System and method for secure configuration of sensitive web services
US7392391B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 12, 2002 |
| Grant date | Jun 24, 2008 |
| Priority date | — |
| Expiry date | May 18, 2025 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/168
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
The present invention discloses a system and method for configuration of access rights to sensitive information handled by a sensitive Web-Service. In a case of requested configuration changes initiated by the client system the Web-Server system provides a configuration data file to the client system preferably using a SOAP-communication protocol. The changes of the configuration data file are exclusively performed offline at the client side and the updated configuration data file is signed with authentication information and sent as a part of a SOAP-request to the Web-Server system. The Web-Server system provides a filter component for identifying and discarding non-SOAP requests as well as an access control manager for providing authentication examination for incoming SOAP-requests. After successful passing these components the SOAP-request is used for updating the existing configuration data file.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.