Multi-identity access control tunnel relay object

摘要

In various embodiments, the present disclosure provides a system and method for establishing a secure tunnel between a client device and a remote server utilizing multiple user identities, and in some embodiments, a client device identity, to authenticate access to the remote server.

主权项

1. A method for establishing a secure tunnel between a client device and a remote server utilizing multiple identities to authenticate access to the remote server, said method comprising:
executing a relay program at the remote server and downloading a connector program from a remote server to the client device upon execution of the relay program; scanning the client device for one or more authentication devices that are at least one of removably connected to and fixed onboard the client device, via execution of the connector program, each authentication device having stored thereon one or more identity; selecting multiple identities from the identities stored on the one or more authentication devices, passing the selected identities to the remote server, and validating the passed identities, via challenge-response authentication performed by the relay program; establishing a high level security communications channel and brokering an encrypted proxy session between a remote server side proxy, substantiated via execution of the relay, and a client side proxy, substantiated via execution of the connector program; providing access by the client device to a first server contained object via the encrypted proxy session over the high level security communications channel; removably connecting one or more additional authentication devices to the client device to provide identities required to access a second server contained object or particular data within the first server contained object; and requiring the one or more additional authentication devices to be provided by a second user.