ATE437498T1 - Schnelle re-authentifizierung mit dynamischen berechtigungsnachweisen - Google Patents

Schnelle re-authentifizierung mit dynamischen berechtigungsnachweisen

Info

Publication number
ATE437498T1
ATE437498T1 AT04713312T AT04713312T ATE437498T1 AT E437498 T1 ATE437498 T1 AT E437498T1 AT 04713312 T AT04713312 T AT 04713312T AT 04713312 T AT04713312 T AT 04713312T AT E437498 T1 ATE437498 T1 AT E437498T1
Authority
AT
Austria
Prior art keywords
server
authentication
proxy server
request
access
Prior art date
Application number
AT04713312T
Other languages
English (en)
Inventor
David Halasz
Glen W Zorn
Original Assignee
Cisco Tech Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Cisco Tech Inc filed Critical Cisco Tech Inc
Application granted granted Critical
Publication of ATE437498T1 publication Critical patent/ATE437498T1/de

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/162Implementing security features at a particular protocol layer at the data link layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0892Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/18Multiprotocol handlers, e.g. single devices capable of handling multiple protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/062Pre-authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/2854Wide area networks, e.g. public data networks
    • H04L12/2856Access arrangements, e.g. Internet access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection
    • H04W36/0033Control or signalling for completing the hand-off for data sessions of end-to-end connection with transfer of context information
    • H04W36/0038Control or signalling for completing the hand-off for data sessions of end-to-end connection with transfer of context information of security context information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/18Service support devices; Network management devices
    • H04W88/182Network node acting on behalf of an other network entity, e.g. proxy

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Computer And Data Communications (AREA)
  • Telephonic Communication Services (AREA)
  • Telephone Function (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
AT04713312T 2003-02-26 2004-02-20 Schnelle re-authentifizierung mit dynamischen berechtigungsnachweisen ATE437498T1 (de)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/373,128 US7434044B2 (en) 2003-02-26 2003-02-26 Fast re-authentication with dynamic credentials
PCT/US2004/004998 WO2004077750A1 (en) 2003-02-26 2004-02-20 Fast re-authentication with dynamic credentials

Publications (1)

Publication Number Publication Date
ATE437498T1 true ATE437498T1 (de) 2009-08-15

Family

ID=32868644

Family Applications (1)

Application Number Title Priority Date Filing Date
AT04713312T ATE437498T1 (de) 2003-02-26 2004-02-20 Schnelle re-authentifizierung mit dynamischen berechtigungsnachweisen

Country Status (8)

Country Link
US (2) US7434044B2 (de)
EP (1) EP1597866B1 (de)
CN (1) CN1765082B (de)
AT (1) ATE437498T1 (de)
AU (1) AU2004214799B2 (de)
CA (1) CA2517474C (de)
DE (1) DE602004022142D1 (de)
WO (1) WO2004077750A1 (de)

Families Citing this family (57)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20050122343A (ko) * 2004-06-24 2005-12-29 엑서스테크놀러지 주식회사 네트워크 통합 관리 시스템
FR2872979A1 (fr) * 2004-07-09 2006-01-13 France Telecom Systeme d'acces controle a des informations contenues dans un terminal
KR100846868B1 (ko) * 2005-01-17 2008-07-17 엘지전자 주식회사 Supl 기반의 위치정보 시스템에서의 tls 세션관리방법
US7900039B2 (en) * 2005-01-17 2011-03-01 Lg Electronics, Inc. TLS session management method in SUPL-based positioning system
US7477747B2 (en) * 2005-02-04 2009-01-13 Cisco Technology, Inc. Method and system for inter-subnet pre-authentication
KR100595714B1 (ko) * 2005-04-01 2006-07-03 엘지전자 주식회사 Supl 기반의 위치정보 시스템에서 supl 초기화메시지 및 이를 이용한 supl 처리방법
KR100667181B1 (ko) * 2005-06-22 2007-01-12 한국전자통신연구원 무선 휴대 인터넷 시스템에서의 인증키 식별자 할당 방법
GB2430580B (en) * 2005-09-13 2008-04-09 Roke Manor Research A method of authenticating access points on a wireless network
US20070067638A1 (en) * 2005-09-22 2007-03-22 Roland Haibl Method of Session Consolidation
US7716721B2 (en) 2005-10-18 2010-05-11 Cisco Technology, Inc. Method and apparatus for re-authentication of a computing device using cached state
JP4670598B2 (ja) * 2005-11-04 2011-04-13 日本電気株式会社 ネットワークシステム、プロキシサーバ、セッション管理方法、及びプログラム
US20070165582A1 (en) * 2006-01-18 2007-07-19 Puneet Batta System and method for authenticating a wireless computing device
ATE463844T1 (de) * 2006-02-14 2010-04-15 Ericsson Telefon Ab L M Verfahren und vorrichtung zum authentifizieren
US8356171B2 (en) * 2006-04-26 2013-01-15 Cisco Technology, Inc. System and method for implementing fast reauthentication
US8555350B1 (en) * 2006-06-23 2013-10-08 Cisco Technology, Inc. System and method for ensuring persistent communications between a client and an authentication server
KR100739809B1 (ko) 2006-08-09 2007-07-13 삼성전자주식회사 Wpa-psk 환경의 무선 네트워크에서 스테이션을관리하는 방법 및 이를 위한 장치
CN1913439B (zh) * 2006-09-08 2011-05-04 中国移动通信集团公司 一种鉴权方法以及发送鉴权成功信息的方法
US8214635B2 (en) 2006-11-28 2012-07-03 Cisco Technology, Inc. Transparent proxy of encrypted sessions
CN100512312C (zh) 2006-12-18 2009-07-08 西安西电捷通无线网络通信有限公司 一种三元结构的对等访问控制方法
CN100463462C (zh) * 2006-12-18 2009-02-18 西安西电捷通无线网络通信有限公司 一种三元结构的对等访问控制系统
WO2008110946A1 (en) * 2007-02-05 2008-09-18 Nokia Corporation Authentication procedure in an intelligent proxy for multi-access devices
US8307414B2 (en) * 2007-09-07 2012-11-06 Deutsche Telekom Ag Method and system for distributed, localized authentication in the framework of 802.11
US8122251B2 (en) * 2007-09-19 2012-02-21 Alcatel Lucent Method and apparatus for preventing phishing attacks
CN101296085B (zh) * 2008-06-23 2011-07-13 中兴通讯股份有限公司 基于分叉的认证方法、系统以及分叉认证装置
CA2741459C (en) * 2008-10-22 2018-01-02 Research In Motion Limited Pushing certificate chains to remote devices
US8555069B2 (en) * 2009-03-06 2013-10-08 Microsoft Corporation Fast-reconnection of negotiable authentication network clients
US9338165B2 (en) * 2009-03-12 2016-05-10 Cisco Technology, Inc. Common internet file system proxy authentication of multiple servers
CN101588244A (zh) * 2009-05-08 2009-11-25 中兴通讯股份有限公司 对网络设备进行鉴权的方法及系统
CN102014361B (zh) * 2009-09-07 2014-02-19 华为技术有限公司 一种认证授权计费会话更新方法、装置和系统
DE102010021256A1 (de) * 2010-05-21 2011-11-24 Siemens Aktiengesellschaft Verfahren zur dynamischen Autorisierung eines mobilen Kommunikationsgerätes
CN102075904B (zh) * 2010-12-24 2015-02-11 杭州华三通信技术有限公司 一种防止漫游用户再次认证的方法和装置
US10169094B2 (en) * 2011-04-27 2019-01-01 Hewlett Packard Enterprise Development Lp Dynamic transaction-persistent server load balancing
US9787655B2 (en) * 2011-12-09 2017-10-10 Airwatch Llc Controlling access to resources on a network
US9131370B2 (en) 2011-12-29 2015-09-08 Mcafee, Inc. Simplified mobile communication device
US9262592B2 (en) 2012-04-09 2016-02-16 Mcafee, Inc. Wireless storage device
US8819445B2 (en) 2012-04-09 2014-08-26 Mcafee, Inc. Wireless token authentication
US9547761B2 (en) 2012-04-09 2017-01-17 Mcafee, Inc. Wireless token device
US20130268687A1 (en) * 2012-04-09 2013-10-10 Mcafee, Inc. Wireless token device
CN102833264B (zh) * 2012-09-07 2016-03-30 北京星网锐捷网络技术有限公司 防止认证用户通过代理逃费的方法、装置和认证客户端
US8984277B2 (en) * 2012-09-28 2015-03-17 Cisco Technology, Inc. Reduced authentication times in constrained computer networks
WO2014064686A1 (en) * 2012-10-24 2014-05-01 Cyber-Ark Software Ltd. A system and method for secure proxy-based authentication
US9344404B2 (en) * 2013-01-31 2016-05-17 Dell Products L.P. System and method for synchronizing connection credentials
US9219710B2 (en) 2013-03-15 2015-12-22 Microsoft Technology Licensing, Llc Seamless authentication with proxy servers
KR20140124157A (ko) * 2013-04-16 2014-10-24 삼성전자주식회사 무선 네트워크에서 키 하이어라키 생성 장치 및 방법
AU2014334713A1 (en) 2013-10-14 2016-05-19 Equifax Inc. Providing identification information to mobile commerce applications
US9565185B2 (en) 2014-11-24 2017-02-07 At&T Intellectual Property I, L.P. Facilitation of seamless security data transfer for wireless network devices
WO2018191638A1 (en) 2017-04-13 2018-10-18 Equifax, Inc. Location-based detection of unauthorized use of interactive computing environment functions
CA3067821C (en) 2017-06-29 2021-04-27 Equifax, Inc. Third-party authorization support for interactive computing environment functions
CN109413646B (zh) * 2017-08-16 2020-10-16 华为技术有限公司 安全接入方法、设备及系统
US11449630B2 (en) 2017-12-14 2022-09-20 Equifax Inc. Embedded third-party application programming interface to prevent transmission of sensitive data
US10834591B2 (en) 2018-08-30 2020-11-10 At&T Intellectual Property I, L.P. System and method for policy-based extensible authentication protocol authentication
CN109067788B (zh) * 2018-09-21 2020-06-09 新华三技术有限公司 一种接入认证的方法及装置
US12537691B2 (en) * 2021-11-17 2026-01-27 Ruckus Ip Holdings Llc Offloading authentication to an authenticator
JP7750077B2 (ja) * 2021-12-15 2025-10-07 ヤマハ株式会社 無線通信装置、通信制御方法、およびプログラム
US12418530B2 (en) * 2022-10-28 2025-09-16 Ruckus Ip Holdings Llc Automatic periodic pre-shared key update
US20240323011A1 (en) * 2023-03-21 2024-09-26 Capital One Services, Llc System and method for web access with contactless card
US20240334190A1 (en) * 2023-03-31 2024-10-03 Juniper Networks, Inc. Dynamic load balancing of radius requests from network access server device

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5862481A (en) * 1996-04-08 1999-01-19 Northern Telecom Limited Inter-technology roaming proxy
US6034618A (en) * 1996-10-31 2000-03-07 Matsushita Electric Industrial Co., Ltd. Device authentication system which allows the authentication function to be changed
US7882247B2 (en) * 1999-06-11 2011-02-01 Netmotion Wireless, Inc. Method and apparatus for providing secure connectivity in mobile and other intermittent computing environments
US6618370B1 (en) * 1999-11-16 2003-09-09 Bellsouth Intellectual Property Corporation System and method for bandwidth on demand for internet service providers
US20030050918A1 (en) 2000-04-10 2003-03-13 Pilkington John Dr Provision of secure access for telecommunications system
EP1150521A1 (de) * 2000-04-25 2001-10-31 Alcatel Ein Verfahren zum Aufbau einer Verbindung zwischen einem Hauptrechner in einem Datennetz und einem mobilen Endgerät in einem mobilen Netz sowie ein Gerät zur Durchführung dieses Verfahrens
US7383329B2 (en) * 2001-02-13 2008-06-03 Aventail, Llc Distributed cache for state transfer operations
US7281139B2 (en) * 2002-07-11 2007-10-09 Sun Microsystems, Inc. Authenticating legacy service via web technology

Also Published As

Publication number Publication date
CA2517474A1 (en) 2004-09-10
DE602004022142D1 (de) 2009-09-03
US20080301790A1 (en) 2008-12-04
CN1765082B (zh) 2012-02-01
US7802091B2 (en) 2010-09-21
US7434044B2 (en) 2008-10-07
CN1765082A (zh) 2006-04-26
CA2517474C (en) 2010-03-23
AU2004214799B2 (en) 2009-02-19
EP1597866A1 (de) 2005-11-23
EP1597866B1 (de) 2009-07-22
US20040168054A1 (en) 2004-08-26
AU2004214799A1 (en) 2004-09-10
WO2004077750A1 (en) 2004-09-10

Similar Documents

Publication Publication Date Title
ATE437498T1 (de) Schnelle re-authentifizierung mit dynamischen berechtigungsnachweisen
US9578007B2 (en) Secure transmission of a session identifier during service authentication
Niruntasukrat et al. Authorization mechanism for MQTT-based Internet of Things
CN103139200B (zh) 一种Web service单点登录的方法
US9098678B2 (en) Streaming video authentication
US8850037B2 (en) Communication session transfer between devices
US10158608B2 (en) Key establishment for constrained resource devices
US9369286B2 (en) System and methods for facilitating authentication of an electronic device accessing plurality of mobile applications
US9980134B2 (en) Method and apparatus for passpoint EAP session tracking
WO2002033884A3 (en) Method and apparatus for providing a key distribution center
WO2015036789A3 (en) Communicating with a device
TW200704100A (en) Encryption communication method and system
WO2004051964A3 (en) Tunneled authentication protocol for preventing man-in-the-middle attacks
TW200640220A (en) System and method for providing a multi-credential authentication protocol
KR102689853B1 (ko) 메시지 레벨 보안을 사용하여 메시징하기 위한 장치, 방법 및 제조 물품
US20170237742A1 (en) Methods, Devices and Management Terminals For Establishing a Secure Session With a Service
CN102547701A (zh) 认证方法、无线接入点和认证服务器
EP2997711B1 (de) Bereitstellung von single-sign-on für drahtlose vorrichtungen
US8903095B2 (en) Methods and apparatuses for avoiding damage in network attacks
Huang et al. A token-based user authentication mechanism for data exchange in RESTful API
CN109150800A (zh) 一种登录访问方法、系统和存储介质
US9774588B2 (en) Single sign off handling by network device in federated identity deployment
US20080313455A1 (en) Key support for password-based authentication mechanisms
CN108667761B (zh) 一种利用安全套接字层会话保护单点登录的方法
CN104735037B (zh) 一种网络认证方法、装置及系统

Legal Events

Date Code Title Description
RER Ceased as to paragraph 5 lit. 3 law introducing patent treaties