Method and system for securely authenticating network access credentials for users

Assignee

• Ipass Inc. · US

Inventors

• Roy David Albert · San Jose, US
• Jeff Edgett · Sunnyvale, US
• Singam Sunder · San Jose, US
• James Marion Underwood · San Mateo, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/108
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A method is provided to securely authenticate user credentials. The method includes encrypting a user credential with a public key at an access device wherein the public key is part of a public/private key pair suitable for use with an encryption algorithm. The encrypted network user credential is transmitted from the access device to a decryption server where it is decrypted with a private key, the private key being part of the public/private key pair suitable for use with the encryption algorithm. The decrypted user credential is then transmitted from the decryption server to an authentication server for verification. The decryption server typically forms part of a multi-party service access environment including a plurality of access providers, the method including decrypting the user credential of a user proximate an access provider associated with the user credential. The method can be used in legacy protocols such as Point-to-Point protocol (PPP), Password Authentication Protocol (PAP), Challenge-Handshake Authentication Protocol (CHAP), Remote Authentication Dial In User Service (RADIUS) protocol, Terminal Access Controller Access Control System (TACACS) protocol, Lightweigh…