06367009 is referenced by 186 patents.

A method, system, and computer-readable code for delegating authority and authentication from a client to a server in order that the server can establish a secure connection (using SSL or an analogous security protocol) to a back-end application on behalf of the client. This enables the true client's identity to be known to the application on the end-tier server. The proposed solution provides several alternative techniques, whereby the client establishes a secure session with a middle-tier server (MTS), and then delegates authority and authentication to the MTS in order that the MTS can establish a second SSL session to the ETS on behalf of this client.

Title
Extending SSL to a multi-tier environment using delegation of authentication and authority
Application Number
9/215601
Publication Number
6367009 (B1)
Application Date
December 17, 1998
Publication Date
April 2, 2002
Inventor
Timothy Glenn Shoriak
Cary
NC, US
David G Kuehr McLaren
Apex
NC, US
Mark Charles Davis
Durham
NC, US
Agent
Marcia L Doubet
US
Gregory M Doudnikoff
US
Assignee
International Business Machines Corporation
NY, US
IPC
G06F 1/24
View Original Source