System and method of user authentication for network communication through a policy agent
US7039713B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 9, 1999 |
| Grant date | May 2, 2006 |
| Priority date | — |
| Expiry date | Nov 9, 2019 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/18
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A policy agent of a network performs an out-of-band user authentication process to verify the identity of a user of a client computer and associates the network data received from the client computer with the user. When the client computer initiates a network data connection to or through the policy agent, the policy agent sends an encrypted challenge to the client computer. The challenge is encrypted with a private key of the policy agent. When the client computer receives the challenge, it decrypts the challenge and prepares a message digest value based on the challenge and the network data sent by the user. The message digest value is then encrypted with the private key of the user to form a response, and the response is sent to the policy agent. The policy agent decrypts the response with the public key of the user to obtain the message digest value and calculates a digest value based on the challenge and the received network data. The policy agent then compares the calculated digest value with the decrypted digest value. A match between the two digest values indicates that the user is successfully authenticated and that the received network data are associated with the user. T…
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.