US 11,811,917 B2
System and method for secure authentication of backup clients using short-term tokens
Senthil Ponnuswamy, San Jose, CA (US); Donna Barry Lewis, Holly Springs, NC (US); Andrew R. Huber, Chapel Hill, NC (US); Naveen Rastogi, San Jose, CA (US); and George Mathew, Belmont, CA (US)
Assigned to EMC IP Holding Company LLC, Hopkinton, MA (US)
Filed by EMC IP Holding Company LLC, Hopkinton, MA (US)
Filed on Jul. 6, 2021, as Appl. No. 17/368,093.
Prior Publication US 2023/0009739 A1, Jan. 12, 2023
Int. Cl. H04L 9/08 (2006.01); H04L 9/32 (2006.01)
CPC H04L 9/0825 (2013.01) [H04L 9/3213 (2013.01); H04L 9/3263 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A computer-implemented method of backing up data, comprising:
sending, from a backup server, a request to a storage system to create a directory for storing data to be backed up for a client, with a public key to be associated with the directory;
creating a short-term token signed with a private key associated with the public key;
upon the client starting a backup operation, passing a name of the directory and the short-term token to the client;
sending, from the client to the storage system, a backup request, the name of the directory, and the short-term token received from the backup server;
using, by the storage system, the public key to ensure that the backup server has access to the directory;
verifying, through a name comparison, that the backup server has given the permission to the client to do perform the backup operation; and
extracting permission and privileges from the short-term token to ensure that the client has access to a file path so that the backup operation can commence.