최소 단어 이상 선택하여야 합니다.
최대 10 단어까지만 선택 가능합니다.
다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
NTIS 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
DataON 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
Edison 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
Kafe 바로가기국가/구분 | United States(US) Patent 등록 |
---|---|
국제특허분류(IPC7판) |
|
출원번호 | US-0026403 (2001-12-21) |
등록번호 | US7987501 (2011-07-12) |
발명자 / 주소 |
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 | 피인용 횟수 : 34 인용 특허 : 925 |
A method and system for cross-system authentication or credentialing of clients. Credentials from one system (e.g., system 2) are placed on a client, such as with a cookie on a browser, and the credentials are then extracted by another system (e.g., system 1), and used by system 1 to impersonate the
A method and system for cross-system authentication or credentialing of clients. Credentials from one system (e.g., system 2) are placed on a client, such as with a cookie on a browser, and the credentials are then extracted by another system (e.g., system 1), and used by system 1 to impersonate the client to system 2. If the client's credentials with system 2 are valid, system 2 provides that information to system 1 (which is impersonating the client), and system 1 uses the validity of the credentials from system 2 to grant the client access to protected resources on system 1.
That which is claimed is: 1. A method for validating credentials comprising:inputting, at a first apparatus that grants session credentials based on successful authentication, a request from a client to access a protected resource on the first apparatus, the protected resource on the first apparatus
That which is claimed is: 1. A method for validating credentials comprising:inputting, at a first apparatus that grants session credentials based on successful authentication, a request from a client to access a protected resource on the first apparatus, the protected resource on the first apparatus being accessible by the client only after successful authentication of the client at the first apparatus;determining, at the first apparatus that a client does not have a valid session credential granted by the first apparatus;after the determining, retrieving, at the first apparatus, information from a session token held by the client, the information being retrieved from the client, the information corresponding to a session credential for a second apparatus, the second apparatus (1) grants session credentials based on successful authentication at the second apparatus, and (2) includes a protected resource on the second apparatus that is accessible by the client; the protected resource on the second apparatus being accessible by the client only after successful authentication of the client at the second apparatus;the first apparatus presenting at least some of the information from the session token to the second apparatus;the first apparatus inputting a determination from the second apparatus that the client has a valid session credential with the second apparatus;the first apparatus effecting successful authentication to the client so as to grant access, to the protected resource on the first apparatus, to the client based on the determination from the second apparatus that the client has a valid session credential with the second apparatus; anddirecting the client to the first apparatus to establish a session credential based on successful authentication at the first apparatus, after determining that the client does not have a valid session credential granted by the second apparatus.
Copyright KISTI. All Rights Reserved.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.