Method and system for authenticating users to multiple computer servers via a single sign-on
September 23, 2016. Estimated Expiration Date is calculated based on simple USPTO term provisions. It does not account for terminal disclaimers, term adjustments, failure to pay maintenance fees, or other factors which might affect the term of a patent.Patent ReferencesSecurity system One-time logon means and methods for distributed computing systems Method for providing mutual authentication of a user and a server on a network Authorization system for obtaining in single step both identification and access rights of client to server directly from encrypted authorization ticket Flexible interface to authentication services in a distributed data processing environment System for increasing the difficulty of password guessing attacks in a distributed authentication scheme employing authentication tokens Yaksha, an improved system and method for securing communications using split private key asymmetric cryptography System and method for policy-based inter-realm authentication within a distributed processing system Remote authentication and authorization in a distributed data processing system Method and apparatus for authenticating a client to a server in computer systems which support different security mechanisms InventorsAssigneeApplicationNo. 717961 filed on 09/23/1996ExaminersPrimary: Beausoliel, Robert W. Jr.Assistant: Palys, Joseph E. Attorney, Agent or FirmInternational ClassG06F 011/00AbstractA method for authenticating an authorized user to multiple computer servers within a distributed computing environment after a single network sign-on is disclosed. In accordance with the method and system of the present invention, an authentication broker is provided within the distributed computing network. The authentication broker first receives an authentication request from a workstation. After a determination that the authentication request is valid, the authentication broker then issues a Kerberos Ticket Granting Ticket to the workstation. At this point, if there is a request by the workstation for accessing a Kerberos Ticket-based server within the distributed computing network, the authentication broker will issue a Kerberos Service Ticket to the workstation. Similarly, if there is a request by the workstation for accessing a passticket-based server within the distributed computing network, the authentication broker will issue a passticket to the workstation. Finally, if there is a request by the workstation for accessing a password-based server within the distributed computing network, the authentication broker will issue a password to the workstation. By this, accesses to all of the above servers within the distributed computing network can be granted via a single network authentication request.Other References
| |
