| 发明名称 |
Secure capability negotiation between a client and server |
| 摘要 |
Embodiments of the present disclosure provide for establishing an authenticated session between a client computing device and a remote computing device. In certain embodiments, a connection is established between the client computing device and the remote computing device. Once the connection is established, the client computing device sends a number of requests to the client computing device including a negotiate request, a setup request, and a validation request. In response to the requests, the client computing device receives a number of responses from the remote computing device including a negotiate response, setup response and a validation response. Once the responses have been received, a determination is made as to whether information contained in the validation response matches information contained in the negotiate response. If the information matches, an authenticated session is established between the remote computing device and the client computing device. |
| 申请公布号 |
US8924573(B2) |
申请公布日期 |
2014.12.30 |
| 申请号 |
US201213418256 |
申请日期 |
2012.03.12 |
| 申请人 |
Microsoft Corporation |
发明人 |
Kruse David Matthew;George Mathew;Rus Iuliu |
| 分类号 |
G06F15/16 |
主分类号 |
G06F15/16 |
| 代理机构 |
|
代理人 |
Gabryjelski Henry;Drakos Kate;Minhas Micky |
| 主权项 |
1. A method for establishing an authenticated session between a client computing device and a remote computing device, the method comprising:
establishing a connection with the remote computing device; sending a negotiate request to the remote computing device, wherein the negotiate request includes a first set of information; receiving a negotiate response from the remote computing device, wherein the negotiate response includes a second set of information associated with the first set of information; sending a setup request to the remote computing device; receiving a setup response from the remote computing device; sending a signed validation request to the remote computing device, wherein the signed validation request includes a third set of information that is equivalent to the first set of information; receiving a signed validation response from the remote computing device, wherein the signed validation response includes a fourth set of information; determining whether the fourth set of information is equivalent to the second set of information; and establishing the authenticated session with the remote computing device when the fourth set of information is equivalent to the second set of information. |
| 地址 |
Redmond WA US |
