| 发明名称 |
Two-way authentication using a combined code |
| 摘要 |
An authentication process using a combined code as a shared secret between a client and target service is provided. The combined code is provided out-of-band and includes data to perform two-way authentication for both the client and the target service. The target service may provide the client with a certificate to establish a secure channel. The client may use the data in the combined code to validate the target service. When the target service is validated, the client may provide credentials in the combined code to the target service for authentication. In one example implementation, the combined code includes a hash of a public key. The client may compute another hash of another public key in the certificate provided by the target service and validate the service by comparing the hash in the combined code and the computed hash.
|
| 申请公布号 |
US7814538(B2) |
申请公布日期 |
2010.10.12 |
| 申请号 |
US20050300631 |
申请日期 |
2005.12.13 |
| 申请人 |
MICROSOFT CORPORATION |
发明人 |
KUEHNEL THOMAS W.;CHAN SHANNON J. |
| 分类号 |
G06F7/04;G06F15/16;G06F17/30;H04L29/06 |
主分类号 |
G06F7/04 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
