| CPC H04L 9/3213 (2013.01) [H04L 9/083 (2013.01); H04L 9/085 (2013.01); H04L 9/3236 (2013.01); H04L 9/3247 (2013.01); H04L 9/3263 (2013.01)] | 10 Claims |
|
5. A method of performing validation of an access token for wireless communication, comprising:
providing, by an authorization server, the access token for service to a client in response to a request for the access token;
adding, by the client, a client signature to at least the access token;
forwarding, by the client, the access token as part of a service request to a resource server; and
validating, by the resource server, whether the client is a valid owner of the access token, wherein the validation is based on at least the client signature of the access token;
wherein a hash of the service request is associated with the access token signed by the client and forwarded as part of the service request, and wherein the hash of the service request is protected by the signature of the client on the access token, and wherein the client signature is provided for the entire service request including the access token, and wherein the access token is signed by the authorization server, whereby the access token is associated with the service request forwarded to the resource server by the proxy node.
|