| 发明名称 | Method for authenticated communications incorporating intermediary appliances | ||
| 摘要 | Method for managing appliance authentication. In one embodiment, the method comprises generating, by a server, a first secret and a second secret from a certificate; transmitting from the server to a client computer, via a first channel secured and trusted based on a trusted computer, the first secret and the second secret; presenting the certificate to an appliance in response to a secure channel request from the appliance, wherein the appliance is holding the first secret; receiving, from the appliance, a description of a second channel, via the appliance, between the client computer and the server; establishing a trust in the second channel based on the description; and transmitting, in response to the trust in the second channel, via the second channel, channel information that comprises a portion of the description signed by the second secret. | ||
| 申请公布号 | US9077709(B1) | 申请公布日期 | 2015.07.07 |
| 申请号 | US201313755370 | 申请日期 | 2013.01.31 |
| 申请人 | Teradici Corporation | 发明人 | Dall William John;Klassen Arthur Neil |
| 分类号 | H04L29/06 | 主分类号 | H04L29/06 |
| 代理机构 | Moser Taboada | 代理人 | Moser Taboada |
| 主权项 | 1. A method of establishing trusted inter-computer communications comprising: generating, by a server, a first secret and a second secret from a certificate; transmitting from the server to a client computer, via a first channel secured and trusted based on a trusted computer, the first secret and the second secret; presenting the certificate to an appliance in response to a secure channel request from the appliance, wherein the appliance is holding the first secret; receiving, from the appliance, a description of a second channel between the client computer and the server, wherein the second channel is via the appliance and the description comprises i) a path description of a path between the client computer and the server and ii) version information for the client computer signed by the second secret and iii) version information for the appliance; establishing, by the server, a trust in the second channel by verifying the version information for the client computer against separately held session tags; and transmitting, from the server to the client computer, in response to the trust in the second channel, via the second channel, channel information that comprises a portion of the description signed by the second secret. | ||
| 地址 | Burnaby, British Columbia CA | ||