发明名称 |
AUTHENTICATION OF A CLIENT DEVICE BASED ON ENTROPY FROM A SERVER OR OTHER DEVICE |
摘要 |
Methods and systems for authenticating a client device using entropy provided by a server and/or a device paired with the client device are described herein. The system may generate static entropy and time-limited entropy based on data from the server and/or the paired device. The static and time-limited entropy may be used to authenticate the client device (application or a user of the client device) in addition to authentication credentials or entropy such as a PIN or password provided by the user. The time-limited entropy may have an expiration time. If the time-limited entropy is expired, the system may request the user to perform a hard authentication with the server, such as by providing a username, password, and/or optionally a two-factor authentication code, among other information. |
申请公布号 |
US2016308858(A1) |
申请公布日期 |
2016.10.20 |
申请号 |
US201514687737 |
申请日期 |
2015.04.15 |
申请人 |
Citrix Systems, Inc. |
发明人 |
Nordstrom Ola;Momchilov Georgy;Gaylor Timothy |
分类号 |
H04L29/06;H04L9/32;G06F21/31 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
1. A method comprising:
receiving a request from a client device for time-limited entropy generated by a server, wherein the time-limited entropy comprises an expiration time, and wherein the time-limited entropy is usable to access a static entropy generated by the server; determining whether a current time exceeds the expiration time of the time-limited entropy; and if the current time does not exceed the expiration time of the time-limited entropy, sending the time-limited entropy to the client device. |
地址 |
Fort Lauderdale FL US |