发明名称 |
Providing identity-related information and preventing man-in-the-middle attacks |
摘要 |
This invention provides identity-related information about a client application to an honest requesting entity, ensuring identity of client applications and preventing man-in-the-middle attacks. An example method comprises transferring identity-related information hosted on an identity provider about a client application to an honest requesting entity by: the client application receiving from a particular entity a request to forward an inner request comprising an identifier of the honest requesting entity to an identity provider selected by the client application; the client application forwards the inner request to the identity provider holding the identity-related information; the client application receives from the identity provider a response envelope instructing the client application to forward an inner response comprising the identity-related information requested in the inner request and the identifier; the client application derives an address of the honest requesting entity having the identifier; and the client application forwards the inner response to the derived address.
|
申请公布号 |
US2004064687(A1) |
申请公布日期 |
2004.04.01 |
申请号 |
US20030638184 |
申请日期 |
2003.08.08 |
申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
PFITZMANN BIRGIT M.;WAIDNER MICHAEL |
分类号 |
H04L29/06;(IPC1-7):G06F1/24 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|