Method and system for authentication and single sign on using cryptographically assured cookies in a distributed computer environment
US6421768B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | May 4, 1999 |
| Grant date | Jul 16, 2002 |
| Priority date | — |
| Expiry date | May 4, 2019 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/41
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Cryptographically assured data structures are created to enable a single sign on and/or authentication method for securely transferring user authentication information from a first computer to a second computer to allow the user to seamlessly interact with the second computer without necessarily re-authenticating himself thereto. Thus, if a second computer trusts the methods used by a first computer to authenticate a user, then the second computer can use a cryptographically assured cookie created by the first computer to authenticate the user, without requiring the user to perform an explicit authentication step at the second computer. More particularly, a cryptographically assured cookie is made by creating a cryptographically assured voucher of a user characteristic at the first computer, and embedding the voucher into a cookie for transmission to the user's computer and hence to the second computer.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.