Computer network security system

Assignee

• American Power Conversion Corporation · US

Inventors

• Thomas Friedrich Wenisch · Ann Arbor, US
• Stephen R. Berard · Seattle, US
• David J. Smith · Columbia, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/2115
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A method and system are provided for authenticating a user of a computer over a computer network. In one embodiment of the invention, the method includes transmitting an applet having a challenge string and a first encryption key, receiving a login packet having the challenge string and a password that is encrypted using the first encryption key, decrypting the password, receiving information from an authentication provider, and authenticating the password by using the information provided by the authentication provider. The challenge string can be either a sequence number or a session identifier. The authentication provider can be a software program or an authentication server. An advantage of embodiments of the present invention is that a computer can provide secure Internet communications using a web browser that does not support SSL and can provide secure integration with third party security systems.