| 发明名称 | Authenticating cloud computing enabling secure services | ||
| 摘要 | Authenticating cloud computing enabling secure services (ACCESS) offloads “client authentication” activity onto a third-party authenticating cloud computing enabling secure services (ACCESS) node. Instead of having a client device authenticate itself directly to a network server, the client device instead authenticates itself to a third-party authenticating cloud computing enabling secure services (ACCESS) node. The authenticating cloud computing enabling secure services (ACCESS) node then provides credentials that are used by the client device to communicate directly with the server (and utilize the service) without any further authentication being necessary. | ||
| 申请公布号 | US9479503(B2) | 申请公布日期 | 2016.10.25 |
| 申请号 | US201514971104 | 申请日期 | 2015.12.16 |
| 申请人 | Telecommunications Systems, Inc. | 发明人 | Griffin John L.;McFarland Keith A.;Wells William P. |
| 分类号 | H04L29/06;H04L9/32 | 主分类号 | H04L29/06 |
| 代理机构 | Tarolli, Sundheim, Covell & Tummino LLP | 代理人 | Tarolli, Sundheim, Covell & Tummino LLP |
| 主权项 | 1. A method of pre-authenticating a client device for direct access to a cloud-based secure service, comprising: receiving a registration message from a client device, at an access node separate from a cloud-based secure service server, said registration message being encrypted using a cryptographic key, wherein said registration message comprises a unique service instance identifier; passing a pre-authorized authentication token together with a redirect to said client device, said pre-authorized authentication token for provision by said client device directly to said cloud-based secure service server without passage through said access node, wherein said pre-authorized authorization token comprises a set of key-value pairs containing credentials for said client device; providing a notification, when authenticated, from said access node to said cloud-based secure service server, said notification identifying said client device; providing said cloud-based secure service server with a list of security items to enforce; and receiving a request at said access node, from said cloud-based secure service server, to verify validity of said pre-authorized authentication token received by said cloud-based secure service server from said client device; whereby said client device directly provides said pre-authorized authorization token to said cloud-based secure service server bypassing said access node to directly access said cloud-based secure service server. | ||
| 地址 | Annapolis MD US | ||