System and method of proxy authentication in a secured network (US7113994)

My Account Search: Quick/Number Boolean Advanced Derwent

Help

My Account | Products

Search: Quick/Number Boolean Advanced Derwent

Help

Company History | Privacy Policy | Web Seminars | Contact Us

The Delphion Integrated View

Tools: Citation Link | Add to Work File:

View: Expand Details | INPADOC | Jump to:

Email this to a friend

US7113994: System and method of proxy authentication in a secured network
[ Derwent Title ]

US United States of America

View Images

High
Resolution

13 pages

Swift, Michael M.; Seattle, WA, United States of America
Amit, Neta; Haifa, Israel
Ward, Richard B.; Redmond, WA, United States of America

Microsoft Corporation, Redmond, WA, United States of America
other patents from MICROSOFT CORPORATION (373780) (approx. 3,197)
News, Profiles, Stocks and More about this company

Published / Filed:

2006-09-26 / 2000-01-24

Application Number:

US2000000490199

Advanced: G06F 15/16;
Core: more...

G06F21/00N5A2C;

Current: 709/229; 707/009; 707/010; 709/200; 709/227; 715/234;
Original: 709/229; 709/200; 707/009; 707/010; 707/513; 395/187.01;

Field of Search:

707/201,3,7,104.1,10,9,104 713/201,153,151,168 395/187.01,186,200.5

Priority Number:

US2000000490199

A method of controlling access to network services enables an authorized proxy client to access a service on behalf of a user. To permit the client to function as a proxy, the user registers proxy authorization information with a trusted security server. The proxy authorization information identifies the proxy client and specifies the extent of proxy authority granted to the proxy client. When the proxy client wants to access a target service on behalf of the user, it sends a proxy request to the trusted security server. The trusted security server checks the proxy authorization information of the user to verify whether the request is within the proxy authority granted to the proxy client. If so, the trusted security server returns to the proxy client a data structure containing information recognizable by the target service to authenticate the proxy client for accessing the target service on behalf of the user.

Attorney, Agent or Firm:

Lee & Hayes, PLLC ;

Primary / Asst. Examiners:

Rones, Charles; Ortiz, Belix M.

INPADOC Legal Status:

Show legal status actions Buy Now: Family Legal Status Report

Show 2 known family members

First Claim:
Show all 20 claims

1. A method of enabling a proxy client in a secured network to access a target service on behalf of a user, comprising the steps of:

registering proxy authorization information regarding the user with a trusted security server, the proxy authorization information identifying the proxy client and an extent of proxy authorization granted the proxy client by the user;

submitting, by the proxy client, a proxy request to the trusted security server requesting access to the target service on behalf of the user;

comparing, by the trusted security server, the proxy request with the registered proxy authorization information of the user to determine whether to grant the proxy request;

issuing, by the trusted security service, a data structure containing authentication data recognizable by the target service for authenticating the proxy client for accessing the target service on behalf of the user, if it is determined to grant the proxy request.

Background / Summary:

Show background / summary

Drawing Descriptions:

Show drawing descriptions

Show description

Forward References:

Show 4 U.S. patent(s) that reference this one

U.S. References:

Go to Result Set: All U.S. references | Forward references (4) | Backward references (7) | Citation Link

Buy PDF	Patent	Pub.Date	Inventor	Assignee	Title
	US5623601	1997-04	Vu	Milkway Networks Corporation	Apparatus and method for providing a secure gateway for communication and data exchanges between networks
	US5913025	1999-06	Higley et al.	Novell, Inc.	Method and apparatus for proxy authentication
	US5983350	1999-11	Minear et al.	Secure Computing Corporation	Secure firewall supporting different levels of authentication based on address or encryption status
	US6012088	2000-01	Li et al.	International Business Machines Corporation	Automatic configuration for internet access device
	US6081900	2000-06	Subramaniam et al.	Novell, Inc.	Secure intranet access
	US6198824	2001-03	Shambroom	Verizon Laboratories Inc.	System for providing secure remote command execution network
	US6298383	2001-10	Gutman et al.	Cisco Technology, Inc.	Integration of authentication authorization and accounting service and proxy service

Foreign References:

Other References:

J. Kohl and C. Neuman: Request for Comments RFC1510—“The Kerberos Network Authentication Service” Sep. 1993, available at ftp://ftp.isi.edu/in-notes/rfc1510.txt (accessed on Nov. 21, 2000).

B. Clifford Neuman and Theodore Ts'o: “Kerberos: An Authentication Service for Computer Networks”, USC/ISI Technical Report No. ISI/RS-94-39: Copyright 1994 Institute of Electrical and Electronics Engineers, IEEE Communications Magazine, vol. 32, No. 9, pp. 33-38, Sep. 1994. (6 pages) Cited by 44 patents [ISI abstract]

“Windows 2000 Kerberos Authentication” Microsoft Windows NT Server, White Paper, Copyright 1999 Microsoft Corporation.

Wei Hu “DCE Security Programming”, Copyright 1995, O'Reilly & Associates, Inc.

Continuity Data:

Application Number

US2006000424517

is a continuation of

>US2000000490199<

(pending) [presumed granted]

US7113994 issued 2006-09-26 System and method of proxy authentication in a secured network

Nominate this for the Gallery...


		Copyright © 1997-2010 Thomson Reuters
		Subscriptions \| Web Seminars \| Privacy \| Terms & Conditions \| Site Map \| Contact Us \| Help