| US 7,565,536 B2 | ||
| Method for secure delegation of trust from a security device to a host computer application for enabling secure access to a resource on the web | ||
| Apostol Vassilev, Austin, Tex. (US); and Kapil Sachdeva, Austin, Tex. (US) | ||
| Assigned to Gemalto Inc, Austin, Tex. (US) | ||
| Filed on Sep. 02, 2005, as Appl. No. 11/219,466. | ||
| Prior Publication US 2007/0056025 A1, Mar. 08, 2007 | ||
| Int. Cl. H04L 9/00 (2006.01); H04L 9/32 (2006.01) | ||
| U.S. Cl. 713—168 [713/173; 713/192; 726/2; 726/3; 726/4; 726/5; 726/9; 726/10] | 15 Claims |
| 1. A method for authenticating a user on a host computer to a web server, comprising:
establishing a secure communications channel between a plug-in operating on a host computer and a network security device;
authenticating the user to the network security device;
designating a web server to which a connection is desired from a browser operated by the user;
establishing a connection between the network security device and the web server;
establishing a security context by the web server;
transferring the security context from the web server to the trusted network security device;
transmitting the security context from the network security device to the plug-in;
operating the plug-in to store the security context such that the security context may be retrieved by the browser;
operating the browser to connect to the web server including transmitting the security context from the browser to the web
server; and
upon presentment of the security context, granting the user access to the services of the web server.
|