| 摘要 |
<p>A system and method for three-party authentication and authorization. The system includes an authorizer (815) that authorizes requestors, a client (805) that makes a request, and a local attendant (910) that provides a conduit through which messages between the client (805) and the authorizer (815) pass. The authorizer (815), the client (805), and a peer (135) on which the requested resource may be accessed are each in separate domains. A domain is defined as a set of one or more entities such that if the set includes more than one entity, a connection between any two of the entities in the set can be secured by static credentials that are known by each of the two entities A subscriber identity module (SIM) may be used to generate a copy of a key for the client (805) to be used in accessing a requested resource (1040).</p> |
