SECURE AUTHENTICATION FOR ACCESS TO BACK-END RESOURCES

摘要

By establishing a secure channel from a client to a back-end resource after the client is authenticated, both security and authentication can be achieved. Before access is permitted, two levels of authentication are provided by first seeking a client-side certificate and then having the client subsequently decrypt an encrypted message. Authorization for access to a back-end resource can be controlled by requiring a transaction-specific authorization device provided to the client in the encrypted message.