Transforming HTTP requests into web services trust messages for security processing

Assignee

• International Business Machines Corporation · US

Inventors

• Scott Anthony Exton · Jimboomba, AU
• Davin J. Holmes · Gold Coast, AU
• Stephen Viselli · Dover, AU
• Shane Bradley Weeden · Paradise Point, AU

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L67/565
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

An approach is provided where an HTTP request is received and a Request for Security Token (RST) is created. Parameters are selected from the request and mappings are retrieved corresponding to the parameters. Context attributes are created in the RST corresponding to the parameters. A context attribute type value is set based on an HTTP section where the parameter is located within the HTTP request. The RST is sent to a security token service for processing. In another approach, a Request Security Token Response (RSTR) is received and an HTTP response is created. RSTR parameters are selected and parameter mappings are retrieved corresponding to the selected RSTR parameters from a mapping table with a TYPE value being identified based on the retrieved parameter mapping. Context attributes are added to the HTTP response based on the identified TYPE values. The HTTP response is transmitted to a remote computer system.