| 摘要 |
A system and method comprising a computer useable medium having computer readable program code embodied therein for authenticating and encrypting and decrypting information transferred over a public network between a client a pplication program running in a client computer [Figure 1, ref. Num "11"] an d a server application program running in a server computer [Figure 1, ref. Num "12"] and, a directory service application program running in a server c omputer. A method for secure communication by a processor with a server [Fig ure 1, ref. Num "12"] includes generating a message to the server by employi ng a one pass key generation probabilistic authentication process using a pr edetermined session master key and sending the message to the server. A meth od for secure communication between an application executable on a computer [Figure 2, ref. Num "21"] and a web server [Figure 2, ref. Num "22"] coupled to the computer includes participating by the application in an initial aut hentication process with the server and wrapping every GET and POST request message to the server in an SSLX-EA exchange [Figure 2, ref. Num "23"] after the initial authentication process.
|
