CN103179108B - 应用认证方法及计算机系统 - Google Patents

应用认证方法及计算机系统 Download PDF

Info

Publication number
CN103179108B
CN103179108B CN201310020053.5A CN201310020053A CN103179108B CN 103179108 B CN103179108 B CN 103179108B CN 201310020053 A CN201310020053 A CN 201310020053A CN 103179108 B CN103179108 B CN 103179108B
Authority
CN
China
Prior art keywords
application
authentication
issuer
certificate
list
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201310020053.5A
Other languages
English (en)
Chinese (zh)
Other versions
CN103179108A (zh
Inventor
V·艾德尔曼
B·克雷斯
M·莱布曼
M·努尔丁
L·余
H·罗
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Microsoft Technology Licensing LLC
Original Assignee
Microsoft Technology Licensing LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Technology Licensing LLC filed Critical Microsoft Technology Licensing LLC
Publication of CN103179108A publication Critical patent/CN103179108A/zh
Application granted granted Critical
Publication of CN103179108B publication Critical patent/CN103179108B/zh
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/35Network arrangements, protocols or services for addressing or naming involving non-standard use of addresses for implementing network functionalities, e.g. coding subscription information within the address or functional addressing, i.e. assigning an address to a function
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2101/00Indexing scheme associated with group H04L61/00
    • H04L2101/30Types of network names
    • H04L2101/365Application layer names, e.g. buddy names, unstructured names chosen by a user or home appliance name
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Storage Device Security (AREA)
  • Computer And Data Communications (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Information Transfer Between Computers (AREA)
CN201310020053.5A 2012-01-19 2013-01-18 应用认证方法及计算机系统 Expired - Fee Related CN103179108B (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US13/354,324 2012-01-19
US13/354,324 US8819794B2 (en) 2012-01-19 2012-01-19 Integrating server applications with multiple authentication providers

Publications (2)

Publication Number Publication Date
CN103179108A CN103179108A (zh) 2013-06-26
CN103179108B true CN103179108B (zh) 2016-08-10

Family

ID=48638732

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310020053.5A Expired - Fee Related CN103179108B (zh) 2012-01-19 2013-01-18 应用认证方法及计算机系统

Country Status (6)

Country Link
US (1) US8819794B2 (https=)
EP (1) EP2805447B1 (https=)
JP (1) JP6185934B2 (https=)
KR (1) KR20140116422A (https=)
CN (1) CN103179108B (https=)
WO (1) WO2013109556A1 (https=)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107579948B (zh) * 2016-07-05 2022-05-10 华为技术有限公司 一种网络安全的管理系统、方法及装置
EP3432539B1 (de) * 2017-07-20 2020-12-23 Siemens Aktiengesellschaft Verfahren zum aufbau eines kommunikationskanals zwischen einer servereinrichtung und einer clienteinrichtung
US11025628B2 (en) * 2018-04-17 2021-06-01 Cisco Technology, Inc. Secure modification of manufacturer usage description files based on device applications
US11924112B2 (en) * 2021-03-30 2024-03-05 Cisco Technology, Inc. Real-time data transaction configuration of network devices
US20250131422A1 (en) * 2023-10-18 2025-04-24 Sean Harrison Worthington Key Exchange Through a Plurality of Non-Trusted Third Parties

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7520339B2 (en) * 2004-01-26 2009-04-21 Ricoh Company, Ltd. Apparatus for achieving integrated management of distributed user information
CN101610241A (zh) * 2008-06-16 2009-12-23 华为技术有限公司 一种绑定认证的方法、系统和装置

Family Cites Families (31)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2188330C (en) * 1995-12-12 2001-04-24 Michael D. Bamburak A method for selecting a wireless communications service provider in a multi-service provider environment
US6052590A (en) * 1997-07-29 2000-04-18 Ericsson, Inc. Method for reducing control channel scan time
US6510236B1 (en) 1998-12-11 2003-01-21 International Business Machines Corporation Authentication framework for managing authentication requests from multiple authentication devices
EP1436938B1 (en) * 2001-10-12 2016-09-07 Geo Trust, Inc. Method for automated identification, processing and issuance of digital certificates
US7584505B2 (en) * 2001-10-16 2009-09-01 Microsoft Corporation Inspected secure communication protocol
US7707120B2 (en) 2002-04-17 2010-04-27 Visa International Service Association Mobile account authentication service
US7240366B2 (en) 2002-05-17 2007-07-03 Microsoft Corporation End-to-end authentication of session initiation protocol messages using certificates
US7392375B2 (en) * 2002-09-18 2008-06-24 Colligo Networks, Inc. Peer-to-peer authentication for real-time collaboration
US8020196B2 (en) 2002-10-25 2011-09-13 Randle William M Secure transmission and exchange of standardized data
US20080114832A1 (en) * 2003-03-07 2008-05-15 Atreus Systems Corp. Using multiple policy distribution points to initiate a network-based service
US7644275B2 (en) * 2003-04-15 2010-01-05 Microsoft Corporation Pass-thru for client authentication
US7194763B2 (en) 2004-08-02 2007-03-20 Cisco Technology, Inc. Method and apparatus for determining authentication capabilities
US7945954B2 (en) * 2004-09-07 2011-05-17 Coueignoux Philippe J M Controlling electronic messages
US7539193B2 (en) * 2005-01-27 2009-05-26 Time Warner Cable, Inc. System and method for facilitating communication between a CMTS and an application server in a cable network
US8631476B2 (en) 2005-03-31 2014-01-14 Sap Ag Data processing system including explicit and generic grants of action authorization
US8091120B2 (en) * 2005-12-21 2012-01-03 At&T Intellectual Property I, L.P. Adaptive authentication methods, systems, devices, and computer program products
US7600123B2 (en) * 2005-12-22 2009-10-06 Microsoft Corporation Certificate registration after issuance for secure communication
US7788730B2 (en) * 2006-01-17 2010-08-31 International Business Machines Corporation Secure bytecode instrumentation facility
US7805489B2 (en) * 2006-06-27 2010-09-28 Research In Motion Limited Electronic mail communications system with client email internet service provider (ISP) polling application and related methods
US8423762B2 (en) * 2006-07-25 2013-04-16 Northrop Grumman Systems Corporation Common access card heterogeneous (CACHET) system and method
US8347403B2 (en) * 2006-12-19 2013-01-01 Canon Kabushiki Kaisha Single point authentication for web service policy definition
US8171535B2 (en) * 2006-12-19 2012-05-01 Canon Kabushiki Kaisha Dynamic web service policy broadcasting/enforcement for applications
US8281375B2 (en) 2007-01-05 2012-10-02 Ebay Inc. One time password authentication of websites
EP2202913B1 (en) * 2007-10-19 2012-12-05 Nippon Telegraph and Telephone Corporation User authentication and method for the same
US8151333B2 (en) * 2008-11-24 2012-04-03 Microsoft Corporation Distributed single sign on technologies including privacy protection and proactive updating
US20100251353A1 (en) 2009-03-25 2010-09-30 Novell, Inc. User-authorized information card delegation
US8347356B2 (en) 2009-03-31 2013-01-01 Microsoft Corporation Adaptive HTTP authentication scheme selection
US8078870B2 (en) * 2009-05-14 2011-12-13 Microsoft Corporation HTTP-based authentication
US9015609B2 (en) * 2009-05-18 2015-04-21 American Well Corporation Provider to-provider consultations
US8527360B2 (en) * 2011-04-29 2013-09-03 Daon Holdings Limited Methods and systems for conducting payment transactions
US8868680B2 (en) * 2011-06-30 2014-10-21 Infosys Technologies Ltd. Methods for recommending personalized content based on profile and context information and devices thereof

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7520339B2 (en) * 2004-01-26 2009-04-21 Ricoh Company, Ltd. Apparatus for achieving integrated management of distributed user information
CN101610241A (zh) * 2008-06-16 2009-12-23 华为技术有限公司 一种绑定认证的方法、系统和装置

Also Published As

Publication number Publication date
JP2015505626A (ja) 2015-02-23
US20130191894A1 (en) 2013-07-25
CN103179108A (zh) 2013-06-26
EP2805447A4 (en) 2015-10-21
KR20140116422A (ko) 2014-10-02
WO2013109556A1 (en) 2013-07-25
JP6185934B2 (ja) 2017-08-23
EP2805447A1 (en) 2014-11-26
US8819794B2 (en) 2014-08-26
EP2805447B1 (en) 2019-04-10

Similar Documents

Publication Publication Date Title
EP3353946B1 (en) Secure enrolment of security device for communication with security server
Saint-Andre et al. Representation and verification of domain-based application service identity within internet public key infrastructure using X. 509 (PKIX) certificates in the context of transport layer security (TLS)
JP5944501B2 (ja) ピアツーピアオーバーレイネットワーク内のデータオブジェクトに対するグループアクセス制御の容易化
CN1701295B (zh) 用于对计算机网格进行单次登录访问的方法和系统
US10171470B2 (en) Techniques for secure debugging and monitoring
CN104137112B (zh) 安全的单点登录
US11366891B2 (en) Method and system for facilitating an identification of an application
US20100071048A1 (en) Service binding
US9967290B2 (en) Systems and methods for automating client-side discovery of public keys of external contacts that are secured by DANE using DNSSEC
JP2010531516A (ja) 安全でないネットワークを介する装置のプロビジョニング及びドメイン加入エミュレーション
CN106487774A (zh) 一种云主机服务权限控制方法、装置和系统
CN113341798A (zh) 远程访问应用的方法、系统、装置、设备及存储介质
US8613043B2 (en) Identity mediation in enterprise service bus
CN103179108B (zh) 应用认证方法及计算机系统
JP2018092446A (ja) 認証認可システム及び情報処理装置と認証認可方法とプログラム
CN105471885A (zh) 一种基于vpn连接的远程服务器及其登录方法
CN112437100A (zh) 漏洞扫描方法及相关设备
JP2024177164A (ja) 分散台帳に関連付けられた宛先アドレッシング
US11611541B2 (en) Secure method to replicate on-premise secrets in a cloud environment
WO2025050947A1 (zh) 访问身份数据的方法、装置及系统
CN119382919A (zh) 利用域目录的基于客户端的业务控制的系统和方法
CN116418539B (zh) 身份认证方法、系统、装置、设备及存储介质
HK40041393A (en) Vulnerability scanning method and related equipment
WO2009127163A1 (zh) 用户属性查询的方法、提供服务的方法及设备
HK40030332B (zh) 用於基於区块链的交叉实体认证的系统和方法

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
ASS Succession or assignment of patent right

Owner name: MICROSOFT TECHNOLOGY LICENSING LLC

Free format text: FORMER OWNER: MICROSOFT CORP.

Effective date: 20150728

C41 Transfer of patent application or patent right or utility model
TA01 Transfer of patent application right

Effective date of registration: 20150728

Address after: Washington State

Applicant after: MICROSOFT TECHNOLOGY LICENSING, LLC

Address before: Washington State

Applicant before: Microsoft Corp.

C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20160810