Method and system for access control of a message queue
US6446206B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Apr 1, 1998 |
| Grant date | Sep 3, 2002 |
| Priority date | — |
| Expiry date | Apr 1, 2018 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/126
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and system for controlling access to a message queue in a message queuing system utilizes a certificate of a user who sends a message to authenticate the message and uses a directory service of the message queuing system as a trusted entity in the authentication process. The certificate used for message authentication may be an internal certificate issued by the message queuing system or an external certificate issued by a certification authority. The certificate is registered with the directory service of the message queuing system and stored with a security identification (SID) of the user. When the user runs an application which sends a message to a target queue, the sending computer signs the message with a private key associated with the certificate and sends the message with the digital signature and the certificate to the receiving computer. When the receiving message queue (MQ) server receives the message packet, it verifies the digital signature of the message. If the signature is verified, the receiving MQ server queries the message queuing system to obtain the SID associated with the certificate. The MQ server then decides whether the message with the SID should…
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.