Invention Grant
- Patent Title: Secure transmission of a session identifier during service authentication
- Patent Title (中): 在服务认证期间安全地传输会话标识符
-
Application No.: US14674938Application Date: 2015-03-31
-
Publication No.: US09578007B2Publication Date: 2017-02-21
- Inventor: Antonio Martin , Syam Sundar Appala , Joseph Salowey
- Applicant: Cisco Technology, Inc.
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Hickman Palermo Becker Bingham LLP
- Main IPC: H04L29/00
- IPC: H04L29/00 ; H04L29/06 ; H04L29/08
Abstract:
In an embodiment a method is performed by a network access device (NAD). The NAD transfers a first HTTPS request from a client computer (UE) to an identity provider computer (IdP). The NAD transfers, from the IdP, a preceding redirected URL in response to the first HTTPS request, to the UE and configured to cause the UE to redirect to said preceding redirected URL. Over a secure network link, the NAD receives a particular request specifying said preceding redirected URL, from the UE. Responsive to receiving the particular request, the NAD generates a response, comprising a subsequent redirected URL and a session identifier, and configured to cause the UE to redirect to the IdP over an HTTPS connection. The NAD transfers said subsequent redirected URL over the secure network link to the UE. The NAD transfers a second HTTPS request, comprising the session identifier, from the UE to the IdP.
Public/Granted literature
- US20160294797A1 SECURE TRANSMISSION OF A SESSION IDENTIFIER DURING SERVICE AUTHENTICATION Public/Granted day:2016-10-06
Information query
