| 摘要 |
PROBLEM TO BE SOLVED: To provide an authentication delegation method based on re-verification or cryptographic evidence for enabling a user to access a specific server within a chain of entities.SOLUTION: According to the method, a recording of at least a portion of a TLS handshake between a gateway device and a user is utilized, in which the user needs access to a desired server. Next, the recorded portion of the TLS handshake is forwarded either (1) to the server to which access is desired in the case where the server re-verifies the recorded portion to confirm authentication, or (2) to a third party entity, in the case where the third party entity confirms authentication and provides credentials to the gateway server, which then uses the credentials to authenticate to the server as a user. In any cases, it is determined whether to permit user access by using the recorded portion of the TLS handshake. |
