07392390 is referenced by 26 patents and cites 114 patents.

A method and system are directed towards enabling authentication in a distributed environment. The method employs a hashed salted password associated with a user in part to pre-authenticate the user. If the user is pre-authenticated, a ticket is transmitted to a client. The ticket includes a cryptographic digest of a concatenation of the local and remote addresses that is exclusive or'ed with a timestamp to generate a modified authenticator. The modified authenticator is directed at binding the timestamp to the client to minimize reuse of an authenticator. A packet that includes the authenticator is sent to a server. The server is configured to determine another remote and local IP address associated with the packet. Employing the remote and local addresses, the server extracts the timestamp from the modified authenticator. If the timestamp is within a pre-determined time window, the user may be authenticated.

Title
Method and system for binding kerberos-style authenticators to single clients
Application Number
10/318349
Publication Number
7392390 (B2)
Application Date
December 11, 2002
Publication Date
June 24, 2008
Inventor
Christopher Richard Newcombe
Kirkland
WA, US
Agent
John W Branch
Darby & Darby PC
Assignee
Valve Corporation
WA, US
IPC
G06F 7/58
G06F 7/04
H04L 9/00
View Original Source