WO2000079726A3 - Cryptographic representation of sessions - Google Patents
Cryptographic representation of sessions Download PDFInfo
- Publication number
- WO2000079726A3 WO2000079726A3 PCT/US2000/017368 US0017368W WO0079726A3 WO 2000079726 A3 WO2000079726 A3 WO 2000079726A3 US 0017368 W US0017368 W US 0017368W WO 0079726 A3 WO0079726 A3 WO 0079726A3
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- state information
- session state
- encrypted
- server
- request
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0442—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0807—Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/142—Managing session states for stateless protocols; Signalling session states; State transitions; Keeping-state mechanisms
Abstract
A method and system for providing secure access to accounts on a server connected to a computer network. According to the invention, session state information corresponding to a particular account user is encrypted and transmitted to the account user who transmits the encrypted session state information back with each request. When the account user submits a request to the server, the server decrypts the encrypted session state information and validates the session state information. If the session state information is valid, the server processes the user's request. Thus, the user becomes the source of the session state information, albeit in encrypted form, rather than a central database.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| AU57633/00A AU5763300A (en) | 1999-06-23 | 2000-06-21 | Cryptographic representation of sessions |
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US33891499A | 1999-06-23 | 1999-06-23 | |
| US09/338,914 | 1999-06-23 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| WO2000079726A2 WO2000079726A2 (en) | 2000-12-28 |
| WO2000079726A3 true WO2000079726A3 (en) | 2001-05-03 |
Family
ID=23326673
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/US2000/017368 WO2000079726A2 (en) | 1999-06-23 | 2000-06-21 | Cryptographic representation of sessions |
Country Status (2)
| Country | Link |
|---|---|
| AU (1) | AU5763300A (en) |
| WO (1) | WO2000079726A2 (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101527708B (en) | 2008-03-04 | 2012-10-03 | 华为技术有限公司 | Method and device for restoring connection |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5805803A (en) * | 1997-05-13 | 1998-09-08 | Digital Equipment Corporation | Secure web tunnel |
| US5875296A (en) * | 1997-01-28 | 1999-02-23 | International Business Machines Corporation | Distributed file system web server user authentication with cookies |
| US6092196A (en) * | 1997-11-25 | 2000-07-18 | Nortel Networks Limited | HTTP distributed remote user authentication system |
-
2000
- 2000-06-21 AU AU57633/00A patent/AU5763300A/en not_active Abandoned
- 2000-06-21 WO PCT/US2000/017368 patent/WO2000079726A2/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5875296A (en) * | 1997-01-28 | 1999-02-23 | International Business Machines Corporation | Distributed file system web server user authentication with cookies |
| US5805803A (en) * | 1997-05-13 | 1998-09-08 | Digital Equipment Corporation | Secure web tunnel |
| US6092196A (en) * | 1997-11-25 | 2000-07-18 | Nortel Networks Limited | HTTP distributed remote user authentication system |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2000079726A2 (en) | 2000-12-28 |
| AU5763300A (en) | 2001-01-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2003032575A3 (en) | Method and system for providing client privacy when requesting content from a public server | |
| EP0869460A3 (en) | Method and apparatus for storing and controlling access to information | |
| WO2001077780A3 (en) | Systems and methods for securing a web transaction between a client and a merchant using encrypted keys and cookies | |
| CA2137065A1 (en) | Method of Protecting Electronically Published Materials Using Cryptographic Protocols | |
| EP1241826A3 (en) | Cryptographic key management method | |
| AU7794301A (en) | Digital receipt for a transaction | |
| CA2282496A1 (en) | System and method for securely accessing information from disparate data sources through a network | |
| EP0704785A3 (en) | Data copyright management system | |
| WO2000074297A3 (en) | Method and apparatus for secure distribution of public/private key pairs | |
| EP0989710A3 (en) | Secure distribution system for digital contents | |
| EP1237321A4 (en) | Content distribution system and content distribution method | |
| HK1045419A1 (en) | Method and system of enabling a proxy to participate in a secure communication and a cryptographic system | |
| WO1998040809A3 (en) | Method and system for secure online transaction processing | |
| EP0880254A3 (en) | Security system and method for financial institution server and client web browser | |
| EP0845761A3 (en) | Method for verifying the expected postage security device and an authorized host system | |
| CA2151851A1 (en) | Methods for providing secure access to shared information | |
| JP2001517822A (en) | Software usage right management system using independent software registration server | |
| HK1036707A1 (en) | User specific automatic data redirection system | |
| WO2001009792A3 (en) | A system, method and article of manufacture for an e-commerce based user framework design for maintaining user preferences, roles and details | |
| EP1128303A3 (en) | Network sales system | |
| WO2001097480A3 (en) | System and method for controlling the access to digital works through a network | |
| EP0886409A3 (en) | Information providing system | |
| WO2002077773A3 (en) | Encrypted e-mail reader and responder system, method, and computer program product | |
| PL323875A1 (en) | Trustworthy agents for open distribution of electronic money | |
| WO2002033881A3 (en) | Fast escrow delivery |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| AK | Designated states |
Kind code of ref document: A2 Designated state(s): AE AL AM AT AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ CZ DE DE DK DK DM EE EE ES FI FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW |
|
| AL | Designated countries for regional patents |
Kind code of ref document: A2 Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG |
|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
| DFPE | Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101) | ||
| AK | Designated states |
Kind code of ref document: A3 Designated state(s): AE AL AM AT AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ CZ DE DE DK DK DM EE EE ES FI FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW |
|
| AL | Designated countries for regional patents |
Kind code of ref document: A3 Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG |
|
| REG | Reference to national code |
Ref country code: DE Ref legal event code: 8642 |
|
| 122 | Ep: pct application non-entry in european phase | ||
| NENP | Non-entry into the national phase |
Ref country code: JP |