, verifiable by the first secret, to the AIM; establishing a trust, by the server, of the second trusted channel based on receiving the second secret via the second trusted channel, wherein establishing the trust by the server comprises verifying version information for the client computer against separately held session tags; and establishing a trust, by the client computer, of the second trusted channel based on receiving, from the server, a description of the second trusted channel, wherein the description comprises i) a path description of a path between the client computer and the server and ii) version information for the client computer signed by the second secret and iii) version information for the AIM. |
