公开(公告)号：US08112790B2

公开(公告)日：2012-02-07

申请号：US11171513

申请日：2005-06-30

申请人： Eric Henry Grosse ,  Victor C Zandy

发明人： Eric Henry Grosse ,  Victor C Zandy

IPC分类号： H04L9/32 ,  H04L9/08

CPC分类号： H04L63/083 ,  H04L63/0884

摘要： Methods and apparatus are provided for authenticating a remote service to another service on behalf of a user. A user client authorizes a remote application client to perform one or more actions with a server on behalf of the user client. The user client provides one or more keys to a remote authentication service; receives an identifier of the remote application client, where the remote authentication client is remote from the server; and notifies the remote authentication service that the remote application client is authorized to obtain a response from the remote authentication service regarding a challenge from the server, where the response is based on at least one of the one or more keys stored by the remote authentication service on behalf of the user client. The remote application client provides a challenge that is received from a server that the remote application client is attempting to access for the user client and an identifier of the user client to a remote authentication service and receives a response to the challenge from the remote authentication service, wherein the response is based on one or more keys stored by the remote authentication service on behalf of the user client.

摘要翻译： 提供了用于代表用户对另一个服务进行远程服务验证的方法和装置。 用户客户端授权远程应用程序客户端代表用户客户端与服务器执行一个或多个操作。 用户客户端向远程认证服务提供一个或多个密钥; 接收远程认证客户端远离服务器的远程应用程序客户机的标识符; 并且向远程认证服务通知远程认证服务器被授权从远程认证服务获得关于来自服务器的质询的响应，其中响应基于由远程认证服务存储的一个或多个密钥中的至少一个 代表用户客户端。 远程应用程序客户端提供从远程应用程序客户端尝试访问用户客户端的服务器接收到的挑战，以及向远程认证服务的用户客户端的标识符，并从远程认证服务接收对挑战的响应 ，其中所述响应基于所述远程认证服务代表所述用户客户端存储的一个或多个密钥。