Patent · US Expired

Session key security protocol

US7523490B2 · kind B2 · utility

21Cited by

51References

16Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Wei Guo · Sammamish, US
John Hal Howard · Sammamish, US
Kok Wai Chan · Redmond, US

Key dates

Filing date	May 15, 2002
Grant date	Apr 21, 2009
Priority date	—
Expiry date	Nov 6, 2023

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2209/60
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A security protocol for use in a multi-site authentication system. After authenticating a user, an authentication server generates a ticket including information associated with the user. The authentication server encrypts content of the ticket using a symmetric key shared with an affiliate server. The affiliate server has a public key that the authentication server uses to encrypt the shared key. The authentication server has private key for creating a signature on the ticket. The affiliate server decrypts the shared key with its private key and then decrypts the content of the ticket using the decrypted shared key. The affiliate server validates the signature with the authentication server's public key.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.