公开(公告)号：US08856517B2

公开(公告)日：2014-10-07

申请号：US13686543

申请日：2012-11-27

申请人： Oracle International Corporation

发明人： Aarathi Balakrishnan ,  Vikas Pooven Chathath ,  Madhu Martin

IPC分类号： H04L9/32

CPC分类号： H04L9/3213 ,  G06F21/335 ,  H04L63/0807 ,  H04L63/0815

摘要： A method of using an access manager server to establish a communication session between a resource and a user device may include receiving a request from the user device to access the resource, determining that the client system is registered as a trusted partner, sending the client system a first encrypted token that includes a resource identifier where the client system has access to a first cryptographic key that decrypts the first encrypted token. The method may also include receiving a second encrypted token that signifies that access to the resource has been granted by the client system where the second token comprises a user identifier and the access manager server has access to a second cryptographic key that decrypts the second token. The method may additionally include decrypting the second token and establishing the communication session between the user device and the resource using the user identifier.

摘要翻译： 使用访问管理器服务器在资源和用户设备之间建立通信会话的方法可以包括从用户设备接收访问资源的请求，确定客户端系统被注册为可信伙伴，发送客户端系统 第一加密令牌，其包括资源标识符，其中客户端系统可以访问解密第一加密令牌的第一加密密钥。 该方法还可以包括接收表示对资源的访问已被客户端系统授予的第二加密令牌，其中第二令牌包括用户标识符，并且访问管理器服务器可以访问解密第二令牌的第二加密密钥。 该方法可以另外包括使用用户标识符解密第二令牌并建立用户设备和资源之间的通信会话。