Remote authentication based on challenge-response using digital certificates

Assignee

• International Business Machines Corporation · US

Inventors

• Firas Bouz · Lexington, US
• Terry Dwain Escamilla · Boulder, US
• Hugo M. Krawczyk · Tarrytown, US
• Tal Rabin · Yonkers, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/2151
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

Embodiments of the invention provide for authenticating users of web-based applications by presenting a previously acquired signed digital signature. Examples establish secure user sessions between a client and a user in response to a verification of an identification of the user by the client, the client creating a unique username for the user and unlocking access by the user to a client digital signature for use with a request for service from a third party web server. A secure facilitator session is established between the client and a third party web server, wherein messages exchanged with the unique username and a unique session identification indicia of the secure facilitator session signed by the unlocked digital signature result in executed processes requested by the service identifier data if the messages are validated without the client requiring the user to verify user identification for any message until a secure facilitator session ends.