Invention Grant
US08943571B2 Method and apparatus for protecting a single sign-on domain from credential leakage
有权
用于保护单点登录域免受凭据泄漏的方法和装置
- Patent Title: Method and apparatus for protecting a single sign-on domain from credential leakage
- Patent Title (中): 用于保护单点登录域免受凭据泄漏的方法和装置
-
Application No.: US13252931Application Date: 2011-10-04
-
Publication No.: US08943571B2Publication Date: 2015-01-27
- Inventor: Michael W. Paddon , Jessica M. Flanagan , Craig M. Brown
- Applicant: Michael W. Paddon , Jessica M. Flanagan , Craig M. Brown
- Applicant Address: US CA San Diego
- Assignee: QUALCOMM Incorporated
- Current Assignee: QUALCOMM Incorporated
- Current Assignee Address: US CA San Diego
- Agent Won Tae Kim
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G01S19/32 ; G01S19/24 ; G01S19/42 ; G01S19/48 ; H04W4/02
Abstract:
Disclosed is a method for protecting a single sign-on domain from credential leakage. In the method, an authentication server provides an authentication cookie to a browser client. The cookie has at least one user authentication credential for the domain, and is associated with an authentication subdomain of the domain. The server receives the cookie from the browser client. Upon authentication of the user authentication credential in the received cookie, the server responds to the access request by forwarding, to the browser client, a limited-use cookie for the domain. The server receives a request from the content server to validate a session identifier of the limited-use cookie received from the browser client. Upon validation of the session identifier of the limited-use cookie, the server provides a valid session message to the content server for enabling the content server to forward requested content to the browser client.
Public/Granted literature
- US20130086656A1 Method and Apparatus for Protecting a Single Sign-on Domain from Credential Leakage Public/Granted day:2013-04-04
Information query
