Authorization system for obtaining in single step both identification and access rights of client to server directly from encrypted authorization ticket
US5455953A · kind A · utility
Assignee
Inventor
Key dates
| Filing date | Nov 3, 1993 |
| Grant date | Oct 3, 1995 |
| Priority date | — |
| Expiry date | Nov 3, 2013 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0807
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
An authorization mechanism for providing authorization information for a client requesting access to a server resource in a server, including a directory server for storing client information required by the server in executing an operation call, including client access rights, and a generating a request for an authorization ticket to the server. The request for an authorization ticket includes an identification of the client and an identification of the client information required by the server and is in association with an operation call. The authorization mechanism generates an authorization ticket including the identified information and encrypted with an encryption key derived from the password of the server. The authorization ticket is sent to the server and the server decrypts the authorization ticket with the server password and obtains the client information directly, including the client access rights. Client information is stored in directory server fields identified by generic field tags. The authorization ticket request identifies client information by tag names identifying the fields, the requested information in stored in the authorization ticket in fields identified…
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.