Invention Grant
US08799649B2 One time passwords with IPsec and IKE version 1 authentication
有权
一次使用IPsec和IKE版本1身份验证的密码
- Patent Title: One time passwords with IPsec and IKE version 1 authentication
- Patent Title (中): 一次使用IPsec和IKE版本1身份验证的密码
-
Application No.: US12779457Application Date: 2010-05-13
-
Publication No.: US08799649B2Publication Date: 2014-08-05
- Inventor: Anat Eyal , Ben Bernstein , Anat Bar-Anan , Nimrod Vered
- Applicant: Anat Eyal , Ben Bernstein , Anat Bar-Anan , Nimrod Vered
- Applicant Address: US WA Redmond
- Assignee: Microsoft Corporation
- Current Assignee: Microsoft Corporation
- Current Assignee Address: US WA Redmond
- Agent Ben Tabor; Kate Drakos; Micky Minhas
- Main IPC: H04L29/06
- IPC: H04L29/06 ; H04L9/32
Abstract:
A system adapted to condition access to a network over an IPsec session to clients providing a proper one-time-password, even though the network access control uses IKEv1, which does not support one-time-passwords. An authentication service receives from a client an access request including the one-time-password, and provides the one-time-password to a service that checks the password. The one-time-password service returns a cookie when the password is successfully validated and the client is properly authenticated. The cookie is passed on to the client computer, which uses the cookie as part of a request for a certificate. A certificate authority generates a certificate if a request for a certificate is received from an authenticated client, which in turn may be used to form the IPsec session for access to the network.
Public/Granted literature
- US20110283103A1 ONE TIME PASSWORDS WITH IPSEC AND IKE VERSION 1 AUTHENTICATION Public/Granted day:2011-11-17
Information query
