Information security – Access control or authentication – Network
Reexamination Certificate
2004-05-20
2008-08-12
Vu, Kimyen (Department: 2135)
Information security
Access control or authentication
Network
C726S018000
Reexamination Certificate
active
07412719
ABSTRACT:
A Centralized Authentication & Authorization (CAA) system that prevents unauthorized access to client data using a secure global hashtable residing in the application server in a web services environment. CAA comprises a Service Request Filter (SRF) and Security Program (SP). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. The client identifier is secured by the SP using a key unique to the client identifier. When the web services manager requests the client identifier, the web services manager must present the key to the SP in order to access the client identifier. Thus, the present invention prevents a malicious user from attempting to obtain sensitive data within the application server once the malicious user has gained access past the firewall.
REFERENCES:
patent: 5793868 (1998-08-01), Micali
patent: 6128740 (2000-10-01), Curry et al.
patent: 6285991 (2001-09-01), Powar
patent: 6321333 (2001-11-01), Murray
patent: 6430688 (2002-08-01), Kohl et al.
patent: 6553568 (2003-04-01), Fijolek et al.
patent: 6571221 (2003-05-01), Stewart et al.
patent: 6611869 (2003-08-01), Eschelbeck et al.
patent: 6615347 (2003-09-01), de Silva et al.
patent: 7171411 (2007-01-01), Lewis et al.
patent: 2002/0128981 (2002-09-01), Kawan et al.
IBM, “Living in an On Demand World,” Oct. 2002.
Vasudevan, Venu, “A Web Services Primer,” www.xml.com/pub/a/ws/2001/04/04/webservices/index.html, Apr. 2001.
Tech Encyclopedia, “Web Services”, 2004.
Rajaraman, Sriram, “What Web Services Are Not”, Feb. 2002.
Webopedia.com, “Web services”, Sep. 2003.
Tech Encyclopedia, “Digital Certificate”, 2004.
Kirtland, Mary, “A Platform for Web Services,” www.msdn.microsoft.com, Jan. 2001.
Benantar Messaoud
Chen Yen-Fu
Dunsmoir John W.
Forlenza Randolph Michael
Liu Wei
Gordon & Rees LLP
International Business Machines - Corporation
Mims David A.
Siegesmund Rudolf O.
Vu Kimyen
LandOfFree
Architecture and design for central authentication and... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Architecture and design for central authentication and..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Architecture and design for central authentication and... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4014907