Enterprise service-to-service trust framework

Assignee

• Oracle International Corporation · US

Inventors

• Hari Sastry · San Jose, US
• Ramana Rao Satyasai Turlapati · Fremont, US
• Saurabh Shrivastava · Lowell, US
• Stephen Man Lee · San Francisco, US
• Raymond Ng · San Jose, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/33
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Embodiments of the invention provide a trust framework for governing service-to-service interactions. This trust framework can provide enhanced security and/or manageability over prior systems. Merely by way of example, in some cases, an information store can be used to store information security information (such as trust information, credentials, etc.) for a variety of services across an enterprise. In other cases, the trust framework can provide authentication policies to define and/or control authentication between services (such as, for example, types of authentication credentials and/or protocols are required to access a particular service—either as a user and/or as another service—and/or types of authentication credentials and/or protocols a service may be enabled to use to access another service). Alternatively and/or additionally, the trust framework can provide authorization policies to define and/or control authorization between services.