CN102422593B - 基于http的认证 - Google Patents

基于http的认证 Download PDF

Info

Publication number
CN102422593B
CN102422593B CN2010800214848A CN201080021484A CN102422593B CN 102422593 B CN102422593 B CN 102422593B CN 2010800214848 A CN2010800214848 A CN 2010800214848A CN 201080021484 A CN201080021484 A CN 201080021484A CN 102422593 B CN102422593 B CN 102422593B
Authority
CN
China
Prior art keywords
http
security token
message
token
header
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2010800214848A
Other languages
English (en)
Chinese (zh)
Other versions
CN102422593A (zh
Inventor
A·K·纳恩达
H·威尔逊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Microsoft Technology Licensing LLC
Original Assignee
Microsoft Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Corp filed Critical Microsoft Corp
Publication of CN102422593A publication Critical patent/CN102422593A/zh
Application granted granted Critical
Publication of CN102422593B publication Critical patent/CN102422593B/zh
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/168Implementing security features at a particular protocol layer above the transport layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Storage Device Security (AREA)
  • Information Transfer Between Computers (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
CN2010800214848A 2009-05-14 2010-05-11 基于http的认证 Expired - Fee Related CN102422593B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US12/465,725 2009-05-14
US12/465,725 US8078870B2 (en) 2009-05-14 2009-05-14 HTTP-based authentication
PCT/US2010/034402 WO2010132462A2 (en) 2009-05-14 2010-05-11 Http-based authentication

Publications (2)

Publication Number Publication Date
CN102422593A CN102422593A (zh) 2012-04-18
CN102422593B true CN102422593B (zh) 2013-03-13

Family

ID=43069462

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2010800214848A Expired - Fee Related CN102422593B (zh) 2009-05-14 2010-05-11 基于http的认证

Country Status (5)

Country Link
US (1) US8078870B2 (https=)
EP (1) EP2430792B1 (https=)
JP (2) JP5658745B2 (https=)
CN (1) CN102422593B (https=)
WO (1) WO2010132462A2 (https=)

Families Citing this family (59)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7739724B2 (en) * 2005-06-30 2010-06-15 Intel Corporation Techniques for authenticated posture reporting and associated enforcement of network access
US20080201338A1 (en) * 2007-02-16 2008-08-21 Microsoft Corporation Rest for entities
US9191235B2 (en) * 2010-02-05 2015-11-17 Microsoft Technology Licensing, Llc Moderating electronic communications
WO2012005739A1 (en) * 2010-07-09 2012-01-12 Hewlett-Packard Development Company, L.P. Responses to server challenges included in a hypertext transfer protocol header
US8825745B2 (en) 2010-07-11 2014-09-02 Microsoft Corporation URL-facilitated access to spreadsheet elements
US8713589B2 (en) * 2010-12-23 2014-04-29 Microsoft Corporation Registration and network access control
US8447857B2 (en) * 2011-03-25 2013-05-21 International Business Machines Corporation Transforming HTTP requests into web services trust messages for security processing
US8775555B2 (en) * 2011-05-13 2014-07-08 Sap Ag Rest interface interaction with expectation management
CN102938757B (zh) * 2011-08-15 2017-12-08 中兴通讯股份有限公司 共享网络中用户数据的方法和身份提供服务器
US8914502B2 (en) * 2011-09-27 2014-12-16 Oracle International Corporation System and method for dynamic discovery of origin servers in a traffic director environment
US8819794B2 (en) * 2012-01-19 2014-08-26 Microsoft Corporation Integrating server applications with multiple authentication providers
US9026784B2 (en) 2012-01-26 2015-05-05 Mcafee, Inc. System and method for innovative management of transport layer security session tickets in a network environment
CN103312665A (zh) * 2012-03-09 2013-09-18 阿尔卡特朗讯公司 用于敏感数据的安全机制
CN102799631B (zh) * 2012-06-26 2015-06-17 公安部第三研究所 基于rest实现网络电子身份标识业务过程管理控制的方法
US9628542B2 (en) * 2012-08-24 2017-04-18 Akamai Technologies, Inc. Hybrid HTTP and UDP content delivery
US9210145B2 (en) 2012-10-02 2015-12-08 Blackberry Limited Method and system for hypertext transfer protocol digest authentication
US9553915B2 (en) * 2012-10-10 2017-01-24 Ca, Inc. Method and system for implementing commands
JP6190106B2 (ja) * 2012-11-19 2017-08-30 キヤノン株式会社 認証システム、認証装置、認証方法、及びプログラム
US9525676B2 (en) * 2013-05-28 2016-12-20 Raytheon Company Message content adjudication based on security token
US9231915B2 (en) * 2013-10-29 2016-01-05 A 10 Networks, Incorporated Method and apparatus for optimizing hypertext transfer protocol (HTTP) uniform resource locator (URL) filtering
US10223550B2 (en) * 2013-11-06 2019-03-05 Vmware, Inc. Generating canonical representations of JSON documents
US9397990B1 (en) * 2013-11-08 2016-07-19 Google Inc. Methods and systems of generating and using authentication credentials for decentralized authorization in the cloud
US9509694B2 (en) 2013-12-31 2016-11-29 EMC IP Holding Company LLC Parallel on-premises and cloud-based authentication
JP5838248B1 (ja) * 2014-09-24 2016-01-06 株式会社 ディー・エヌ・エー ユーザに所定のサービスを提供するシステム及び方法
CN104394147B (zh) * 2014-11-26 2017-06-16 西安电子科技大学 在安卓系统的http协议中添加身份认证信息的方法
US9641504B2 (en) * 2014-12-15 2017-05-02 Sap Se HTTP header-based adaptable authentication mechanism
JP6418966B2 (ja) * 2015-01-29 2018-11-07 キヤノン株式会社 画像形成システム、画像形成装置、該システムの制御方法、及びプログラム
US9350556B1 (en) 2015-04-20 2016-05-24 Google Inc. Security model for identification and authentication in encrypted communications using delegate certificate chain bound to third party key
US10044718B2 (en) 2015-05-27 2018-08-07 Google Llc Authorization in a distributed system using access control lists and groups
CN105407102B (zh) * 2015-12-10 2019-05-17 四川长虹电器股份有限公司 http请求数据可靠性验证方法
SG11201806343XA (en) * 2016-01-26 2018-08-30 Soracom Inc Server and program
WO2017131892A1 (en) 2016-01-29 2017-08-03 Google Inc. Device access revocation
JP6130941B2 (ja) * 2016-02-03 2017-05-17 キヤノン株式会社 認証装置、方法、及びプログラム
JP6342441B2 (ja) * 2016-03-09 2018-06-13 株式会社東芝 認証処理装置および認証システム
CN107819639B (zh) * 2016-09-14 2021-12-24 西门子公司 一种测试方法和装置
US20180167383A1 (en) * 2016-12-12 2018-06-14 Qualcomm Incorporated Integration of password-less authentication systems with legacy identity federation
US10771453B2 (en) * 2017-01-04 2020-09-08 Cisco Technology, Inc. User-to-user information (UUI) carrying security token in pre-call authentication
US11182496B1 (en) 2017-04-03 2021-11-23 Amazon Technologies, Inc. Database proxy connection management
US11106540B1 (en) 2017-04-03 2021-08-31 Amazon Technologies, Inc. Database command replay
US11500824B1 (en) 2017-04-03 2022-11-15 Amazon Technologies, Inc. Database proxy
US11392603B1 (en) * 2017-04-03 2022-07-19 Amazon Technologies, Inc. Database rest API
US10728245B2 (en) * 2017-12-07 2020-07-28 Ca, Inc. HTTP proxy authentication using custom headers
US10560331B2 (en) * 2018-02-07 2020-02-11 Juniper Networks, Inc. Self-driven and adaptable multi-vBNG management orchestration
US10965675B2 (en) 2018-03-14 2021-03-30 Bank Of America Corporation Preventing unauthorized access to secure information systems using advanced pre-authentication techniques
JP2019125334A (ja) * 2018-07-31 2019-07-25 株式会社Cygames 通信を行うためのシステム、プログラム、方法及びサーバ
JP6800932B2 (ja) * 2018-10-09 2020-12-16 キヤノン株式会社 画像形成装置、画像形成方法、及びプログラム
US11657298B2 (en) 2019-04-19 2023-05-23 T-Mobile Usa, Inc. Card engine for producing dynamically configured content
US11190514B2 (en) * 2019-06-17 2021-11-30 Microsoft Technology Licensing, Llc Client-server security enhancement using information accessed from access tokens
US11265345B2 (en) 2019-08-06 2022-03-01 Red Hat, Inc. Server detection of leaked credentials over HTTP
US11675773B2 (en) 2020-01-22 2023-06-13 T-Mobile Usa, Inc. Content management
US11481196B2 (en) 2020-01-22 2022-10-25 T-Mobile Usa, Inc. User interface for accessing and modifying development area content
US11483155B2 (en) * 2020-01-22 2022-10-25 T-Mobile Usa, Inc. Access control using proof-of-possession token
US11470159B2 (en) 2020-08-28 2022-10-11 Cisco Technology, Inc. API key security posture scoring for microservices to determine microservice security risks
US11811739B2 (en) * 2021-01-06 2023-11-07 T-Mobile Usa, Inc. Web encryption for web messages and application programming interfaces
CN112865981B (zh) * 2021-02-02 2023-05-02 中国工商银行股份有限公司 一种令牌获取、验证方法及装置
JP7286073B2 (ja) * 2021-03-11 2023-06-05 国立大学法人京都大学 ウェブブラウザ、クライアント、情報閲覧支援システム、および情報閲覧支援方法
JP2022138831A (ja) * 2021-03-11 2022-09-26 国立大学法人京都大学 ウェブブラウザ、クライアント、情報閲覧支援システム、および情報閲覧支援方法
CN114978745B (zh) * 2022-06-09 2025-06-27 奇安信科技集团股份有限公司 口令审计方法、装置、电子设备及计算机可读存储介质
WO2025227207A1 (en) * 2024-05-03 2025-11-06 GoLogic Group Pty Ltd Communications system and methods

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101060519A (zh) * 2006-04-19 2007-10-24 上海贝尔阿尔卡特股份有限公司 使用户使用指定拨号程序进行拨号的控制方法及其装置
CN101350820A (zh) * 2008-08-29 2009-01-21 中兴通讯股份有限公司 一种推送业务代理网关对推送业务发起者的安全认证方法

Family Cites Families (28)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7000A (en) * 1850-01-08 Smut-machine
JP3932685B2 (ja) * 1998-08-11 2007-06-20 富士ゼロックス株式会社 ネットワーク上で遠隔手続き呼び出しを実行するための方法、及び、遠隔手続き呼び出しを実行可能なネットワーク・システム
US6986047B2 (en) * 2001-05-10 2006-01-10 International Business Machines Corporation Method and apparatus for serving content from a semi-trusted server
JP4053269B2 (ja) * 2001-09-27 2008-02-27 株式会社東芝 データ転送装置およびデータ転送方法
US7191467B1 (en) * 2002-03-15 2007-03-13 Microsoft Corporation Method and system of integrating third party authentication into internet browser code
US20060277607A1 (en) * 2003-05-01 2006-12-07 Chung Hyun-Kwon Authenticating method and apparatus
ATE391385T1 (de) * 2003-07-11 2008-04-15 Ibm Verfahren und system zur benutzerauthentifizierung in einer benutzer- anbieterumgebung
JP4612906B2 (ja) * 2003-09-12 2011-01-12 キヤノン株式会社 シーケンスを送信する方法、装置、及びコンピュータ・プログラム
WO2005039141A1 (de) * 2003-10-14 2005-04-28 Siemens Aktiengesellschaft Verfaren zur sicherung des datenverkehrs zwischen einem mobilfunknetz und einem ims-netz
US20050154886A1 (en) * 2004-01-12 2005-07-14 International Business Machines Corporation Declarative trust model between reverse proxy server and websphere application server
US20050268326A1 (en) * 2004-05-04 2005-12-01 Microsoft Corporation Checking the security of web services configurations
US7434252B2 (en) * 2004-07-14 2008-10-07 Microsoft Corporation Role-based authorization of network services using diversified security tokens
WO2007080558A2 (en) * 2006-01-16 2007-07-19 Zlango Ltd. Communications network system and methods for using same
US20060282886A1 (en) * 2005-06-09 2006-12-14 Lockheed Martin Corporation Service oriented security device management network
US8266327B2 (en) * 2005-06-21 2012-09-11 Cisco Technology, Inc. Identity brokering in a network element
US7788499B2 (en) * 2005-12-19 2010-08-31 Microsoft Corporation Security tokens including displayable claims
US7694131B2 (en) * 2006-09-29 2010-04-06 Microsoft Corporation Using rich pointers to reference tokens
US8001588B2 (en) * 2006-12-12 2011-08-16 Oracle International Corporation Secure single sign-on authentication between WSRP consumers and producers
US20080168273A1 (en) * 2007-01-05 2008-07-10 Chung Hyen V Configuration mechanism for flexible messaging security protocols
US8407767B2 (en) * 2007-01-18 2013-03-26 Microsoft Corporation Provisioning of digital identity representations
JP2008276724A (ja) * 2007-03-30 2008-11-13 Terumo Corp webサーバ、webサーバとして機能させるためのプログラム及び情報提供方法
EP1993255B1 (en) * 2007-05-18 2009-04-15 Sap Ag Method and system for protecting a message from an XML attack when being exchanged in a distributed and decentralized network system
US8528058B2 (en) * 2007-05-31 2013-09-03 Microsoft Corporation Native use of web service protocols and claims in server authentication
WO2009124223A1 (en) * 2008-04-02 2009-10-08 Twilio Inc. System and method for processing telephony sessions
US8479006B2 (en) * 2008-06-20 2013-07-02 Microsoft Corporation Digitally signing documents using identity context information
US9736153B2 (en) * 2008-06-27 2017-08-15 Microsoft Technology Licensing, Llc Techniques to perform federated authentication
US8910256B2 (en) * 2008-08-08 2014-12-09 Microsoft Corporation Form filling with digital identities, and automatic password generation
US8347356B2 (en) * 2009-03-31 2013-01-01 Microsoft Corporation Adaptive HTTP authentication scheme selection

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101060519A (zh) * 2006-04-19 2007-10-24 上海贝尔阿尔卡特股份有限公司 使用户使用指定拨号程序进行拨号的控制方法及其装置
CN101350820A (zh) * 2008-08-29 2009-01-21 中兴通讯股份有限公司 一种推送业务代理网关对推送业务发起者的安全认证方法

Also Published As

Publication number Publication date
US20100293385A1 (en) 2010-11-18
EP2430792B1 (en) 2017-04-19
WO2010132462A2 (en) 2010-11-18
CN102422593A (zh) 2012-04-18
EP2430792A2 (en) 2012-03-21
JP2015026391A (ja) 2015-02-05
JP5658745B2 (ja) 2015-01-28
EP2430792A4 (en) 2016-09-28
JP5889988B2 (ja) 2016-03-22
JP2012527179A (ja) 2012-11-01
WO2010132462A3 (en) 2011-02-24
US8078870B2 (en) 2011-12-13

Similar Documents

Publication Publication Date Title
CN102422593B (zh) 基于http的认证
CN1701295B (zh) 用于对计算机网格进行单次登录访问的方法和系统
US8340283B2 (en) Method and system for a PKI-based delegation process
US9992189B2 (en) Generation and validation of derived credentials
US8185938B2 (en) Method and system for network single-sign-on using a public key certificate and an associated attribute certificate
EP3375135B1 (en) Methods and systems for pki-based authentication
US7774611B2 (en) Enforcing file authorization access
CN100574184C (zh) 用于在计算机系统之间建立用于传递消息的安全上下文的方法和设备
US6993652B2 (en) Method and system for providing client privacy when requesting content from a public server
EP3149887B1 (en) Method and system for creating a certificate to authenticate a user identity
CN114008968B (zh) 用于计算环境中的许可授权的系统、方法和存储介质
US20210084020A1 (en) System and method for identity and authorization management
US20020144108A1 (en) Method and system for public-key-based secure authentication to distributed legacy applications
US20060294366A1 (en) Method and system for establishing a secure connection based on an attribute certificate having user credentials
KR20190114434A (ko) 블록체인 기반의 권한 인증 방법, 단말 및 이를 이용한 서버
CN101421968A (zh) 用于连网计算机应用的鉴权系统
US10579809B2 (en) National identification number based authentication and content delivery
US11503012B1 (en) Client authentication using a client certificate-based identity provider
US11882120B2 (en) Identity intermediary service authorization
US20060080527A1 (en) Secure inter-process communications
WO2020144099A1 (en) A signature generation system
WO2008084068A1 (en) Method and systems for proving the authenticity of a client to a server

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
ASS Succession or assignment of patent right

Owner name: MICROSOFT TECHNOLOGY LICENSING LLC

Free format text: FORMER OWNER: MICROSOFT CORP.

Effective date: 20150505

C41 Transfer of patent application or patent right or utility model
TR01 Transfer of patent right

Effective date of registration: 20150505

Address after: Washington State

Patentee after: MICROSOFT TECHNOLOGY LICENSING, LLC

Address before: Washington State

Patentee before: Microsoft Corp.

CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20130313