| 发明名称 |
SYSTEM AND METHOD FOR ACHIEVING MACHINE AUTHENTICATION WITHOUT MAINTAINING ADDITIONAL CREDENTIALS |
| 摘要 |
<p>A Machine Authentication PAC (Protected Access Credential) serves as machine credentials to obtain network access without requiring server storage and management of the additional set of credentials. The first time authentication is performed, user authentication is executed. After the supplicant and server have mutually authenticated each other and satisfied other validations, the supplicant requests a Machine Authentication PAC from the server. The Server randomly generates a cryptographic key (Device Key) and sends it to the supplicant along with an encrypted ticket, comprising the Device Key and other information and encrypted with a key only known to the Server. The supplicant caches the Machine Authentication PAC in its non-volatile memory for future use. When the machine needs to access certain network services before a user is available, the supplicant uses the Machine Authentication PAC to gain authorization for the machine to limited access on the network, without requiring user input.</p> |
| 申请公布号 |
WO2006107542(A2) |
申请公布日期 |
2006.10.12 |
| 申请号 |
WO2006US09195 |
申请日期 |
2006.03.15 |
| 申请人 |
CISCO TECHNOLOGY, INC. |
发明人 |
ZHOU, HAO;SALOWEY, JOSEPH;CAM WINGET, NANCY |
| 分类号 |
H04L9/00;G06F7/04;G06F7/58;G06F15/16;G06F17/30;G06K9/00;G06K19/00;H04L9/32 |
主分类号 |
H04L9/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
