Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Central trusted authority provides computer authentication
Reexamination Certificate
2011-08-02
2011-08-02
Hoffman, Brandon S (Department: 2433)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Central trusted authority provides computer authentication
Reexamination Certificate
active
07991996
ABSTRACT:
A Centralized Authentication & Authorization (CAA) system that facilitates secure communication between service clients and service providers. CAA comprises a Service Request Filter (SRF), a Service Client Authentication Program (SCAP), a Service Authorization Program (SAP), and an Authorization Database (ADB). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. In the preferred embodiment, the SRF forwards the service request to a web service manager. The web service manager invokes SCAP. SCAP matches the identifier with a record stored in ADB. SAP queries ADB to determine if the service request is valid for the service client. If the service request is valid, SAP authorizes the service request and the appropriate service provider processes the service request.
REFERENCES:
patent: 5793868 (1998-08-01), Micali
patent: 6128740 (2000-10-01), Curry et al.
patent: 6285991 (2001-09-01), Powar
patent: 6321333 (2001-11-01), Murray
patent: 6430688 (2002-08-01), Kohl et al.
patent: 6553568 (2003-04-01), Fijolek et al.
patent: 6571221 (2003-05-01), Stewart et al.
patent: 6611869 (2003-08-01), Eschelbeck et al.
patent: 6615347 (2003-09-01), de Silva et al.
patent: 6839708 (2005-01-01), Boydstun et al.
patent: 7171411 (2007-01-01), Lewis et al.
patent: 7412719 (2008-08-01), Benantar et al.
patent: 2002/0128981 (2002-09-01), Kawan et al.
patent: 2003/0028495 (2003-02-01), Pallante
patent: 2009/0037731 (2009-02-01), Benantar et al.
IBM, “Living in an On Demand World”, Oct. 2002, 6 pages.
Vasudevan, “A Web Services Primer”, Apr. 2001, 10 pages. www.xml.com/pub/a/ws/2001/04/04webservices/index.html.
Tech Encyclopedia, “Web Services”, 2004, 3 pages.
Rajaraman, “What Web Services Are Not”, Feb. 2002, 2 pages.
Webopedia.com, “Web Services”, Sep. 2003, 3 pages.
Tech Encyclopedia, “Digital Certificate”, 2004, 3 pages.
Kirtland, “A Platform for Web Services”, Jan. 2001, 7 pages. www.msdn.microsoft.com.
Schneier, Bruce, “Applied Cryptography”, Second Edition, 1996, John Wiley & Sons, Inc., NY, pages 56-59.
USPTO Office action for U.S. Appl. No. 10/850,398 dated Jul. 23, 2007.
USPTO Final Office action for U.S. Appl. No. 10/850,398 dated Dec. 13, 2007.
USPTO Notice of allowance for U.S. Appl. No. 10/850,398 dated May 12, 2008.
USPTO Office action for U.S. Appl. No. 12/147,716 dated Dec. 2, 2009.
USPTO Notice of allowance for U.S. Appl. No. 12/147,716 dated Apr. 26, 2010.
USPTO Final Office action for U.S. Appl. No. 10/782,443 dated Jul. 16, 2008.
USPTO Notice of allowance for U.S. Appl. No. 10/782,443 dated Dec. 4, 2008.
Benantar Messaoud
Chen Yen-Fu
Dunsmoir John W.
Forlenza Randolph Michael
Liu Wei
Hoffman Brandon S
International Business Machines - Corporation
Vallone Mark C.
Yee & Associates P.C.
LandOfFree
Architecture and design for central authentication and... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Architecture and design for central authentication and..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Architecture and design for central authentication and... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2666207