Explicit delegation with strong authentication

Assignee

• Microsoft Corporation · US

Inventors

• Tomer Shiran · Mountain View, US
• Sara Bitan · Netanya, IL
• Nir Nice · Kfar Vradim, IL
• Jeroen de Borst · Redmond, US
• Dave Field · Seattle, US
• Shai Herzog · Bellevue, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L9/3297
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Systems and methods for performing explicit delegation with strong authentication are described herein. Systems can include one or more clients, one or more end servers, and one or more gateways intermediate or between the client and the end server. The client may include an explicit strong delegation component that is adapted to strongly authenticate the client to the gateway. The explicit strong delegation component may also explicitly delegate to the gateway a right to authenticate on behalf of the client, and to define a period of time over which the explicit delegation is valid. The system may be viewed as being self-contained, in the sense that the system need not access third-party certificate or key distribution authorities. Finally, the client controls the gateways or end servers to which the gateway may authenticate on the client's behalf.