05784463 is referenced by 243 patents and cites 4 patents.

A shared secret key distribution system which enables secure on-line registration for services provided by an application server through an application level security system or firewall utilizes an authentication token containing a server public key. The server public key is used to encrypt a client-generated portion of the shared secret key, and the encrypted client-generated key is sent to the server where it is recovered using a private key held by the server and combined with a server generated portion of the shared secret key to form the shared secret key. The server generated portion of the shared secret key is then encrypted by the client-generated portion of the shared secret key and transmitted to the client for recovery and combination with the client-generated portion of the shared secret key, at which time both the client and server are in possession of the shared secret key, which can then be used for mutual authentication and development of session keys to secure subsequent communications. The session keys can be used to provide dynamic configuration of a client system to provide for different or changing user entitlements.

Title
Token distribution, registration, and dynamic configuration of user entitlement for an application level security system and method
Application Number
8/760414
Publication Number
5784463
Application Date
December 4, 1996
Publication Date
July 21, 1998
Inventor
Jieh Shan Wang
Potomac
MD, US
James F Chen
Potomac
MD, US
Agent
Bacon & Thomas
Assignee
V ONE Corporation
MD, US
IPC
H04L 9/00
H04L 9/32
H04L 9/30
H04L 9/08
View Original Source