首页>
外国专利>
METHOD AND SYSTEM FOR STEPPING UP TO CERTIFICATE-BASED AUTHENTICATION WITHOUT BREAKING AN EXISTING SSL SESSION
METHOD AND SYSTEM FOR STEPPING UP TO CERTIFICATE-BASED AUTHENTICATION WITHOUT BREAKING AN EXISTING SSL SESSION
展开▼
机译:在不破坏现有的SSL会话的情况下逐步进行基于证书的认证的方法和系统
展开▼
页面导航
摘要
著录项
相似文献
摘要
A method is presented for performing authentication operations. When a clientrequests a resource from a server, a non-certificate~based authenticationoperation is performed through an SSL (Secure Sockets Layer) session betweenthe server and the client, When the client requests another resource, theserver determines to step up to a more restrictive level of authentication,and a certificate-based authentication operation is performed through the SSLsession without exiting or renegotiating the SSL session prior to completionof the certificate-based authentication operation. During the certificate-based authentication procedure, an executable module is downloaded to theclient from the server through the SSL session, after which the serverreceives through the SSL session a digital signature that has been generatedby the executable module using a digital certificate at the client. Inresponse to successfully verifying the digital signature at the server, theserver provides access to a requested resource.
展开▼