Information security – Access control or authentication
Reexamination Certificate
2004-03-31
2008-12-16
Moise, Emmanuel L (Department: 2137)
Information security
Access control or authentication
C713S185000, C380S028000, C709S206000, C709S225000
Reexamination Certificate
active
07467399
ABSTRACT:
Techniques are disclosed for achieving context-sensitive confidentiality within a federated environment for which content is aggregated in a distributed Web portal (or similar aggregation framework), ensuring that message portions that should be confidential are confidential to all entities in the federated environment except those entities to which the message portions may properly be divulged. The federation may comprise an arbitrary number of autonomous security domains, and these security domains may have independent trust models and authentication services. Using the disclosed techniques, messages can be routed securely within a cross-domain federation (irrespective of routing paths), thereby ensuring that confidential information is not exposed to unintended third parties and that critical information is not tampered with while in transit between security domains. Preferred embodiments leverage Web services techniques and a number of industry standards.
REFERENCES:
patent: 5634053 (1997-05-01), Noble et al.
patent: 5774551 (1998-06-01), Wu et al.
patent: 5864843 (1999-01-01), Cariño, Jr. et al.
patent: 5931900 (1999-08-01), Notani et al.
patent: 5943671 (1999-08-01), Kleewein et al.
patent: 5995945 (1999-11-01), Notani et al.
patent: 6222533 (2001-04-01), Notani et al.
patent: 6226745 (2001-05-01), Widerhold
patent: 6304892 (2001-10-01), Bhoj et al.
patent: 6332130 (2001-12-01), Notani et al.
patent: 6823068 (2004-11-01), Samid
patent: 7076558 (2006-07-01), Dunn
patent: 7130885 (2006-10-01), Chandra et al.
patent: 7134137 (2006-11-01), Joshi et al.
patent: 7137006 (2006-11-01), Grandcolas et al.
patent: 7269664 (2007-09-01), Hutsch et al.
patent: 7359945 (2008-04-01), Kaler et al.
patent: 2001/0027484 (2001-10-01), Nishi
patent: 2002/0059425 (2002-05-01), Belfiore et al.
patent: 2002/0103811 (2002-08-01), Fankhauser et al.
patent: 2003/0046391 (2003-03-01), Moreh et al.
patent: 2003/0074357 (2003-04-01), Nielsen et al.
patent: 2003/0084302 (2003-05-01), de Jong et al.
patent: 2003/0163733 (2003-08-01), Barriga-Caceres et al.
patent: 2004/0003287 (2004-01-01), Zissimopoulos et al.
patent: 2004/0015723 (2004-01-01), Pham et al.
patent: 2004/0205473 (2004-10-01), Fisher et al.
patent: 2004/0230831 (2004-11-01), Spelman et al.
patent: 2005/0044197 (2005-02-01), Lai
patent: 2005/0149496 (2005-07-01), Mukherjee et al.
patent: 2006/0090007 (2006-04-01), Tonouchi
Dynamic role creation from role class hierarchy-security management of service session in dynamic service environment Hamada, T.; Global Convergence of Telecommunications and Distributed Object Computing, 1997. Proceedings. TINA 97 Nov. 17-20, 1997 pp. 152-163 Digital Object Identifier 10.1109/TINA.1997.660720.
Solana, Eduardo et al., “Flexible Internet Secure Transactions Based on Collaborative Domains”, Security Protocols, 5th International Workshop Proceedings, Springer-Verlag, Berlin, Germany (1998) (p. 37-51).
Nielsen, Henrik Frystyk et al., “Web Services Routing Protocol (WS-Routing)”, Oct. 23, 2001, Microsoft Corporation (p. 1-27).
Della-Libera, Giovanni et al., “Security in a Web Services World: A Proposed Architecture and Roadmap”, Apr. 1, 2002, International Business Machines Corporation and Microsoft Corporation (p. 1-24).
Atkinson, Bob et al., “Specification: Web Services Security (WS-Security) Version 1.0”, Apr. 5, 2002, International Business Machines Corporation, Microsoft Corporation, Verisign, Inc. (p. 1-35).
“Emerging Technologies Toolkit”, Apr. 8, 2003, IBM Corporation, printed Oct. 29, 2003, <http:/ /www.alphaworks.ibm.com/aw.nsf/FAQs/ettk> (p. 1-53).
Della-Libera, Giovanni et al., “Federation of Identities in a Web Services World”, Jul. 2003, IBM Corporation and Microsoft Corporation (p. 1-15).
Bajaj, Siddarth et al., “Specification: Web Services Federation Language (WS-Federation)”, Jul. 8, 2003, IBM Corporation, Microsoft Corporation, BEA Systems, Inc., RSA Security, Inc., Verisign, Inc. (p. 1-53).
“Build Web services with IBM developer kits”, IBM Corporation, printed Nov. 1, 2003, <http:/ / www-106.ibm.com/developerworks/offers/webservices/start/> (p. 1-2).
Nadalin Anthony J.
Wesley Ajamu A.
Doubet Marcia L.
Gergiso Techane J
Gibbs Andre M.
International Business Machines - Corporation
Moise Emmanuel L
LandOfFree
Context-sensitive confidentiality within federated environments does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Context-sensitive confidentiality within federated environments, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Context-sensitive confidentiality within federated environments will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4033612