Handling requests to service resources within a security boundary using a security gateway instance

Handling requests to service resources within a security boundary using a security gateway instance

The disclosure herein describes securing access to a service resource within a security boundary. A security gateway instance receives a request from an edge deployment outside the security boundary. The request includes identity data identifying the edge deployment. The identity data is validated b...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Roy, Arupendra Narayan, Aquino, Bisconde Ramon, Garcia Valenzuela, Fernando, Diaz Cuellar, Gerardo, Naparu, Alexandru, Raman, Venkatasubrahmanyam
Format: Patent
Sprache:eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Roy, Arupendra Narayan
Aquino, Bisconde Ramon
Garcia Valenzuela, Fernando
Diaz Cuellar, Gerardo
Naparu, Alexandru
Raman, Venkatasubrahmanyam
description The disclosure herein describes securing access to a service resource within a security boundary. A security gateway instance receives a request from an edge deployment outside the security boundary. The request includes identity data identifying the edge deployment. The identity data is validated based on allowed identity data of the security gateway instance and based on a validation handler associated with the service resource. Based on validating the identity data and validating the request, the identity data is transformed using security data specific to the security gateway instance. The transformed identity data indicates the request has been validated by the security gateway instance. Based on transforming the identity data of the request, the transformed identity data and the request are forwarded to the service resource via a network link within the security boundary, wherein the service resource is configured to process the request based on identifying the transformed identity data.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US11558189B2</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US11558189B2</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US11558189B23</originalsourceid><addsrcrecordid>eNqNizEKwkAQRbexEPUO4wEsVgnEVlHSq3UYN2OyEGbjzqxhb28EC0urB__9NzeuQm56zy1EeiYSFdAAQvHlHU2bhBQdCYxeO8-Ak3Ipes1wD4kbjBmSfPIf06LSiBk8iyI7WprZA3uh1ZcLsz6frsdqQ0OoSQZ0xKT17WJtUZS23B-2u38-bxYLP5A</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Handling requests to service resources within a security boundary using a security gateway instance</title><source>esp@cenet</source><creator>Roy, Arupendra Narayan ; Aquino, Bisconde Ramon ; Garcia Valenzuela, Fernando ; Diaz Cuellar, Gerardo ; Naparu, Alexandru ; Raman, Venkatasubrahmanyam</creator><creatorcontrib>Roy, Arupendra Narayan ; Aquino, Bisconde Ramon ; Garcia Valenzuela, Fernando ; Diaz Cuellar, Gerardo ; Naparu, Alexandru ; Raman, Venkatasubrahmanyam</creatorcontrib><description>The disclosure herein describes securing access to a service resource within a security boundary. A security gateway instance receives a request from an edge deployment outside the security boundary. The request includes identity data identifying the edge deployment. The identity data is validated based on allowed identity data of the security gateway instance and based on a validation handler associated with the service resource. Based on validating the identity data and validating the request, the identity data is transformed using security data specific to the security gateway instance. The transformed identity data indicates the request has been validated by the security gateway instance. Based on transforming the identity data of the request, the transformed identity data and the request are forwarded to the service resource via a network link within the security boundary, wherein the service resource is configured to process the request based on identifying the transformed identity data.</description><language>eng</language><subject>ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2023</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20230117&amp;DB=EPODOC&amp;CC=US&amp;NR=11558189B2$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20230117&amp;DB=EPODOC&amp;CC=US&amp;NR=11558189B2$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Roy, Arupendra Narayan</creatorcontrib><creatorcontrib>Aquino, Bisconde Ramon</creatorcontrib><creatorcontrib>Garcia Valenzuela, Fernando</creatorcontrib><creatorcontrib>Diaz Cuellar, Gerardo</creatorcontrib><creatorcontrib>Naparu, Alexandru</creatorcontrib><creatorcontrib>Raman, Venkatasubrahmanyam</creatorcontrib><title>Handling requests to service resources within a security boundary using a security gateway instance</title><description>The disclosure herein describes securing access to a service resource within a security boundary. A security gateway instance receives a request from an edge deployment outside the security boundary. The request includes identity data identifying the edge deployment. The identity data is validated based on allowed identity data of the security gateway instance and based on a validation handler associated with the service resource. Based on validating the identity data and validating the request, the identity data is transformed using security data specific to the security gateway instance. The transformed identity data indicates the request has been validated by the security gateway instance. Based on transforming the identity data of the request, the transformed identity data and the request are forwarded to the service resource via a network link within the security boundary, wherein the service resource is configured to process the request based on identifying the transformed identity data.</description><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2023</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNizEKwkAQRbexEPUO4wEsVgnEVlHSq3UYN2OyEGbjzqxhb28EC0urB__9NzeuQm56zy1EeiYSFdAAQvHlHU2bhBQdCYxeO8-Ak3Ipes1wD4kbjBmSfPIf06LSiBk8iyI7WprZA3uh1ZcLsz6frsdqQ0OoSQZ0xKT17WJtUZS23B-2u38-bxYLP5A</recordid><startdate>20230117</startdate><enddate>20230117</enddate><creator>Roy, Arupendra Narayan</creator><creator>Aquino, Bisconde Ramon</creator><creator>Garcia Valenzuela, Fernando</creator><creator>Diaz Cuellar, Gerardo</creator><creator>Naparu, Alexandru</creator><creator>Raman, Venkatasubrahmanyam</creator><scope>EVB</scope></search><sort><creationdate>20230117</creationdate><title>Handling requests to service resources within a security boundary using a security gateway instance</title><author>Roy, Arupendra Narayan ; Aquino, Bisconde Ramon ; Garcia Valenzuela, Fernando ; Diaz Cuellar, Gerardo ; Naparu, Alexandru ; Raman, Venkatasubrahmanyam</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US11558189B23</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2023</creationdate><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>Roy, Arupendra Narayan</creatorcontrib><creatorcontrib>Aquino, Bisconde Ramon</creatorcontrib><creatorcontrib>Garcia Valenzuela, Fernando</creatorcontrib><creatorcontrib>Diaz Cuellar, Gerardo</creatorcontrib><creatorcontrib>Naparu, Alexandru</creatorcontrib><creatorcontrib>Raman, Venkatasubrahmanyam</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Roy, Arupendra Narayan</au><au>Aquino, Bisconde Ramon</au><au>Garcia Valenzuela, Fernando</au><au>Diaz Cuellar, Gerardo</au><au>Naparu, Alexandru</au><au>Raman, Venkatasubrahmanyam</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Handling requests to service resources within a security boundary using a security gateway instance</title><date>2023-01-17</date><risdate>2023</risdate><abstract>The disclosure herein describes securing access to a service resource within a security boundary. A security gateway instance receives a request from an edge deployment outside the security boundary. The request includes identity data identifying the edge deployment. The identity data is validated based on allowed identity data of the security gateway instance and based on a validation handler associated with the service resource. Based on validating the identity data and validating the request, the identity data is transformed using security data specific to the security gateway instance. The transformed identity data indicates the request has been validated by the security gateway instance. Based on transforming the identity data of the request, the transformed identity data and the request are forwarded to the service resource via a network link within the security boundary, wherein the service resource is configured to process the request based on identifying the transformed identity data.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US11558189B2
source esp@cenet
subjects ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title Handling requests to service resources within a security boundary using a security gateway instance
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-19T16%3A02%3A02IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Roy,%20Arupendra%20Narayan&rft.date=2023-01-17&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS11558189B2%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true