| 发明名称 |
Method and system for authenticating a computer network node |
| 摘要 |
A method and system for verifying the identity of a computer network node is provided. As part of the session initiation process between two partner nodes planning to exchange sensitive encrypted data, the node receiving data generates and encrypts a session key which is transmitted to the node sending data. At the sending node, the low order four bytes of the encrypted session key are saved for authentication of the receiving node. The encrypted session key is returned to the receiving node as session set-up continues. The receiving node concatenates the low order four bytes of the encrypted session key with four bytes of pseudorandom data to form an initial chaining value which is then encrypted and transmitted to the sending node. The sending node recovers the initial chaining value and compares the low order four bytes of this value with the low order four bytes of the encrypted session key previously saved. If the values are the same, authentication of the receiving node is established.
|
| 申请公布号 |
US5706347(A) |
申请公布日期 |
1998.01.06 |
| 申请号 |
US19950552893 |
申请日期 |
1995.11.03 |
| 申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
BURKE, ANDREW STEPHEN;GUGLIOTTA, DALE CARL |
| 分类号 |
G06F1/00;G06F21/00;H04L9/08;H04L9/32;(IPC1-7):H04L9/32;H04L9/00 |
主分类号 |
G06F1/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
