System and method for managing authentication cookie encryption keys
作者: Jeremiah Paul Schertzinger
DOI:
关键词:
摘要: There is provided a system and method for managing authentication cookie encryption keys. The comprises computing device including memory with data having key identifier encrypted session identifier. references validity period, the capable of decrypting data. A processor can respond to user requests information by retrieving transmitting it server. server then authenticate verifying using referenced key. also which manage receives an request, confirms or rejects key, automatically invalidates upon expiration period.
lens.org 参考文章(10)
Ismail Cem Paya, John D Whited, Adam Back, Wei Jiang, Wei-Quiang Michael Guo, Yordan Rouskov, Scalable session management ,(2005)
Michael Isard, Charles P. Thacker, Andrew David Birrell, Subscription-based computing implemented in hardware of computing device ,(2006)
Lucas J. Forschler, Andrew M. Himberger, Chris Pearo, Stillman T. Saunders, Methods and systems for authentication of a user for sub-locations of a network location ,(2003)
Minoo Gupta, Charles W. Knouse, Access system interface ,(2001)
J.S. Park, R. Sandhu, Secure cookies on the Web IEEE Internet Computing. ,vol. 4, pp. 36- 44 ,(2000) , 10.1109/4236.865085
Donghua Xu, Chenghuai Lu, A. Dos Santos, Protecting Web usage of credit cards using One-Time Pad cookie encryption annual computer security applications conference. pp. 51- 58 ,(2002) , 10.1109/CSAC.2002.1176278
Brian J. Guarraci, Johnson T. Apacible, Jeffrey Dick Jones, Niels Thomas Ferguson, Christopher C. White, Vijay Varadan, Sean Patrick Nolan, Unified authentication for web method platforms ,(2007)
Silke Holtmanns, Hannu Tuominen, Pekka Laitinen, Method, apparatus and computer program product for providing key management for a mobile authentication architecture ,(2008)
Keiichi Takagaki, Masaaki Tamai, Atsuhiro Tsuji, Yukie Gotoh, Hiroshi Yokota, Common key exchanging method and communication device ,(2004)
Thomas Lee c o Ibm United Kingdom Ltd Gindin, Method for determining whether past digital signatures were issued by suspended certificates ,(2001)