AUTHENTICATING A USER DEVICE TO ACCESS SERVICES BASED ON A DEVICE ID

摘要

A first device may receive a first session token from a second device; determine that the first session token is expired or invalid; provide a security input to the second device to cause the second device to generate a first hash value of the security input using a key corresponding to a key identifier (ID); receive the key ID and the first hash value from the second device; generate a second hash value using the key corresponding to the key ID; determine that the first hash value matches the second hash value; and establish a session with the second device based on determining that the first hash value matches the second hash value.

主权项

1. A method comprising:
receiving, by a first device, a session token from a second device; determining, by the first device, that the session token is expired or invalid; providing, by the first device, a security input to the second device to cause the second device to generate a first hash value of the security input using a key corresponding to a key identifier (ID); receiving, by the first device, the key ID and the first hash value from the second device; generating, by the first device, a second hash value using the key corresponding to the key ID; determining, by the first device, that the first hash value matches the second hash value; and establishing, by the first device, a session with the second device based on determining that the first hash value matches the second hash value.