Authentication Framework for Web Access to Remote Hosts

摘要

An authentication framework is described that provides a secure means for clients211u001eto access remote computing resources via the Web. Clients authenticate themselves 211u001eto a proxy Web server using a secure protocol and a digital certificate. The 211u001eserver constructs a fingerprint (digest) of the certificate using a secure hash 211u001efunction. This has value acts as a user's identification, which is used to obtain 211u001eremote login information for that user from an authentication database. Client 211u001ecommands can then be executed by the Web server on remote hosts using the Secure 211u001eShell protocol. The system does not require a large amount of specialized 211u001esoftware, and creates a secure, encrypted chain between the client and any number 211u001eof remote resources.