Patent
Cross platform network authentication and authorization model
Reads0
Chats0
TLDR
In this article, a client requests a ticket by providing credentials (user ID and password) over HTTP/SOAP/XML in the UDDI framework, and the authentication adapter constructs a ticket object for the client incorporating the privileges and other information, e.g., the security ID and a date/time stamp.Abstract:
A model for authentication and authorization of users and applications that use network services. A client requests a ticket by providing credentials (user ID and password), e.g., over HTTP/SOAP/XML in the UDDI framework. An authentication adapter in a receiving server deserializes the request into a data structure that provides access to the security ID and password attributes, and passes these attributes to an ID management system to perform authentication. The credentials also determine the user's or application's privileges. The authentication adapter constructs a ticket object for the client incorporating the privileges and other information, e.g., the security ID and a date/time stamp. The ticket object is serialized, encrypted, encoded for transmission and inserted into an appropriately-formatted XML message and returned to the requesting client. The client attaches the authentication ticket to subsequent service requests that require authentication. To validate the ticket, the ticket object is reconstructed from the request data.read more
Citations
More filters
Patent
Distributed storage system with web services client interface
Allan Henry Vermeulen,Alan B. Atlas,David M. Barth,John Cormie,Ami K. Fischman,James Christopher Sorenson,Eric M. Wagner +6 more
TL;DR: In this paper, a distributed, web-services based storage system is described, which includes a web service interface configured to receive, according to a web services protocol, a given client request for access to a given data object, the request including a key value corresponding to the object.
Patent
Cloud-based system for reading of decodable indicia
Erik Todeschini,Stephen Patrick Deloge,Timothy P. Meier,Donald Anderson,Benjamin Hejl,Thomas Koziol +5 more
TL;DR: A data decoding system can comprise one or more computers communicatively coupled to a network as mentioned in this paper, and the computers can execute at least one decoding process, responsive to receiving a decoding request comprising an image of decodable indicia.
Patent
Highly scalable architecture for application network appliances
TL;DR: In this article, a highly scalable application network appliance is described, where the first service module is configured to perform a first portion of OSI (Open System Interconnection) compatible layers of network processes on the packets.
Patent
Java object cache server for databases
TL;DR: In this article, a cache server is provided in a network for storing Java objects for retrieval by one or multiple application servers, where application servers are configured to request an object from the cache server, rather than requesting the Java object directly from a database, so as to reduce processing load on the database and free up database resources.
Patent
Self-describing authorization policy for accessing cloud-based resources
David R. Reed,Eric Fleischman,Abolade Gbadegesin,Dharma Shukla,Nikolay Smolyanskiy,Thomas A. Galvin +5 more
TL;DR: In this paper, the authors propose a ticket-based authorization model for traversing one or more meshes of resources associated with a cloud service, annotated in links included in a resource that refer to other resources, thus self-describing with respect to the association among the resources (i.e., the links) as well as the authorization required to access resources.
References
More filters
Patent
Provisioning aggregated services in a distributed computing environment
TL;DR: In this paper, methods, systems, and computer program products are disclosed for provisioning software resources used with aggregated web services, which enable heterogeneous identity systems to be joined in the dynamic, run-time web services integration environment.
Patent
System and method for authenticating sessions and other transactions
TL;DR: In this article, the authors present a system and method for authenticating a transaction, which computes a message digest of a user ID, selects an index number, selects selecting an encryption key from a plurality of encryption keys, encrypts the message digest using the selected encryption key, and converts the encrypted message into an ASCII string.
Patent
User access to objects in group based access control based on result of greatest common divisor of assigned unique prime numbers of user and object
TL;DR: An access control mechanism using a grouping system whereby each group is assigned a unique prime number is described in this article, where the resource objects to be accessed are assigned a value that is determined by multiplying all of the group prime numbers from the groups that have access to that resource.
Patent
Method and system for providing cross-platform access to an internet user in a heterogeneous network environment
Daniel Edward House,Shaw-Ben Shepherd Shi,Richard Lee Daugherty,John Ryan McGarvey,Chandra Paul Immanuel +4 more
TL;DR: In this paper, the authors present a method and system for providing cross-platform access to Internet users of a heterogeneous grouping of computers, which includes a plurality of heterogeneous computer systems, at least one of the plurality of computer systems including an Internet user identity; and an enterprise directory service.
Patent
Financial market trading system
TL;DR: In this article, the authors provided a computer system for providing a centralized trading service to one or more trading party sites, the system comprising: a service data centre comprising: i) a trading computer arranged to process and communicate trading data and to generate trading ticket data in respect of confirmed trades on the basis of trading data; ii) a data store accessible to the trading computer for temporarily storing trading data data records.