Self-validating authentication token
    1.
    发明授权
    Self-validating authentication token 有权
    自我验证身份验证令牌

    公开(公告)号:US08775810B1

    公开(公告)日:2014-07-08

    申请号:US12570792

    申请日:2009-09-30

    摘要: Systems, methods, and computer-readable media provide a requesting device with access to a service. In one implementation, a server stores a token decryption key for validating an encrypted token. The server receives the encrypted token and a digital signature generated using a signature creation key from a client device, and decrypts the token with the token decryption key. The server extracts a signature validation key from the token, and validates the digital signature using the signature validation data. The system provides the client device with access to the service, based on whether the digital signature is validated.

    摘要翻译: 系统,方法和计算机可读介质为请求设备提供对服务的访问。 在一个实现中,服务器存储用于验证加密令牌的令牌解密密钥。 服务器接收加密令牌和使用来自客户端设备的签名创建密钥生成的数字签名,并用令牌解密密钥对令牌进行解密。 服务器从令牌中提取签名验证密钥,并使用签名验证数据验证数字签名。 该系统基于数字签名是否被验证,为客户端设备提供对服务的访问。