06148405 is referenced by 152 patents and cites 4 patents.

The present invention is a method and system for establishing an authenticated and secure communication session for transactions between a server and a client in a wireless data network that generally comprises an airnet, a landline network and a link server therebetween. The client having limited computing resources is remotely located with respect to the server and communicates to the server through the wireless data network. To authenticate each other, the client and the server conduct two rounds of authentication, the client authentication and the server authentication, independently and respectively, each of the authentication processes is based on a shared secret encrypt key and challenge/response mechanism. To reach for a mutually accepted cipher in the subsequent transactions, the server looks up for a commonly used cipher and forwards the cipher along with a session key to the client. The subsequent transactions between the client and the server are then proceeded in the authenticated and secure communication session and further each transaction secured by the session key is labeled by a transaction ID that is examined before a transaction thereof takes place.

Title
Method and system for secure lightweight transactions in wireless data networks
Application Number
8/966988
Publication Number
6148405
Application Date
November 10, 1997
Publication Date
November 14, 2000
Inventor
Bruce V Schwartz
San Mateo
CA, US
Peter F King
Half Moon Bay
CA, US
Stephen S Boyle
Fremont
CA, US
Hanqing Liao
San Ramon
CA, US
Agent
Joe Zheng
Alan D Minsk
Assignee
Phone com
CA, US
IPC
H04N 7/67
View Original Source