Method and apparatus for controlling access to the contents of web pages by using a mobile security module
US7206803B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | May 31, 2000 |
| Grant date | Apr 17, 2007 |
| Priority date | — |
| Expiry date | Nov 9, 2023 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0853
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
The present invention relates to an apparatus and method for controlling access to protected web pages on a web server by using a method of authentication. The method according to the invention is divided into a general method for authenticating the client and a downstream method for granting authorization to access the protected web pages by generating a session ID of which the client is notified after successful authentication, and by inserting the session ID as part of the new request. This ensures that even the links on the protected-access web page are covered and are provided with a session ID to serve as access authorization. The session ID is preferably given a validity date. The present invention fits into the existing browser infrastructure without any alterations being needed for this purpose. The use of a chip card increases the security of the method of authentication.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.