Patent · US Active

Controlling access of a client system to an access protected remote resource

US7882546B2 · kind B2 · utility

2Cited by

5References

10Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Stephan Laertz · Herrenberg, DE
Peter Fischer · Highlands Ranch, US
Carsten Leue · Eppelheim, DE
Thomas Schaeck · Eppelheim, DE

Key dates

Filing date	Dec 30, 2004
Grant date	Feb 1, 2011
Priority date	—
Expiry date	Jul 11, 2029

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/12
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

The present invention provides a security module for Web application, especially a portal application, using a rewriter proxy. The security module ensures that the rewritten URIs are appended by an authentication identifier for determining whether the rewritten URI has not been changed. Preferably, the authentication identifier can be generated by applying a secure hash algorithm and/or secret key to the original URIs of the remote resource or the entire rewritten URIs. When a client activates those URIs, a request is sent to the rewriter proxy. Before a connection to the access protected remote resource is established, the security module validates whether the URIs contained in the user client request have been changed by the user.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.