公开(公告)号：EP2060045A2

公开(公告)日：2009-05-20

申请号：EP07811711.6

申请日：2007-09-06

申请人： Sslnext Inc.

发明人： MCGOUGH, R., Paul

IPC分类号： H04L9/00

CPC分类号： H04L9/083 ,  H04L9/0825 ,  H04L9/0844 ,  H04L63/062 ,  H04L63/08 ,  H04L63/18

摘要： A system and method comprising a computer useable medium having computer readable program code embodied therein for authenticating and encrypting and decrypting information transferred over a public network between a client application program running in a client computer [Figure 1, ref. Num '11'] and a server application program running in a server computer [Figure 1, ref. Num '12'] and, a directory service application program running in a server computer. A method for secure communication by a processor with a server [Figure 1, ref. Num '12'] includes generating a message to the server by employing a one pass key generation probabilistic authentication process using a predetermined session master key and sending the message to the server. A method for secure communication between an application executable on a computer [Figure 2, ref. Num '21'] and a web server [Figure 2, ref. Num '22'] coupled to the computer includes participating by the application in an initial authentication process with the server and wrapping every GET and POST request message to the server in an SSLX-EA exchange [Figure 2, ref. Num '23'] after the initial authentication process.