VERFAHREN UND VORRICHTUNG ZUR EINRICHTUNG EINES ERWEITERBAREN AUTHENTIZIERUNGS- MECHANISMUS IN EINEM WEB- ANWENDUNGS- SERVER

VERFAHREN UND VORRICHTUNG ZUR EINRICHTUNG EINES ERWEITERBAREN AUTHENTIZIERUNGS- MECHANISMUS IN EINEM WEB- ANWENDUNGS- SERVER

A highly scalable, flexible, and extensible mechanism is provided for authenticating a request from a client. In a preferred embodiment, the invention comprises an authentication engine, an authentication host, a plurality of providers coupled to the host which implement selected authentication sche...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: STABILE, JIM, PANG, ROBERT
Format: Patent
Sprache:ger
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator STABILE, JIM
PANG, ROBERT
description A highly scalable, flexible, and extensible mechanism is provided for authenticating a request from a client. In a preferred embodiment, the invention comprises an authentication engine, an authentication host, a plurality of providers coupled to the host which implement selected authentication schemes, and a machine independent communication mechanism which enables the various components to communicate with each other irregardless of the machine each component resides on. The communication mechanism enables the invention to be distributed, which in turn, makes the invention highly scalable. In operation, the authentication engine receives a request having associated therewith a protect string. The protect string specifies the authentication scheme or schemes that need to be implemented for that request. The authentication engine parses the protect string into one or more provider requests, and sends the requests to the authentication host. In response, the host forwards the requests to the appropriate providers for processing. The results of the providers' processing are sent back to the authentication engine, which then processes the results according to the protect string to determine whether the request has been authenticated. With the present invention, it is possible to add providers to the system, or to substitute a new provider for an existing provider, without changing or recompiling any other component in the system. It is also possible to change the authentication schemes associated with a request by simply changing the protect string. These aspects of the invention make it possible to change implementation at deployment time, as opposed to compile time. This makes the invention highly flexible and extensible.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_DE69821020TT2</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>DE69821020TT2</sourcerecordid><originalsourceid>FETCH-epo_espacenet_DE69821020TT23</originalsourceid><addsrcrecordid>eNqNjbsKwkAURNNYiPoPF_tAjCBabpLR3SJXuLubQJoQZK1EA7H0440PrK1mBs5hptGjguyVFjB5Lqg6iphcO88HarwQDP_22GEJUsM4SKZejvJOg51pDGRkbEwlcq3Y2NJbMvyWSqqRxaS4BhcfykLG43k0OXeXISy-OYuWe7hcx6G_tWHou1O4hntbYLPbpqskTZxL139BT3OwPHc</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>VERFAHREN UND VORRICHTUNG ZUR EINRICHTUNG EINES ERWEITERBAREN AUTHENTIZIERUNGS- MECHANISMUS IN EINEM WEB- ANWENDUNGS- SERVER</title><source>esp@cenet</source><creator>STABILE, JIM ; PANG, ROBERT</creator><creatorcontrib>STABILE, JIM ; PANG, ROBERT</creatorcontrib><description>A highly scalable, flexible, and extensible mechanism is provided for authenticating a request from a client. In a preferred embodiment, the invention comprises an authentication engine, an authentication host, a plurality of providers coupled to the host which implement selected authentication schemes, and a machine independent communication mechanism which enables the various components to communicate with each other irregardless of the machine each component resides on. The communication mechanism enables the invention to be distributed, which in turn, makes the invention highly scalable. In operation, the authentication engine receives a request having associated therewith a protect string. The protect string specifies the authentication scheme or schemes that need to be implemented for that request. The authentication engine parses the protect string into one or more provider requests, and sends the requests to the authentication host. In response, the host forwards the requests to the appropriate providers for processing. The results of the providers' processing are sent back to the authentication engine, which then processes the results according to the protect string to determine whether the request has been authenticated. With the present invention, it is possible to add providers to the system, or to substitute a new provider for an existing provider, without changing or recompiling any other component in the system. It is also possible to change the authentication schemes associated with a request by simply changing the protect string. These aspects of the invention make it possible to change implementation at deployment time, as opposed to compile time. This makes the invention highly flexible and extensible.</description><edition>7</edition><language>ger</language><subject>CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRIC DIGITAL DATA PROCESSING ; ELECTRICITY ; PHYSICS ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2004</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20041021&amp;DB=EPODOC&amp;CC=DE&amp;NR=69821020T2$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,776,881,25542,76290</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20041021&amp;DB=EPODOC&amp;CC=DE&amp;NR=69821020T2$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>STABILE, JIM</creatorcontrib><creatorcontrib>PANG, ROBERT</creatorcontrib><title>VERFAHREN UND VORRICHTUNG ZUR EINRICHTUNG EINES ERWEITERBAREN AUTHENTIZIERUNGS- MECHANISMUS IN EINEM WEB- ANWENDUNGS- SERVER</title><description>A highly scalable, flexible, and extensible mechanism is provided for authenticating a request from a client. In a preferred embodiment, the invention comprises an authentication engine, an authentication host, a plurality of providers coupled to the host which implement selected authentication schemes, and a machine independent communication mechanism which enables the various components to communicate with each other irregardless of the machine each component resides on. The communication mechanism enables the invention to be distributed, which in turn, makes the invention highly scalable. In operation, the authentication engine receives a request having associated therewith a protect string. The protect string specifies the authentication scheme or schemes that need to be implemented for that request. The authentication engine parses the protect string into one or more provider requests, and sends the requests to the authentication host. In response, the host forwards the requests to the appropriate providers for processing. The results of the providers' processing are sent back to the authentication engine, which then processes the results according to the protect string to determine whether the request has been authenticated. With the present invention, it is possible to add providers to the system, or to substitute a new provider for an existing provider, without changing or recompiling any other component in the system. It is also possible to change the authentication schemes associated with a request by simply changing the protect string. These aspects of the invention make it possible to change implementation at deployment time, as opposed to compile time. This makes the invention highly flexible and extensible.</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>ELECTRICITY</subject><subject>PHYSICS</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2004</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNjbsKwkAURNNYiPoPF_tAjCBabpLR3SJXuLubQJoQZK1EA7H0440PrK1mBs5hptGjguyVFjB5Lqg6iphcO88HarwQDP_22GEJUsM4SKZejvJOg51pDGRkbEwlcq3Y2NJbMvyWSqqRxaS4BhcfykLG43k0OXeXISy-OYuWe7hcx6G_tWHou1O4hntbYLPbpqskTZxL139BT3OwPHc</recordid><startdate>20041021</startdate><enddate>20041021</enddate><creator>STABILE, JIM</creator><creator>PANG, ROBERT</creator><scope>EVB</scope></search><sort><creationdate>20041021</creationdate><title>VERFAHREN UND VORRICHTUNG ZUR EINRICHTUNG EINES ERWEITERBAREN AUTHENTIZIERUNGS- MECHANISMUS IN EINEM WEB- ANWENDUNGS- SERVER</title><author>STABILE, JIM ; PANG, ROBERT</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_DE69821020TT23</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>ger</language><creationdate>2004</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>ELECTRICITY</topic><topic>PHYSICS</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>STABILE, JIM</creatorcontrib><creatorcontrib>PANG, ROBERT</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>STABILE, JIM</au><au>PANG, ROBERT</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>VERFAHREN UND VORRICHTUNG ZUR EINRICHTUNG EINES ERWEITERBAREN AUTHENTIZIERUNGS- MECHANISMUS IN EINEM WEB- ANWENDUNGS- SERVER</title><date>2004-10-21</date><risdate>2004</risdate><abstract>A highly scalable, flexible, and extensible mechanism is provided for authenticating a request from a client. In a preferred embodiment, the invention comprises an authentication engine, an authentication host, a plurality of providers coupled to the host which implement selected authentication schemes, and a machine independent communication mechanism which enables the various components to communicate with each other irregardless of the machine each component resides on. The communication mechanism enables the invention to be distributed, which in turn, makes the invention highly scalable. In operation, the authentication engine receives a request having associated therewith a protect string. The protect string specifies the authentication scheme or schemes that need to be implemented for that request. The authentication engine parses the protect string into one or more provider requests, and sends the requests to the authentication host. In response, the host forwards the requests to the appropriate providers for processing. The results of the providers' processing are sent back to the authentication engine, which then processes the results according to the protect string to determine whether the request has been authenticated. With the present invention, it is possible to add providers to the system, or to substitute a new provider for an existing provider, without changing or recompiling any other component in the system. It is also possible to change the authentication schemes associated with a request by simply changing the protect string. These aspects of the invention make it possible to change implementation at deployment time, as opposed to compile time. This makes the invention highly flexible and extensible.</abstract><edition>7</edition><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language ger
recordid cdi_epo_espacenet_DE69821020TT2
source esp@cenet
subjects CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title VERFAHREN UND VORRICHTUNG ZUR EINRICHTUNG EINES ERWEITERBAREN AUTHENTIZIERUNGS- MECHANISMUS IN EINEM WEB- ANWENDUNGS- SERVER
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-28T23%3A59%3A28IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=STABILE,%20JIM&rft.date=2004-10-21&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EDE69821020TT2%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true