KERBEROS PREAUTHENTICATION WITH J-PAKE,申请号US201514950701-传众专利搜索

发明名称	KERBEROS PREAUTHENTICATION WITH J-PAKE
摘要	A method relates to receiving, by an authentication server executed by a processing device, an authentication request from a client device via a public network, wherein the authentication request comprises a user identifier associated with a password, selecting a first private key of the authentication server from a first range of numbers and a second private key of the authentication server from a second range of numbers, wherein an upper limit of the first range and the second range is specified according to a prime number, receiving, from the client device, a first public key of the client device and a second public key of the client device, calculating a third private key of the authentication server in view of the second private key of the authentication server and a numerical value of the password, receiving, from the client device, a third public key of the client device, calculating a session key of the authentication server in view of the second public key of the client device, the third public key of the client device, and the third private key of the authentication server, and validating the session key.
申请公布号	US2016315772(A1)	申请公布日期	2016.10.27
申请号	US201514950701	申请日期	2015.11.24
申请人	Red Hat, Inc.	发明人	McCallum Nathaniel
分类号	H04L9/32;H04L9/08	主分类号	H04L9/32
代理机构		代理人
主权项	1. A method comprising: receiving, by an authentication server executed by a processing device, an authentication request from a client device via a public network, wherein the authentication request comprises a user identifier associated with a password; selecting a first private key of the authentication server from a first range of numbers and a second private key of the authentication server from a second range of numbers, wherein an upper limit of the first range and the second range is specified according to a prime number; receiving, from the client device, a first public key of the client device and a second public key of the client device; calculating a third private key of the authentication server in view of the second private key of the authentication server and a numerical value of the password; receiving, from the client device, a third public key of the client device; calculating a session key of the authentication server in view of the second public key of the client device, the third public key of the client device, and the third private key of the authentication server; and validating the session key.
地址	Raleigh NC US