Apparatus and method for inter-program authentication using dynamically-generated public/private key pairs
US7350079B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Nov 20, 2003 |
| Grant date | Mar 25, 2008 |
| Priority date | — |
| Expiry date | Jun 29, 2026 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/3273
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
In a multi-tiered computing environment, a first program may authenticate with a second program using dynamically-generated public/private key pairs. An authentication token is constructed that includes user information and information about the first program and the second program. The first program then digitally signs the authentication token using the dynamically-generated private key, and sends the authentication token to the second program. The second program then verifies the authentication token using the public key corresponding to the first program. Once verified, the first program is authenticated to the second program. The second program may then authenticate to a next-tier program by constructing an authentication token that includes the information in the authentication token received from the first program. This may continue to any suitable number of tiers, using dynamically-generated public/private key pairs to allow authentication between programs without requiring any user interaction or input from a system administrator.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.