US Patent No: 7,360,096

Number of patents in Portfolio can not be more than 2000

Securely processing client credentials used for Web-based access to resources

Stats

ALSO PUBLISHED AS: 20040098609
ATTORNEY / AGENT: (SPONSORED)
 

Importance

Loading Importance Indicators... loading....

Abstract

The present invention provides for securely processing client credentials used for Web-based access to resources. A login page with an interface for entering user credentials is presented at a client and entered user credentials are sent to the server. In response to receiving user credentials, the server generates a unique session identifier for the client. The server also derives a digital signature for the user credentials based on a current key in a rotating key store and the unique session identifier. The server then encrypts the digital signature and the user credentials based on an encryption key derived from the current key and the unique session identifier. When encrypted credentials are received back at the client, keys from the rotating key store are used to attempt to validate the credentials. If user credentials can not be validated, a user is again presented with the login page.

Loading the Abstract Image... loading....

First Claim

Related Publications

Loading Related Publications... loading....

Patent Owner(s)

Patent OwnerAddressTotal Patents
MICROSOFT CORPORATIONREDMOND, WA24226

International Classification(s)

  • [Classification Symbol]
  • [Patents Count]

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Batthish, Karim Michel Seattle, WA 7 19
Bracewell, Shawn Derek Duvall, WA 2 9
Simpson, Jr Russell Lee Kirkland, WA 2 136
Ward, Richard B Redmond, WA 55 1267

Cited Art

Patent Info (Count) # Cites Year
 
SECURITY DYNAMICS TECHNOLOGIES, INC. (2)
5,168,520 Method and apparatus for personal identification 181 1991
5,657,388 Method and apparatus for utilizing a token for resource access 227 1994
 
KRYPTOSINA (1)
6,834,271 Apparatus for and method of secure ATM debit card and credit card payment transactions via the internet 16 1999
 
SECURITIES DYNAMICS TECHNOLOGIES, INC. (1)
5,237,614 Integrated network security system 257 1991
 
TANDEM COMPUTERS CORPORATION (1)
4,972,472 Method and apparatus for changing the master key in a cryptographic system 69 1985

Patent Citation Ranking

Forward Cites

Patent Info (Count) # Cites Year
 
ANAKAM, INC. (3)
8,079,070 System and method for blocking unauthorized network log in using stolen password 2 2005
8,219,822 System and method for blocking unauthorized network log in using stolen password 0 2005
8,296,562 Out of band system and method for authentication 0 2009
 
MICROSOFT CORPORATION (2)
8,352,519 Maintaining large random sample with semi-random append-only operations 0 2008
8,271,536 Multi-tenancy using suite of authorization manager components 2008
 
SUN MICROSYSTEMS, INC. (2)
7,730,523 Role-based access using combinatorial inheritance and randomized conjugates in an internet hosted environment 2 2005
7,650,505 Methods and apparatus for persistence of authentication and authorization for a multi-tenant internet hosted site using cookies 1 2005
 
CISCO TECHNOLOGY, INC. (1)
8,332,627 Mutual authentication 0 2007
 
MIRI SYSTEMS, LLC (1)
8,181,861 Electronic transaction security system and method 0 2008

Maintenance Fees

Fee Large entity fee small entity fee micro entity fee due date
7.5 Year Payment $3600.00 $1800.00 $900.00 Oct 15, 2015
11.5 Year Payment $7400.00 $3700.00 $1850.00 Oct 15, 2019
Fee Large entity fee small entity fee micro entity fee
Surcharge - 7.5 year - Late payment within 6 months $160.00 $80.00 $40.00
Surcharge - 11.5 year - Late payment within 6 months $160.00 $80.00 $40.00
Surcharge after expiration - Late payment is unavoidable $700.00 $350.00 $175.00
Surcharge after expiration - Late payment is unintentional $1,640.00 $820.00 $410.00