Search International and National Patent Collections

1. (WO2017156004) ENCRYPTED PASSWORD TRANSPORT ACROSS UNTRUSTED CLOUD NETWORK

Pub. No.:    WO/2017/156004    International Application No.:    PCT/US2017/021166
Publication Date: Fri Sep 15 01:59:59 CEST 2017 International Filing Date: Wed Mar 08 00:59:59 CET 2017
IPC: H04L 29/06
H04L 29/08
G06F 9/44
Applicants: CITRIX SYSTEMS, INC.
Inventors: HUANG, Feng
COOPER, Andrew David
Title: ENCRYPTED PASSWORD TRANSPORT ACROSS UNTRUSTED CLOUD NETWORK
Abstract:
A computer in an untrusted cloud network functions as a cloud-based enterprise application store via which a client computer establishes a connection to an enterprise application in a trusted enterprise network. User authentications are performed in a login phase and subsequent application launch phase, each authentication receiving from the client and transmitting to the enterprise network an encrypted password and encrypted key, where the encrypted password is a user password encrypted under a first one-use symmetric key, and the encrypted key is the first symmetric key encrypted under a public key of a private/public key pair. The enterprise network decrypts the encrypted key and encrypted password to obtain the user password for authenticating the user. Launch-phase authentication includes use of a login ticket including a second one-use symmetric key under which the user password is encrypted and stored in encrypted form in the enterprise network.