Securing dynamic authorization messages
US8321670B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 11, 2008 |
| Grant date | Nov 27, 2012 |
| Priority date | — |
| Expiry date | Oct 6, 2030 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0823
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
To fortify trust in a roaming environment, a token is introduced in transactions between an authoritative entity (e.g., a Home AAA in RADIUS) and a service providing entity (e.g., a NAS in RADIUS). A Token-Information is sent from the authoritative entity to the service providing entity during the initial authentication. Subsequent transactions include a token computed from the Token-Information. The service providing entity discards messages that it receives that do not contain the correct token. The Token-Information is transported in an encrypted fashion. The token provides secure transactions when messages between the authoritative entity and the service providing entity are routed through proxy servers.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.